The Interview Web Service does not provide for authentication. When using the /SPSSMR/Interviewing/api/surveys/PROJECT URL, the response will contain a URL that is used to post a page answer, and the header will contain a SessionToken value. The session token must be included in subsequent requests as described in SessionToken header value. As it is not possible to guess the session token, is it also not practical to post answers to other interviews.

The interview does have the capability to perform authentication. The sample management authentication parameters are normally supplied in the initial POST to /SPSSMR/Interviewing/api/surveys/PROJECT. If authentication is successful, the response will contain the first interview page. If authentication is not successful, the first page will contain the questions needed to obtain the required sample fields. This is how authentication is currently implemented with mrIWeb and the session engine. See /api/interviews/ENGINE/PROJECT/functions/FUNCNAME for more information.