Reply to comment

The following URL is embedded in a third-party application web-page. The QuickBase table 9rtyyrty is not anonymously accessible.

https://www.quickbase.com/db/9rtyyrty?a=API_GenAddRecordForm&username=de...

i) User clicks on the above URL, a new web browser page is opened which displays the Add Record page for the QuickBase table

ii) User populates required fields and clicks the Save button.

iii) At this point the Sign Into QuickBase page is displayed, and after supplying the same username and password embedded in the above URL a new DoAddRecord page is displayed without any of the user entered data.

The problem here is that the username and password supplied in the link to API_GenAddRecordForm only applies to one click. No cookie is passed back to the user's browser to allow them to submit the form. To log them in for the submit operation you should use the API_Authenticate call with an rdr parameter set to the API_GenAddRecordForm URL described above. You should remove the username and password parameters from the URL in the rdr parameter and put them in as parameters to the API_Authenticate function. Like this:

https://www.quickbase.com/db/main?a=api_authenticate&username=demo_reque...

NOTE: QuickBase recommends that you use application tokens when working with API calls (To learn more, please see our Application Tokens help topic).

Reply

The content of this field is kept private and will not be shown publicly.
Type the characters you see in this picture. (verify using audio)
Type the characters you see in the picture above; if you can't read them, submit the form and a new image will be generated. Not case sensitive.

© 1997-2014 Intuit Inc. All Rights Reserved.

Online Database VeriSign Secured Web Based Software TRUSTe Certification Online Database SSAE Audit