.. _Connection: Connection ========== Some intro text here... .. _Getting Started: Getting Started --------------- Add some links to docs on websockets and json.... .. _Authentication: Authentication -------------- Describe how to authenticate to websockets via Local / Remote, local connections do not need username / password... Once a websocket connection is made to the server, the client needs to use the authentication class to authenticate itself to obtain access to the sysadm service. Every authentciation class request contains the following parameters: +---------------------------------+---------------+----------------------------------------------------------------------------------------------------------------------+ | **Parameter** | **Value** | **Description** | | | | | +=================================+===============+======================================================================================================================+ | id | | any unique value for the request; examples include a hash, checksum, or uuid | | | | | +---------------------------------+---------------+----------------------------------------------------------------------------------------------------------------------+ | name | auth | | | | | | +---------------------------------+---------------+----------------------------------------------------------------------------------------------------------------------+ | namespace | rpc | | | | | | +---------------------------------+---------------+----------------------------------------------------------------------------------------------------------------------+ | args | | values vary by type of authentication request | | | | | +---------------------------------+---------------+----------------------------------------------------------------------------------------------------------------------+ Several methods are available for authentication. Here is an example of a login using a username and password: **Request** .. code-block:: json { "namespace" : "rpc", "name" : "auth", "id" : "sampleID", "args" : { "username" : "myuser", "password" : "mypassword" } } Here is an example of using token authentication, where the token is invalidated after 5 minutes of inactivity: **Request** .. code-block:: json { "namespace" : "rpc", "name" : "auth_token", "id" : "sampleID", "args" : { "token" : "MySavedAuthToken" } } A successful authentication will provide a reply similar to this: **Reply** .. code-block:: json { "args": [ "SampleAuthenticationToken", 300 ], "id": "sampleID", "name": "response", "namespace": "rpc" } .. _note: the first element of the *"args"* array is the authentication token for use later as necessary, while the second element is the number of seconds for which that token is valid. The token is reset after every successful communication with the websocket. In this example, it is set to 5 minutes of inactivity before the token is invalidated. The websocket server is currently set to close any connection to a client after 10 minutes of inactivity. An invalid authentication, or a system request after the user session has timed out due to inactivity, looks like this: **Reply** .. code-block:: json { "args": { "code": 401, "message": "Unauthorized" }, "id": "sampleID", "name": "error", "namespace": "rpc" } To clear a pre-saved authentication token, such as signing out, use this request: **Request** .. code-block:: json { "namespace" : "rpc", "name" : "auth_clear", "id" : "sampleID", "args" : "junk argument" }