Start a new session. Web services use a connectionless protocol. This operation allows multiple Web service invocations to appear as if they belong to the same session.

This operation places a cookie on the HTTP connection. If the client supports cookies, no additional actions are required to maintain the session.

As a second option, the client can provide the returned session token in the HTTP basic authentication using &sessionToken=X for the user name and providing a blank password, where X is the session token returned by this operation.

As a third option, the client can provide the returned session token with a SOAP header element sessionToken like the following:

If the token is received by the server through more than one of these approaches, precedence is first given to the SOAP header, then to the HTTP authentication, and lastly to the cookie.

While the session is open, all responses for requests made during the session contain a “PUT_SOMETHING_HERE” session token in the SOAP header element.

/services/webservices/system/util/session/operations/

sessionTimeout (optional): The number of seconds to keep an inactive session alive before it is automatically closed.

sessionName (optional): The session name. This usually includes the application name as part of the string.

sessionToken: A token that uniquely identifies this session. This should be used within the SessionToken SOAP header for future invocations of operations.

IllegalArgument: If sessionTimeout is present and is not a positive integer.

NotAllowed: If a session for the current connection is already open.