https://community.qlik.com/t5/Integration-Extension-APIs/Authenticating-with-QlikSense-server-from-a-web-application/m-p/1226943#M6409 <HTML><HEAD></HEAD><BODY><P>Thanks for getting back so quickly Alexander.</P><P></P><P>I'll give that a go - Makes sense to get the headers right first to remove them from the equation.</P><P></P><P>Lee</P></BODY></HTML> Mon, 20 Feb 2017 13:27:04 GMT 2017-02-20T13:27:04Z https://community.qlik.com/t5/Integration-Extension-APIs/Authenticating-with-QlikSense-server-from-a-web-application/m-p/1226941#M6407 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>Looking for some advice as I've found the QlikSense server documentation very confusing around authentication.</P><P></P><P>I have an AngularJS app, hosted on Tomcat on Windows, which users log in to via the initial login page. I was instructed by Qlik to look on Qlik Branch to get some Java code that would obtain a Qlik ticket to use for authentication against the QlikSense server. This works fine, and the ticket is returned to my app.</P><P></P><P>This isn't enough apparently to authenticate with Qlik Sense. I was instructed to create then hit a static html file on the Qlik server itself, passing the ticket in the URL, and redirecting back to my app.</P><P></P><P>My issue is that this seems a very clunky process - Both having to use bespoke code and then hit a URL with a redirect, which is causing me issues as the web app is hosted on Tomcat (HTTP) and QlikSense on another web server (HTTPS) causing certificate and cross-site issues.</P><P></P><P>Does anyone know a cleaner or easier way to authenticate, especially replacing or doing away with the URL/redirect part. I've heard mention that when including a Qlik App via the single configurator the ticket can be appended to the URL, but I've not seen this documented anywhere.</P><P></P><P>Thanks in advance,</P><P>Lee</P></BODY></HTML> Mon, 20 Feb 2017 11:55:19 GMT https://community.qlik.com/t5/Integration-Extension-APIs/Authenticating-with-QlikSense-server-from-a-web-application/m-p/1226941#M6407 2017-02-20T11:55:19Z https://community.qlik.com/t5/Integration-Extension-APIs/Authenticating-with-QlikSense-server-from-a-web-application/m-p/1226942#M6408 <HTML><HEAD></HEAD><BODY><P>Hmm, the redirect is not necessary. </P><P>Once you have a ticket issued for your client you can request a static resource from behind the proxy with qlikTicket=&lt;ticket value&gt; appended to the url.</P><P></P><P>The proxy will see the incoming ticket, make sure it's valid and if so send back the resource and a session cookie which will authenticate subsequent requests. Normal web rules apply so make sure http headers are correct so cookies are allowed between protocols and domains.</P></BODY></HTML> Mon, 20 Feb 2017 12:31:10 GMT https://community.qlik.com/t5/Integration-Extension-APIs/Authenticating-with-QlikSense-server-from-a-web-application/m-p/1226942#M6408 Alexander_Thor 2017-02-20T12:31:10Z https://community.qlik.com/t5/Integration-Extension-APIs/Authenticating-with-QlikSense-server-from-a-web-application/m-p/1226943#M6409 <HTML><HEAD></HEAD><BODY><P>Thanks for getting back so quickly Alexander.</P><P></P><P>I'll give that a go - Makes sense to get the headers right first to remove them from the equation.</P><P></P><P>Lee</P></BODY></HTML> Mon, 20 Feb 2017 13:27:04 GMT https://community.qlik.com/t5/Integration-Extension-APIs/Authenticating-with-QlikSense-server-from-a-web-application/m-p/1226943#M6409 2017-02-20T13:27:04Z