...
All services requires the client to include a token, acquired from the authentication service. The token will be valid for a limited period of time, but valid for all requests during that time interval. So this is done in two steps:
- Authenticate a user and acquire a token called Ticket Granting Ticket (TGT).
- Call resource in context with the TGT (re-usable as long as TGT is valid).
In a simplified way the process can be shown as follows:
Login
To authenticate with resources exposed by the API, it is required to sign in with the login service.
The authentication process is done in two steps.
...
This service is called to retrieve a valid TGT token.
...