Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

This is the recommended solution because it nevers send any passwords or ticket secrets to over the wire and once a signed request has been used its no longed valid i.e. each signed URL can only be used once and is only valid for 10 minutes from creation/signing (based on the timestamp parameter in combination with the Meridix server time in UTC).

Note
If you need to link a user from ex. a portal site the rendered link must be signed a maximum of 10 minutes before its clicked otherwise the Meridix authentication will respond with a 401 Not authorized http response since the signature has been deprecated.

Basic - Not recommended (insecure)

...