How to make ajax CORS requests to shibboleth protected rest api?

Luke Palnau lpalnau at
Thu May 28 16:06:54 EDT 2015

Ah, that sounds familiar, what user info would be given to the rest-api's
token endpoint? Username? Anything else?

The OAUTH2 examples I've seen send username, password, and grant type to a
token endpoint. But since siteA uses shib I don't have a password. Unless
I'm misunderstanding this.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the users mailing list