Choosing Authentication Method
Updated in 2021.1
Alloy Navigator Express supports two methods of authentication for API calls: Windows and Access Token. Alloy native mobile apps require the API configured for Access Token Authentication method.
Windows authentication method allows applications to make API calls by automatically supplying the credentials of Windows domain accounts they are running under, without having to obtain an access token and specify it in requests. This authentication method works only on a Windows domain network.
Access token authentication requires applications to provide their Application ID and Secret or identify users with their username and password and make API calls after receiving an access token.
Token-based authentication can be used in any network. The following authentication types for Alloy mobile apps users:
To enable Standard authentication for Alloy mobile apps users, choose Access Token Authentication and leave the Alloy password authentication check box selected. Users will sign in to Alloy mobile apps by providing their username and password.
Single Sign-On (SSO) authentication:
To enable SSO authentication for Alloy mobile apps users, choose Access Token Authentication and then select the desired SSO providers under Available Single Sign-On services. SSO services must be previously configured in the Settings App as SSO Provider records. For details, see Settings Help: Managing single sign-on (SSO) providers.
To allow users to sign in without SSO, by providing their password, leave the Alloy password authentication check box selected.
To enable LDAP authentication for Alloy mobile apps users, choose Access Token Authentication. LDAP authentication requires that corresponding Domain Credentials records are configured in the Settings App. For details, see Administration Guide: Enabling LDAP Authentication.
Users will sign in by providing their username (as
DOMAIN\username) and password.