Security
The service uses the host server and security server to validate and grant access that is based on user permissions.
To enable or disable the Cloverleaf API, on the Enable Cloverleaf API check box enables/disables the Cloverleaf API. The default is cleared (disabled).
tab, the- If enabled, then the server returns results on a request or a rejection notification.
- If disabled, then an error code (404) is returned to any clients attempting to access the API.
For security reasons, the CSRF token is added to the HTTP POST
request to access the CLAPI.
Note: Regarding the HTTP
POST
request, except for the HTTP GET
request, all others are affected, including POST
, PUT
, and DELETE
.For example, this is a curl command for sending a POST
request with the CSRF token. To do this, you must
send two requests: