Hi.
I'm writing simple viewer app of alm quality center using JS.
Refer to Tech Preview API documentation, I need to sign-in by these steps.
1. check if authenticated (/qcbin/rest/is-authenticated)
2. POST to /qcbin/authentication-point/alm-authenticate or GET(with basic auth) to /qcbin/authentication-point/authenticate
3. POST to /qcbin/rest/site-session to open a session.
4. server returns session token.
I can now access resources using api...but here's a problem with keeping "signed in" status.
If user closes browser, the token is deleted.
So user need to type id/pw again to gain session.
API doc says published token can be re-used within 60mins by default.
Is this condition is valid while browser opened?
I want to implement "remember me" feature for my app.
If alm server destroys session token immediately after browser closing, Is there any option to achieve persistent login?
In my opinion, there's no option except save un-encrypted password to cookie or my proxy server.
I'd appreciate any ideas.
Thanks!