The Single Sign-on API is implemented by the Constituent API servlets (CRConsAPI and SRConsAPI). It provides cross-domain authentication services using either Luminate Online or a trusted host as the master authentication provider. These APIs must be used obtain an authentication token for any client API call that requires authentication, i.e. where the call is made on behalf of a logged-in user.
The getSingleSignOnToken and singleSignOn API methods are used to log in a user and establish a session when the caller assumes responsibility for authenticating the user; see Single Sign-on (Luminate Online as client).
The login, loginTest, and authenticateUser API methods are used to log in a user and establish a session using Luminate Online as the master authentication server; see Single Sign-on (Luminate Online as master).
This API also provides methods to end a session (logoff) and allow a logged-in user or an administrator to change passwords (changePassword).
The Single Sign-on API exposes the following methods: