Support Central
Basic Authentication (also known as Basic Auth) involves sending the Aconex account credentials (login name and password) with every API request.
If you want to use API's you'll need either an OAuth Client (for OAuth) or an Integration ID (for Basic Auth).
Oracle strongly recommends the use of OAuth, rather than Basic Auth as OAuth provides a higher level of security. See Implement OAuth for implementing OAuth to connect to Aconex APIs.
Note: Basic Auth does not support Two-Step Verification (2SV) or Single Sign-On (SSO) user accounts. Only Oracle Aconex Customers can use Basic Auth. Oracle Technology Partners (software vendors) must use OAuth.
Basic Auth only works with Aconex account credentials (login name and password). You cannot use your Lobby account credentials.
In many cases, Basic Auth will be considered for non-interactive integrations, which have no user interface. Typically a service user account will be created and configured in Aconex to have access to the desired data. OAuth accommodates this use case and is the preferred method for all integrations with Aconex APIs.
Refer to Implement OAuth for implementing OAuth to connect to Aconex APIs.
Basic Auth should never be used in applications into which a user enters their Aconex user account credentials.
Follow the instructions in Create an Integration ID for Basic Auth.
Your Basic Auth Integration will be registered with Aconex and you will receive an Integration ID, which must be specified in every Aconex API call made by your integration.
This Integration ID must be kept confidential and must not be shared with anyone outside of your organization.
The Basic Auth Token is a Base64 encoding of the Aconex account login name and password, separated by a colon ':'.
Most programming languages provide built-in functions for Base64 encoding.
Here is an example in JavaScript:
const login = 'MyLoginName';
const password = 'MyPassword';
const base64Credentials = btoa(`${login}:${password}`);
Use the Basic Auth Token to make requests to Aconex APIs on behalf of the Aconex user account by including it in the Authorization header of your HTTP requests, as follows:
Authorization: Basic <BASIC_AUTH_TOKEN>
Specify your Integration ID in the X-Application-Key header of your HTTP requests, as follows:
X-Application-Key: <INTEGRATION_ID>
Here is an example cURL request:
curl 'https://au1.aconex.com/api/projects' \ --header 'Authorization: Basic TXlVc2VybmFtZTpNeVBhc3N3b3Jk' \ --header 'X-Application-Key: cnoe8yrw-94yb-2col-u3yb-c9y38brcl9yr'
If the Aconex account you've used for your Basic Auth integration has an expired password, you'll need to reset it.
On the Aconex login page click the forgotten your login name or password link and follow the prompts to reset it.
You can use the below links to access the Aconex instance login screen directly:
