Trusted Authentication with HTTP Headers is a feature that allows users to log in through HTTP headers. A request is authenticated if it contains the user's email address in a particular HTTP header, specified by the administrator of the SD Elements instance.
Warning: This is not a secure SSO method unless all traffic going into SDE is intercepted by a trusted server (such as a proxy) which verifies that all requests are authenticated, since otherwise this allows anyone to set the correct header in an HTTP request and be considered authenticated.
1. Login to SD Elements with super user credentials. The user firstname.lastname@example.org is one such user.
2. Click on the gear icon in the top right corner of the SD Elements interface, and select Trusted Authentication.
3. Fill out the form then click Save. The fields are described below.
- Email Address: HTTP header containing a user's email address.
- (Optional) First Name: The HTTP header which contain a user's first name
- (Optional) Last Name: The HTTP header which contain a user's last name
- (Optional) Login URL: The URL where unauthenticated users will be redirected to upon access attempts. The standard login page will be used if not provided.
- (Optional) Logout URL: The URL where users will be redirected to upon logout. The standard login page will be used if not provided.
4. If the First Name and Last Name headers are not available, a new user will be prompted to enter their name.
5. It is recommended that you provide both a Login URL and Logout URL for optimal integration with your Single Sign-On Service.