Platform

    Get real-time insights and automation for comprehensive, seamless monitoring with agentless architecture.

    Platform Overview
  • Infrastructure
    monitoring
  • Cloud monitoring
  • Digital experience
  • AIOPS

      • Solutions

      Whether you work in MSP, Enterprise IT or somewhere in between, the solution is clear.

      Solutions Overview
    By Initiative
    By Industry

      About us

      Get to know LogicMonitor and our team.

      About us
    Get to know us
    Connect
    Services

      Documentation

      Read through our documentation, check out our latest release notes, or submit a ticket to our world-class customer service team.

      View Resources
    Support

    Product Documentation

    Web Checks with Form-Based Authentication

    Last updated on 20 March, 2023

    The following instructions will walk you through setting up a Web Check for sites that use form-based authentication.

    The exact structure of a Web Check will vary based upon the authentication requirements of each individual application. Some may only ask you to POST username and password values while others may require the presence of dynamic tokens. In order to identify the specific authentication measures of your application, follow these steps:

    1. Using your browser, navigate to the sign-in page of the desired application.
    2. Open Developer Tools (in your browser’s navigation tool bar View > Developer > Developer Tools). Within these developer tools, make sure that you are in the “Network” tab and that you select “Preserve log.” You want to see the full historical logs associated with authenticating into the site. If you do not check this box, the logs will be cleared each time a new page is loaded.
    3. Sign in to the application.
    4. Look at the sign-in request in the developer tools. The information you will need to include in your Web Check can be found under the General (Request and Step URL), Request Headers (Content-Type), and Form Data (ie. Password, Username, Dynamic token, and/or any other variable listed in this section) fields.  As a best practice, you should view the source code of your Form Data and Request Headers to verify whether values such as passwords are URL encoded or not. The format of these values entered in your Web Check should match the format in the source code.
    5. Add Web Check

    Example- LogicMonitor

    The following example shows what information needs to be extracted from the developer tools upon sign-in to your LogicMonitor account, which uses form-based authentication requiring both a Username and Password.

    Example- LogicMonitor

    Based on the Developers Tools, we can fill-out the information below:

    • Default URL: sarah.logicmonitor.com
    • Relative URL Path: /santaba/rpc/signIn
    • Method: POST
    • Post Data: x-www-form-urlencoded
    • Key-Value pairs (all this information is located under Form Data): keepMeSignedIn=false, c=sarah, u=sarah, p=##password## *

    *as a best practice, passwords should be saved as a property on your devices/websites. As such, you can simply use a token to pull this value from your websites properties.

    Example- Jira

    Jira is an internal ticketing system that uses form-based authentication requiring a Username and Password.

    Example- Jira

    Based on the Developers Tools, we can fill-out the information below:

    1. Default URL: jira.logicmonitor.com
    2. Relative URL Path: /login.jsp
    3. Method: POST
    4. Post Data: x-www-form-urlencoded
    5. Key-Value pairs (all this information is located under Form Data)*:
    • atl_token=
    • user_role=
    • os_destination=
    • login=Log+In
    • os_password=##password##
    • [email protected]

    *note that several of the keys do not display any value in the Web Check or developer tools. Some sites, such as Jira, will require you to precisely match the form data in your Web Checks, regardless of whether or not there are any assigned values.

    In This Article