How to avoid logging out a user when using their credentials via the new REST API

20 Jun 2014

1 minute read time

Post originally written by John Mertic.

I had this question come from a partner this week...

Users can't maintain their two sessions of Sugar (One via the REST API, and the other their Sugar Instance) at the same time. Signing in to either one will always result to the session expiration of the other one

This is mostly because the Sugar 7 uses the same REST API to power all the new Sugar UX components, so if you need to let the API know you aren't coming from the desktop client. The way to do this in as a part of the /oauth2/token call, changing the 'platform' parameter as shown below to something other than 'base', 'mobile', or 'portal'...

gistfile1.json

{
"grant_type":"password",
"client_id":"sugar",
"client_secret":"",
"username":"admin",
"password":"password",
"platform":"myspecialapp" // change 'myspecialapp' to whatever you want to refer to your app as
}

SugarCRM Developers over 9 years ago

Comment originally made by Shahrukh Riaz.

Solution to the addressed issue is simple. You can avoid logging out by letting the New Rest API (in sugar 7) know that the other user isn't coming from the same desktop client. Follow the link for details.

https://www.rolustech.com/blog/access-sugar-instance-at-two-different-platforms-simultaneously-via-rest-api
- Cancel
- Vote Up 0 Vote Down
- Sign in to reply
- More Actions
- Cancel
SugarCRM Developers over 9 years ago

Comment originally made by Rob Aagaard.

There is also a sudo API that will let an admin login as another user without logging that user out. Probably a better fit for this anyways.
- Cancel
- Vote Up 0 Vote Down
- Sign in to reply
- More Actions
- Cancel
SugarCRM Developers over 9 years ago

Comment originally made by Pedro Bazan.
Thanks, I didn't understand why occurred that.
- Cancel
- Vote Up 0 Vote Down
- Sign in to reply
- More Actions
- Cancel