Call Web API from external system

RE: Call Web API from external system

priyankag0001 — Fri, 16 Aug 2019 10:09:17 GMT

Hi Apoorv,

Could you provide more details for SAML enabled environment.

RE: Call Web API from external system

Ankur V — Thu, 20 Jun 2019 17:09:37 GMT

To test your API use postman application, create a webapi as GET in appian with an endpoint and use basic authentication. Here' s a simple GET API response code that you can test with

a!httpResponse(
  /*
  * The 'statusCode' parameter is a number that represents the HTTP status code
  * of the response. If no status code is specified, a default of '200' is used,
  * meaning that the request was successful.
  */
  statusCode: 200,

  /*
  * The 'headers' parameter is a list of HTTP headers to include on the response.
  * HTTP headers should be built with 'a!httpHeader()'.
  */
  headers: {
    a!httpHeader(name:"Authorization", value:"Basic sdsdefberirefuncvuebufe")
  },

  /*
  * The 'body' parameter is the text that will be included in the HTTP response's
  * body.
  */
  body: " YOU JUST ROCKED THE API"
  )

In the a!httpHeader(name:"Authorization", value:"Basic " use the code that you get from postman . On Postman create a GET API , enter the url you generated from the webapi in appian enter username and password of the user that is authorized to use the API then click on "code" it will generate the API Basic token that you need to add to the a!httpHeader(name:"Authorization", value:"Basic cdcdcdc dc df" in the API configuration in Appian.

Note : this is only for Basic Authentication method, starting 19.2 API are can be controlled by API key that are associated with the service account more information can be found here.

RE: Call Web API from external system

Bhanu Voora — Thu, 20 Jun 2019 15:59:36 GMT

Hi Apporv, Thanks for the reply.

We are not using SAML, Can you please tell me in detail what needs to be done for authentication.

Like how to give authentication details in Http Header and how to call the Web-API link by passing the Basic user credentials.

Also I am not clear on what you have mentioned to create API key in Admin Console. Could you please give more details and any sample code will be really helpful for me. Thanks

RE: Call Web API from external system

Apoorv Gangwar — Mon, 10 Jun 2019 00:02:55 GMT

3) For baisc authentication, you can give it somewhat like this:

If you are not using SAML, you can create API key (along with Service Account) in Admin Console for the Web API, that you created.

-----------------or--------------------

f you are using SAML, in the WebAPI code,

a!httpHeader(name: "Authorization", value: "Basic <<Username:Password>>")

In the value tag, you encode username and password (which you created to be used for Web API) to base64 in the format: username:password and add Basic as a prefix.

RE: Call Web API from external system

Bhanu Voora — Sun, 09 Jun 2019 17:04:58 GMT

Hi Josep, I remember some where in apian community discussions I have read about it so was confirming on the same. Thanks for the information.

RE: Call Web API from external system

josep — Mon, 03 Jun 2019 19:28:58 GMT

Unless you are trying to do something extra like single sign on, or calling another service in the webapi then doesn’t sound like you need anything else.

Is there anything that you saw on the console that could be causing confusion? Or was the reason for you to ask this?

Jose

RE: Call Web API from external system

Bhanu Voora — Mon, 03 Jun 2019 16:01:00 GMT

Thank you Josep for your response. your information is very clear and helpful.

Regarding point 4, what I mean to ask is other than creating basic user and providing security through Group to Web API, is there any set up need to be made in Admin Console like adding the site as trusted site if I the Web API url is accessed in a site out of Appian box?

Once again Thanks for all the inputs...

RE: Call Web API from external system

josep — Mon, 03 Jun 2019 08:33:41 GMT

Hello Bhanu,

1) no the web api requires a named user on the system

2) yes a basic user can use a webapi as long as that user has enough rights to execute it.

Regarding your question if one user can be used by multiple, I recommend to reach support or your trusted vendo to figure it out if you contract allows it. I don’t thinks so but please check it.

3) the authentication goes on the http headers.

4) you create users on the admin console and assign groups in designer. So it is a mix of places to set it up.

5 ) googling “postman test rest api”I found this link,

medium.com/.../api-testing-using-postman-323670c89f6d

I have to say that you can even test it using Curl command in Linux ,

curl -u [username]:[password] https://[Appian Site]/suite/webapi/[webapi path]

or any tool that allows you to make a http request.

Take a look

Hope this helps

Jose