How can we improve PI Developer Technologies for you?

Support Bearer Authentication with Channels in the Web API

1 vote
Sign in Sign in with OSIsoft
Signed in as (Sign out)

We’ll send you updates on this idea

Vincent Kaufmann shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

1 comment

Sign in Sign in with OSIsoft
Signed in as (Sign out)
Submitting...
  • rygg commented  ·   ·  Flag as inappropriate

    This limitation exist in the Mozilla websocket specification that all modern web browsers use. Other frameworks (e.g. .NET) support websockets authenticated with Bearer. You can get around the Mozilla websocket limitation by using a web proxy with header rewriting capabilities (e.g. nginx). You can then open the websocket from the browser and use the "Sec-WebSocket-Protocol" header with value "access_token {jwt}​". The web proxy should then append a header for Authorize Bearer {jwt} and remove the "Sec-WebSocket-Protocol" header before passing the request to PIWebAPI. It requires some configuration, but will help you out if you really need this authentication option.

Feedback and Knowledge Base

Posted ideas will have one of the following statuses.
Full definition of these statuses can be found on the Home Page.
No status
NEEDS MORE DISCUSSION
RESEARCHING/EVALUATING
DECLINED
PLANNED
STARTED/IN DEVELOPMENT
IN BETA
COMPLETED