This endpoint uses a POST request to return an OAuth bearer token; you submit this token in the other endpoints of the Shares 2 API to authorize the request.

Request Parameters

Note: The value of the grant_type parameter you submit will require one or additional parameters depending on its value; for example, a value of "ldap" dictates that you submit additional values related to the LDAP configuration. See the table below this one (and the request examples) for additional details.

Name Required/Optional Type Description
grant_type Required string Grant type; available values are ldap, saml, and refresh_token. See table below for additional detail.
redirect_uri optional boolean Redirect URI

Additional Required Values with "grant_type"

Grant Type Value Additional Required Parameters
ldap ldap_configuration_id, username,password
saml SAML assertion
refresh_token Submit refresh_token=refresh_token in the URL parameters or as part of a JSON body; for example:
-d '{"grant_type":"refresh_token","refresh_token":"refresh_token"}'
Submitting in the JSON body may be preferable for security reasons.

Success Response Codes

Method Code
GET 200 OK
POST 201 Created
PUT 200 OK
DELETE 204 No Content

Error Response Codes

A description of error is included in response body; see the examples below for additional details.

Method Error Reason
POST 422 Unprocessable Entity Group has already been taken

Response Attributes

Name Type Description
access_token string Access token
expires_in integer Seconds until access token expires
refresh_token string Refresh token
refresh_token_expires_in integer Seconds until refresh token expires

Example Request and Response


Request an access token with basic authentication

POST /oauth2/token

Request Example

curl "http://shares.example.com/oauth2/token" -d '{"grant_type":"password"}' -X POST /
        -u the_current_user@example.com:Password123_ \
        -H "Content-Type: application/json" \
        -H "Accept: application/json" \
        -H "Host: example.org" \
        -H "Cookie: "

Response Headers

X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://local.connectme.us https://d3gcli72yxqn2z.cloudfront.net http://d3gcli72yxqn2z.cloudfront.net
Content-Type: application/json; charset=utf-8
ETag: W/"37be9ec335c2b1021ecb18edc8a716b8"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: 97895416-dd1e-4fb0-b286-d682ebc73c08
X-Runtime: 0.027537
Content-Length: 177

Success Response Example

201 Created
{
"access_token": "Cu1MRyB-BuDmrSu1s6OE9QoTt6w7FrlFFAY6NotH0Bg",
"expires_in": 28799,
"refresh_token": "ZZ7sL_2gDq2P36qPCUSsFR7eKecMX-HVda5dNp6ogL4",
"refresh_token_expires_in": 604799
}

Error Response Example

401 Unauthorized
{
   "error": "Invalid email or password."
}

Error Response Example (Too many attempts from IP)

401 Unauthorized

Example Response Body

{
   "error": "You have made too many recent login attempts. Please wait 20 minutes and try again."
}

Error Response Example (Too many requests for email)

401 Unauthorized
{
   "error": "You have made too many recent login attempts. Please wait 20 minutes and try again."
}

Error Response Example (Requested an access token with a deactivated account)

401 Unauthorized
{
   "error": "Your account has been deactivated."
}

Error Response Example (Request an access token with an expired password)

401 Unauthorized
{
   "error": "Your password has expired."
}

Error Response Example (Requested an access token with an expired account)

401 Unauthorized
{
  "error": "Your account has expired."
}


Request an access token with a refresh token

POST /oauth2/token

Request Example

curl "http://shares.example.com/oauth2/token" -d '{"grant_type":"refresh_token","refresh_token":"DW_sUQ40_HjPJLxN7ft0odGI2UuogIq8JVV9j56VRiIlvKIc3pvshVTIsAocln6GyRmv75pFp9J4Hsr5lFupwg=="}' -X POST \
	-H "Content-Type: application/json" \
	-H "Accept: application/json" \
	-H "Host: example.org" \
	-H "Cookie: "

Response Headers

X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://local.connectme.us https://d3gcli72yxqn2z.cloudfront.net http://d3gcli72yxqn2z.cloudfront.net
Content-Type: application/json; charset=utf-8
ETag: W/"595fe5c47a91471c91d1fdd9aeab4fc5"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: edd87314-0468-436c-b0f4-a9eb8e5713e3
X-Runtime: 0.010292
Content-Length: 222

Success Response Example

201 Created
{
  "access_token": "Bdi_d4hwzE4YrEMaQW8HrHcIHCHH-DE4n8mlnRarIGs",
  "expires_in": 28799,
  "refresh_token": "DW_sUQ40_HjPJLxN7ft0odGI2UuogIq8JVV9j56VRiIlvKIc3pvshVTIsAocln6GyRmv75pFp9J4Hsr5lFupwg==",
  "refresh_token_expires_in": 604799
}

Error Response Example (Request an access token with an expired refresh token)

401 Unauthorized

Example Response Body

{
   "error": "Your refresh token has expired."
}

Error Response Example (Request an access token with an invalid refresh token)

401 Unauthorized

Example Response Body

{
   "error": "Invalid refresh token."
}


Request an access token with LDAP credentials

POST /oauth2/token

Request Example

curl "http://shares.example.com/oauth2/token" -d '{"grant_type":"ldap","ldap_configuration_id":381178965,"username":"cc414","password":"retneprac"}' -X POST

Response Headers

X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://local.connectme.us https://d3gcli72yxqn2z.cloudfront.net http://d3gcli72yxqn2z.cloudfront.net
Content-Type: application/json; charset=utf-8
ETag: W/"cfff189c256c245a2b8719f50e8e80b5"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: a2ee6d09-81f4-499d-85ab-b9168e63d7ae
X-Runtime: 0.112775
Content-Length: 177

Success Response Example

201 Created
{
  "access_token": "BrbzG5JZqPMukYL4ed1RUXEpkNOpqW1suORffoFYrWc",
  "expires_in": 28799,
  "refresh_token": "rHuGf9sB0I0v4Gfuee-EWFkdO4cm6NkyYfRZBkiEemE",
  "refresh_token_expires_in": 604799
}

Error Response Example

401 Unauthorized
{
   "error": "Invalid username or password."
}

Error Response Example (Login restricted by group)

401 Unauthorized

Example Response Body

{
   "error": "You do not have permission to log in."
}

Error Response Example (Login restricted by user)

401 Unauthorized

Example Response Body

{
   "error": "You do not have permission to log in."
}


Request an access token with invalid SAML credentials

POST /oauth2/token

Request Example

curl "http://shares.example.com/oauth2/token" -d '{"RelayState":"grant_type=urn%3Aietf%3Aparams%3Aoauth%3Agrant-type%3Asaml2-bearer\u0026saml_configuration_id=478127566","SAMLResponse":"PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz4KPHNhbWwycDpSZXNwb25zZSBEZXN0aW5hdGlvbj0iaHR0cDovLzEyNy4wLjAuMTozMDAwL29hdXRoMi90b2tlbj9zYW1sX2NvbmZpZ3VyYXRpb25faWQ9MSZhbXA7Z3JhbnRfdHlwZT11cm4lM0FpZXRmJTNBcGFyYW1zJTNBb2F1dGglM0FncmFudC10eXBlJTNBc2FtbDItYmVhcmVyJmFtcDtyZWRpcmVjdF91cmk9aHR0cCUzQSUyRiUyRjEyNy4wLjAuMSUzQTMwMDAlMkZzYW1sJTJGMSUyRmxvZ2luIiBJRD0iXzE4NTUzZWU0Y2ZiODU0ZTBmNzNmNWZhODFiNjMwNmVlIiBJblJlc3BvbnNlVG89Il82ZGQ3ZTFmZC04ZmQzLTQ3NmUtYTM0Mi0xNzA1ZDdmZDA3M2EiIElzc3VlSW5zdGFudD0iMjAxNi0xMS0yMVQxODoyNzozNS45OThaIiBWZXJzaW9uPSIyLjAiIHhtbG5zOnNhbWwycD0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wOnByb3RvY29sIj48c2FtbDI6SXNzdWVyIEZvcm1hdD0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wOm5hbWVpZC1mb3JtYXQ6ZW50aXR5IiB4bWxuczpzYW1sMj0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wOmFzc2VydGlvbiI+aHR0cHM6Ly9zaGliLWlkcC0wMS5kZXYuYXNwZXJhLnVzL2lkcC9zaGliYm9sZXRoPC9zYW1sMjpJc3N1ZXI+PHNhbWwycDpTdGF0dXM+PHNhbWwycDpTdGF0dXNDb2RlIFZhbHVlPSJ1cm46b2FzaXM6bmFtZXM6dGM6U0FNTDoyLjA6c3RhdHVzOlN1Y2Nlc3MiLz48L3NhbWwycDpTdGF0dXM+PHNhbWwyOkFzc2VydGlvbiBJRD0iXzBiM2FlM2Q3NzdkNjUyZjIzMjU0ZDdhZWYxMGQ5ZGUxIiBJc3N1ZUluc3RhbnQ9IjIwMTYtMTEtMjFUMTg6Mjc6MzUuOTk4WiIgVmVyc2lvbj0iMi4wIiB4bWxuczpzYW1sMj0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wOmFzc2VydGlvbiIgeG1sbnM6eHM9Imh0dHA6Ly93d3cudzMub3JnLzIwMDEvWE1MU2NoZW1hIj48c2FtbDI6SXNzdWVyIEZvcm1hdD0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wOm5hbWVpZC1mb3JtYXQ6ZW50aXR5Ij5odHRwczovL3NoaWItaWRwLTAxLmRldi5hc3BlcmEudXMvaWRwL3NoaWJib2xldGg8L3NhbWwyOklzc3Vlcj48ZHM6U2lnbmF0dXJlIHhtbG5zOmRzPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwLzA5L3htbGRzaWcjIj48ZHM6U2lnbmVkSW5mbz48ZHM6Q2Fub25pY2FsaXphdGlvbk1ldGhvZCBBbGdvcml0aG09Imh0dHA6Ly93d3cudzMub3JnLzIwMDEvMTAveG1sLWV4Yy1jMTRuIyIvPjxkczpTaWduYXR1cmVNZXRob2QgQWxnb3JpdGhtPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwLzA5L3htbGRzaWcjcnNhLXNoYTEiLz48ZHM6UmVmZXJlbmNlIFVSST0iI18wYjNhZTNkNzc3ZDY1MmYyMzI1NGQ3YWVmMTBkOWRlMSI+PGRzOlRyYW5zZm9ybXM+PGRzOlRyYW5zZm9ybSBBbGdvcml0aG09Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvMDkveG1sZHNpZyNlbnZlbG9wZWQtc2lnbmF0dXJlIi8+PGRzOlRyYW5zZm9ybSBBbGdvcml0aG09Imh0dHA6Ly93d3cudzMub3JnLzIwMDEvMTAveG1sLWV4Yy1jMTRuIyI+PGVjOkluY2x1c2l2ZU5hbWVzcGFjZXMgUHJlZml4TGlzdD0ieHMiIHhtbG5zOmVjPSJodHRwOi8vd3d3LnczLm9yZy8yMDAxLzEwL3htbC1leGMtYzE0biMiLz48L2RzOlRyYW5zZm9ybT48L2RzOlRyYW5zZm9ybXM+PGRzOkRpZ2VzdE1ldGhvZCBBbGdvcml0aG09Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvMDkveG1sZHNpZyNzaGExIi8+PGRzOkRpZ2VzdFZhbHVlPm54QUlWQjVhUzVBdk11NXdKWUN4ZndRUWtlaz08L2RzOkRpZ2VzdFZhbHVlPjwvZHM6UmVmZXJlbmNlPjwvZHM6U2lnbmVkSW5mbz48ZHM6U2lnbmF0dXJlVmFsdWU+QUJrT1JOeHlDUWpwTHRMcXJjelUxekI2WVh2eElVSHBXZ0dpTTdKcW9aMWpSVCtRUmlvRnIzbDB5OW5kbEc2U2pzMkxEVWRJK0JIcmlna3hCMU1qMzREY3o0MEsveTdjUm9jeVNzM3N3MFgrMWJiOEpWWHlmVSttVDlFUnhMdVB1RlYxMEdSOW56aEVGTzNjazkybEtoVVhsRkU4cXZOSnlHVzdNbkM5eHNaZ2JYWDFTYlpSUFlxdWJaTGNPdDRmY1pSNk1BNVdpQ09ZSVNXNE9LMW1RNDdKSXl5dlRPVStycmpPOFdVUm9VQlB5MXUyWXZhOS96VHJXSng3MXhMVnJ3OEdBWmdJdm81bk9UQ1hYbitvWFlJVFkvY3IxK1V6S3drV3N3bnhOcWhZdzIyVjV3MUFlMzczd3Q3VEMzVkd5QWFZWWhKcjZaRVlqWkp2OXpXdWF3PT08L2RzOlNpZ25hdHVyZVZhbHVlPjxkczpLZXlJbmZvPjxkczpYNTA5RGF0YT48ZHM6WDUwOUNlcnRpZmljYXRlPk1JSURVRENDQWppZ0F3SUJBZ0lWQU5rWVZPMUxCQjZNdVZpQmloQ0RFQ3E4WG9BeE1BMEdDU3FHU0liM0RRRUJCUVVBTUNReElqQWcKQmdOVkJBTVRHWE5vYVdJdGFXUndMVEF4TG1SbGRpNWhjM0JsY21FdWRYTXdIaGNOTVRNeE1UQTJNakl6T0RBeldoY05Nek14TVRBMgpNakl6T0RBeldqQWtNU0l3SUFZRFZRUURFeGx6YUdsaUxXbGtjQzB3TVM1a1pYWXVZWE53WlhKaExuVnpNSUlCSWpBTkJna3Foa2lHCjl3MEJBUUVGQUFPQ0FROEFNSUlCQ2dLQ0FRRUFrazdlNVZyVEpwY21lUVRiTlFYbGdCVGdwZVdra2h4Kzh0NHpwRWg0VWJRcjhzWGgKc285R3REUWpWaGFzV01mR1BBTytNbHAxMTJlWFZ2VDh1UVFNQmgyQ2U3cVN4MWFYbDRac0p3K21QZnVSZjZ4SVpEazVzVk5mWTgwMQpTeFhiZVZ2UFNHWE42bFRQVjcvMC9kZDRzK0lNSWVHNk5mSWRmcEZiWWE0RjJRYUpEMjhlcmdmM0tFTHpIa3JCV3RpNTVOSDhOcDQ5CnJrNUlxMGZrNTZZUjFLdUVUSEkycFMzdnZWSU9KTXdJaE92T3JzTnhIdTBPNm9vaEZtTE01ayt5SFFxdXIxTGswbVY5R0ZabndEV0MKbHdQY0xLdko2Z1R2OGs0aFVrSTBmaFdVVk9FTmNsZXl5RGM5YWNuTVhDcm5NNDI0ZVc0UW5LRTFIOHU4eE82RGN3SURBUUFCbzNrdwpkekJXQmdOVkhSRUVUekJOZ2hsemFHbGlMV2xrY0Mwd01TNWtaWFl1WVhOd1pYSmhMblZ6aGpCb2RIUndjem92TDNOb2FXSXRhV1J3CkxUQXhMbVJsZGk1aGMzQmxjbUV1ZFhNdmFXUndMM05vYVdKaWIyeGxkR2d3SFFZRFZSME9CQllFRlBacTI1cmZ0MFdLKzlXdkwrV2wKK1cra25LSDJNQTBHQ1NxR1NJYjNEUUVCQlFVQUE0SUJBUUFoQ0lDdUFMa2FMVzFnbERWdHA4WXVZQjNGWnFCbjBZM2VrdC9PVVhJVQp1R3dYRFloUjhGZHVtWGhHSUdkVWFQbFFIZDNNblpSSVZvdWd5N2ZTL1F5ZzhWL0M4QUxhNWc3Sy8yc1RPaS9SdE1qUlFaSyt2T2xPCm94bmVxb3RrNEJQR3AzYW4rbTFwZG54akp2cGhMNGtYL1pQdUNjdmt5em9EbmVsdi9jK2RFLytZejZJem1MMWovZHJzeFJMOGV0UGMKanBnR2pJRjRUREdUTkREaGxlT3lMUDN5TjJhTlBxRXBGL1k4V09WaGVqcmt1eDJZS3dINlNRVktkU2dvZEQ2RVZzVXMxM0YxYXR2QgpCUlJ3QldnRzJsRkJuVlJsMDFyM0xPakgwVnRGSy9IbXMzVjNMOWpFN3VjUitxRGJXTmRQRW1Wd0JZMmFIcjBFUVUvTnNjUWw8L2RzOlg1MDlDZXJ0aWZpY2F0ZT48L2RzOlg1MDlEYXRhPjwvZHM6S2V5SW5mbz48L2RzOlNpZ25hdHVyZT48c2FtbDI6U3ViamVjdD48c2FtbDI6TmFtZUlEIEZvcm1hdD0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6MS4xOm5hbWVpZC1mb3JtYXQ6dW5zcGVjaWZpZWQiIE5hbWVRdWFsaWZpZXI9Imh0dHBzOi8vc2hpYi1pZHAtMDEuZGV2LmFzcGVyYS51cy9pZHAvc2hpYmJvbGV0aCIgU1BOYW1lUXVhbGlmaWVyPSJodHRwOi8vMTI3LjAuMC4xOjMwMDAvc2FtbC8xL21ldGFkYXRhIj5zdWRoaXJ0ZXN0ZXIxMTwvc2FtbDI6TmFtZUlEPjxzYW1sMjpTdWJqZWN0Q29uZmlybWF0aW9uIE1ldGhvZD0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wOmNtOmJlYXJlciI+PHNhbWwyOlN1YmplY3RDb25maXJtYXRpb25EYXRhIEFkZHJlc3M9IjEwLjAuMjA1LjEyNyIgSW5SZXNwb25zZVRvPSJfNmRkN2UxZmQtOGZkMy00NzZlLWEzNDItMTcwNWQ3ZmQwNzNhIiBOb3RPbk9yQWZ0ZXI9IjIwMTYtMTEtMjFUMTg6MzI6MzUuOTk4WiIgUmVjaXBpZW50PSJodHRwOi8vMTI3LjAuMC4xOjMwMDAvb2F1dGgyL3Rva2VuP3NhbWxfY29uZmlndXJhdGlvbl9pZD0xJmFtcDtncmFudF90eXBlPXVybiUzQWlldGYlM0FwYXJhbXMlM0FvYXV0aCUzQWdyYW50LXR5cGUlM0FzYW1sMi1iZWFyZXImYW1wO3JlZGlyZWN0X3VyaT1odHRwJTNBJTJGJTJGMTI3LjAuMC4xJTNBMzAwMCUyRnNhbWwlMkYxJTJGbG9naW4iLz48L3NhbWwyOlN1YmplY3RDb25maXJtYXRpb24+PC9zYW1sMjpTdWJqZWN0PjxzYW1sMjpDb25kaXRpb25zIE5vdEJlZm9yZT0iMjAxNi0xMS0yMVQxODoyNzozNS45OThaIiBOb3RPbk9yQWZ0ZXI9IjIwMTYtMTEtMjFUMTg6MzI6MzUuOTk4WiI+PHNhbWwyOkF1ZGllbmNlUmVzdHJpY3Rpb24+PHNhbWwyOkF1ZGllbmNlPmh0dHA6Ly8xMjcuMC4wLjE6MzAwMC9zYW1sLzEvbWV0YWRhdGE8L3NhbWwyOkF1ZGllbmNlPjwvc2FtbDI6QXVkaWVuY2VSZXN0cmljdGlvbj48L3NhbWwyOkNvbmRpdGlvbnM+PHNhbWwyOkF1dGhuU3RhdGVtZW50IEF1dGhuSW5zdGFudD0iMjAxNi0xMS0yMVQxODoyNzozNS45NjhaIiBTZXNzaW9uSW5kZXg9Il84YTc4MzgxYmFmNGVmYTliMjRlZjRmMmRiOWJjZjdjZiI+PHNhbWwyOlN1YmplY3RMb2NhbGl0eSBBZGRyZXNzPSIxMC4wLjIwNS4xMjciLz48c2FtbDI6QXV0aG5Db250ZXh0PjxzYW1sMjpBdXRobkNvbnRleHRDbGFzc1JlZj51cm46b2FzaXM6bmFtZXM6dGM6U0FNTDoyLjA6YWM6Y2xhc3NlczpQYXNzd29yZFByb3RlY3RlZFRyYW5zcG9ydDwvc2FtbDI6QXV0aG5Db250ZXh0Q2xhc3NSZWY+PC9zYW1sMjpBdXRobkNvbnRleHQ+PC9zYW1sMjpBdXRoblN0YXRlbWVudD48c2FtbDI6QXR0cmlidXRlU3RhdGVtZW50PjxzYW1sMjpBdHRyaWJ1dGUgRnJpZW5kbHlOYW1lPSJvZmZpY2UiIE5hbWU9Im9mZmljZSIgTmFtZUZvcm1hdD0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wOmF0dHJuYW1lLWZvcm1hdDp1bnNwZWNpZmllZCI+PHNhbWwyOkF0dHJpYnV0ZVZhbHVlIHhtbG5zOnhzaT0iaHR0cDovL3d3dy53My5vcmcvMjAwMS9YTUxTY2hlbWEtaW5zdGFuY2UiIHhzaTp0eXBlPSJ4czpzdHJpbmciPkVtZXJ5dmlsbGU8L3NhbWwyOkF0dHJpYnV0ZVZhbHVlPjwvc2FtbDI6QXR0cmlidXRlPjxzYW1sMjpBdHRyaWJ1dGUgRnJpZW5kbHlOYW1lPSJjb21wYW55X25hbWUiIE5hbWU9ImNvbXBhbnlfbmFtZSIgTmFtZUZvcm1hdD0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wOmF0dHJuYW1lLWZvcm1hdDp1bnNwZWNpZmllZCI+PHNhbWwyOkF0dHJpYnV0ZVZhbHVlIHhtbG5zOnhzaT0iaHR0cDovL3d3dy53My5vcmcvMjAwMS9YTUxTY2hlbWEtaW5zdGFuY2UiIHhzaTp0eXBlPSJ4czpzdHJpbmciPkFzcGVyYS1UZXN0LVNoaWI8L3NhbWwyOkF0dHJpYnV0ZVZhbHVlPjwvc2FtbDI6QXR0cmlidXRlPjxzYW1sMjpBdHRyaWJ1dGUgRnJpZW5kbHlOYW1lPSJlbWFpbCIgTmFtZT0iZW1haWwiIE5hbWVGb3JtYXQ9InVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDphdHRybmFtZS1mb3JtYXQ6dW5zcGVjaWZpZWQiPjxzYW1sMjpBdHRyaWJ1dGVWYWx1ZSB4bWxuczp4c2k9Imh0dHA6Ly93d3cudzMub3JnLzIwMDEvWE1MU2NoZW1hLWluc3RhbmNlIiB4c2k6dHlwZT0ieHM6c3RyaW5nIj5zdWRoaXJAYXNwZXJhc29mdC5jb208L3NhbWwyOkF0dHJpYnV0ZVZhbHVlPjwvc2FtbDI6QXR0cmlidXRlPjxzYW1sMjpBdHRyaWJ1dGUgRnJpZW5kbHlOYW1lPSJlbnRyeUROIiBOYW1lPSJpZCIgTmFtZUZvcm1hdD0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wOmF0dHJuYW1lLWZvcm1hdDp1bnNwZWNpZmllZCI+PHNhbWwyOkF0dHJpYnV0ZVZhbHVlIHhtbG5zOnhzaT0iaHR0cDovL3d3dy53My5vcmcvMjAwMS9YTUxTY2hlbWEtaW5zdGFuY2UiIHhzaTp0eXBlPSJ4czpzdHJpbmciPkNOPXN1ZGhpcnRlc3RlcjExLE9VPVVzZXJzLE9VPUFzcGVyYXNvZnQsREM9ZGV2LERDPWFzcGVyYSxEQz11czwvc2FtbDI6QXR0cmlidXRlVmFsdWU+PC9zYW1sMjpBdHRyaWJ1dGU+PHNhbWwyOkF0dHJpYnV0ZSBGcmllbmRseU5hbWU9ImdpdmVuTmFtZSIgTmFtZT0iZ2l2ZW5fbmFtZSIgTmFtZUZvcm1hdD0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wOmF0dHJuYW1lLWZvcm1hdDp1bnNwZWNpZmllZCI+PHNhbWwyOkF0dHJpYnV0ZVZhbHVlIHhtbG5zOnhzaT0iaHR0cDovL3d3dy53My5vcmcvMjAwMS9YTUxTY2hlbWEtaW5zdGFuY2UiIHhzaTp0eXBlPSJ4czpzdHJpbmciPnN1ZGhpcnRlc3RlcjExPC9zYW1sMjpBdHRyaWJ1dGVWYWx1ZT48L3NhbWwyOkF0dHJpYnV0ZT48c2FtbDI6QXR0cmlidXRlIEZyaWVuZGx5TmFtZT0ibWVtYmVyT2YiIE5hbWU9Im1lbWJlcl9vZiIgTmFtZUZvcm1hdD0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wOmF0dHJuYW1lLWZvcm1hdDp1bnNwZWNpZmllZCI+PHNhbWwyOkF0dHJpYnV0ZVZhbHVlIHhtbG5zOnhzaT0iaHR0cDovL3d3dy53My5vcmcvMjAwMS9YTUxTY2hlbWEtaW5zdGFuY2UiIHhzaTp0eXBlPSJ4czpzdHJpbmciPkNOPVRlc3QgR3JvdXBFLE9VPVVzZXJzLE9VPUFzcGVyYXNvZnQsREM9ZGV2LERDPWFzcGVyYSxEQz11czwvc2FtbDI6QXR0cmlidXRlVmFsdWU+PHNhbWwyOkF0dHJpYnV0ZVZhbHVlIHhtbG5zOnhzaT0iaHR0cDovL3d3dy53My5vcmcvMjAwMS9YTUxTY2hlbWEtaW5zdGFuY2UiIHhzaTp0eXBlPSJ4czpzdHJpbmciPkNOPVRlc3QgR3JvdXBELE9VPVVzZXJzLE9VPUFzcGVyYXNvZnQsREM9ZGV2LERDPWFzcGVyYSxEQz11czwvc2FtbDI6QXR0cmlidXRlVmFsdWU+PHNhbWwyOkF0dHJpYnV0ZVZhbHVlIHhtbG5zOnhzaT0iaHR0cDovL3d3dy53My5vcmcvMjAwMS9YTUxTY2hlbWEtaW5zdGFuY2UiIHhzaTp0eXBlPSJ4czpzdHJpbmciPkNOPVRlc3QgR3JvdXBGLE9VPVVzZXJzLE9VPUFzcGVyYXNvZnQsREM9ZGV2LERDPWFzcGVyYSxEQz11czwvc2FtbDI6QXR0cmlidXRlVmFsdWU+PC9zYW1sMjpBdHRyaWJ1dGU+PC9zYW1sMjpBdHRyaWJ1dGVTdGF0ZW1lbnQ+PC9zYW1sMjpBc3NlcnRpb24+PC9zYW1sMnA6UmVzcG9uc2U+"}' -X POST \
	-H "Content-Type: application/json" \
	-H "Accept: application/json" \
	-H "Host: example.org" \
	-H "Cookie: "

Response Headers

X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://local.connectme.us https://d3gcli72yxqn2z.cloudfront.net http://d3gcli72yxqn2z.cloudfront.net
Content-Type: application/json; charset=utf-8
Cache-Control: no-cache
X-Request-Id: 2844a20d-317a-423a-9409-c43314977eb8
X-Runtime: 0.025599
Content-Length: 35

Error Response Example

422 Unprocessable Entity
{
  "error": "Invalid SAML assertion."
}

Video player

Video

×