Selecting manual authentication

Choosing the manual authentication method is necessary when not using the OAuth 2.0 spec. The steps described here take place after completing the first page of the Vault Entry Wizard.

  1. If using a refresh token, enable the checkbox and provide the token information.
  2. Select the type of authorization being used from the Auth Info drop-down.

    Options include Bearer Token, Custom Header, Query Parameter, and Basic authorization.

    Bearer authentication (also called token authentication) is an HTTP authentication scheme that involves security tokens called bearer tokens. The name “Bearer authentication” can be understood as “give access to the bearer of this token.” The bearer token is a cryptic string, usually generated by the server in response to a login request

    Custom Headers are very similar to a Bearer token. But rather than putting a header that looks like:

    Authorization: Bearer {Token} in the request that web service client makes, it puts a header that looks like this:

    {Header Key}: {Token} where {Token} is the actual access token and {Header Key} is something specific to the API itself, such as "X-QuickBooks-Access-Token" or "x-weebly-access-token",etc.

    Query parameters are a defined set of parameters attached to the end of a URL, and are used to help define specific content or actions based on the data being passed; sometimes authorization information is passed as a query parameter.

    Note: This type is currently not supported in SOAP Web Services.

    The Basic Type uses Username and Password for authentication.

  3. After entering the required information for the selected authorization type, click Finish.
    Result: the vault entry now appears in the Auth Vault view. Auth information can now be used by a connected server for Web Service calls.