The Web Engagement History REST API supports the following authentication scheme:
- Basic HTTP Authentication (see http://www.ietf.org/rfc/rfc2617.txt).
The REST API security is configured in the security section of the Web Engagement Backend Server application. The following configuration options are mandatory to enable authentication:
Note: If authentication is used, every REST API client must support that authentication type and the clients must know the authentication credentials. You must configure authentication for Interaction Workspace (see Configure Authentication in the Interaction Workspace Plug-in deployment). If your SCXML strategies use the REST interface, you must also add your authentication credentials (see Configure Authentication in the default strategy).
This authentication scheme passes unencrypted credentials, so it is unsafe unless you use a secured connection (HTTPS).