My credentials |
Credentials are a means of authentication. Based on the authentication type, iPortal provides five types of credentials: ArcGIS REFRESH TOKEN authentication, ArcGIS GENERATE TOKEN authentication, HTTP BASIC authentication, HTTP BEARER authentication, and TOKEN as query parameter authentication. When registering a protected service in the portal, you can associate the matched credential for quick and easy registration. Credentials support viewing, modification, and deletion. To ensure the security of credentials, credentials are stored in the portal server in encrypted form; when users query credentials, they are displayed in a desensitized form.
If you register a service from the ArcGIS Online or ArcGIS Enterprise site, you can choose the ARCGIS GENERATE TOKEN authentication type. Which requires you to fill in the token generation address, username, and password of the ArcGIS Online or ArcGIS Enterprise site. Your username and password will be transmitted and stored in encrypted form. Additionally, services registered with this type of credentials are permanently accessible.
Token generation address format such as: http(s)://{Root_URL}/sharing/rest/generateToken
If you register a service from the ArcGIS Online or ArcGIS Enterprise site, you can also choose the ARCGIS REFRESH TOKEN authentication type. The ARCGIS REFRESH TOKEN authentication requires you to fill in the token refresh address of the ArcGIS Online or ArcGIS Enterprise site, such as:
http(s)://{Root_URL}/sharing/rest/oauth2/token?client_id={Client_ID}&grant_type=refresh_token&refresh_token={Refresh_Token}
The Refresh Token can be obtained through the Authorization Code. For details, see: ArcGIS official documentation
Note: When using this method, the above address needs to be updated regularly to prevent the token expiration from affecting the normal access to the service.
If the source site uses the HTTP basic authentication scheme for encryption protection, you should choose this authentication method, and fill in your username and password of the service source site.
If the source site uses the HTTP Bearer authentication scheme for encryption protection, you should choose this authentication method, and fill in the token value for accessing the service.
Require you to fill in the token field name and token value for accessing the service. Applicable to protected service access address in format of: http(s)://serviceUrl?tokenName={tokenValue}. For example, when registering a protected service from an iServer site, you can choose this authentication method.
Log in to iPortal, click your nickname in the upper right corner, go to Personal Center > My Credentials page, click "Add Credential" to enter the Add Credential page, and perform the following operations:
Note: If the created credentials are used to register the protected iServer service, the client ID type of the Token generated on the iServer needs to be "No Client Restriction".
The Personal Center > My Credentials page lists all the credentials you have created. You can click to modify the content of a credential in the "Action" column of the form; or click to delete unnecessary credentials.
After a credential is created, you can use it for registering a protected service conveniently. If the access token of the original protected service changes, you only need to update the associated credential.