Rest Message From scripted rest API

eyal abu hamad
Mega Sage

3 hours ago

I have a rest message with OAuth token of third party vendor
when I try with the test button in the rest message it works fine
but when I try with the scripted rest api I got this
"errorCode":"AUTHORIZATION_INVALID_TOKEN","message":"The access token provided is expired, revoked or malformed."}

this is my script

(function process(request, response) {
  var J = new global.JSON();

  // --- get IDs from your payload (adapt as needed) ---
  var raw = (request.body && request.body.dataString) || "";
  var p = {};
  try { p = raw ? J.decode(raw) : {}; } catch(e){}
  var accountId  = (p.accountId  || p.data && p.data.accountId  || "").trim();
  var envelopeId = (p.envelopeId || p.data && p.data.envelopeId || "").trim();

  if (!accountId || !envelopeId) {
    gs.error("[DS] Missing accountId/envelopeId. accountId=" + accountId + " envelopeId=" + envelopeId);
    response.setStatus(400); return;
  }

  // ---- use your REST Message + Method ----
  var r = new sn_ws.RESTMessageV2('Docusign Auth', 'Get Envelope');

  // 🔒 1) FORCE the OAuth profile BY SYS_ID (no ambiguity across scopes)
  //    How to get it: open your OAuth Entity Profile record → right-click header → Copy sys_id
  var OAUTH_PROFILE_SYS_ID = 'bc873919875cb25040f210273cbb3582';
  r.setAuthenticationProfileId('oauth2', OAUTH_PROFILE_SYS_ID);

  // 2) Vars must match your method's variable names exactly
  r.setStringParameter('accountid',  accountId);
  r.setStringParameter('envelopeid', envelopeId);

  // 3) Helpful logs
  gs.info("[DS] Endpoint -> " + r.getEndpoint());

  var resp = r.execute();
  var code = resp.getStatusCode();
  var body = (resp.getBody() || "") + "";
  var errm = resp.getErrorMessage();

  gs.info("[DS] HTTP " + code + (errm ? (" | err=" + errm) : ""));
  gs.info("[DS] Body preview: " + body.substr(0, 1500));

  // 🔁 Fallback: if 401, manually fetch token from that SAME profile and retry once
  if (code === 401) {
    gs.info("[DS] 401 -> retry with manual Bearer from OAuth profile");
    var oauth = new sn_auth.GlideOAuthClient();
    var tok   = oauth.getTokenByProfileId(OAUTH_PROFILE_SYS_ID);
    var access = tok && tok.getAccessToken();
    if (!access) { gs.error("[DS] Could not fetch access token. Re-authorize profile (Get OAuth Token)."); response.setStatus(500); return; }

    var r2 = new sn_ws.RESTMessageV2('Docusign Auth', 'Get Envelope');
    r2.setStringParameter('accountid',  accountId);
    r2.setStringParameter('envelopeid', envelopeId);
    r2.setRequestHeader('Authorization', 'Bearer ' + access);

    gs.info("[DS] Endpoint (retry) -> " + r2.getEndpoint());
    var resp2 = r2.execute();
    gs.info("[DS] HTTP (retry) " + resp2.getStatusCode() + " | " + (resp2.getErrorMessage() || ""));
    gs.info("[DS] Body preview (retry): " + (resp2.getBody() || "").substr(0,1500));
  }

  response.setStatus(200);
})(request, response);
0 Helpfuls
  • 231 Views
6 REPLIES 6

Bhuvan
Mega Patron

3 hours ago

@eyal abu hamad 

 

Any reason to use Scripted REST API rather than Flow Designer as this whole flow is much developer friendly and easy to setup using REST API action and OAuth registry ?

 

You can refer below threads where I provided more information

 

https://www.servicenow.com/community/itsm-forum/how-to-generate-access-token-from-the-oauth-token-ur...

 

https://www.servicenow.com/community/sam-forum/custom-saas-integration-sam/m-p/3363648#M19020

 

If this helped to answer your query, please mark it helpful & accept the solution. 

 

Thanks,

Bhuvan

0 Helpfuls

eyal abu hamad
Mega Sage
In response to Bhuvan

2 hours ago

I will explain the need for what im doing
I have a listener in DocuSign, when an envelope created there I want to notify ServiceNow and send the data of the envelope
once I get them I want to retrieve the link to sign the document and sent the link from ServiceNow side to the end user

0 Helpfuls

Bhuvan
Mega Patron
In response to eyal abu hamad

2 hours ago

@eyal abu hamad 

 

This is doable using Flow Designer 'REST API Asynchronous' trigger. Create a trigger so that when envelope is created in DocuSign, send a REST API inbound call to ServiceNow and create action to retrieve the document link and send it to end user.

Bhuvan_0-1759149193184.png

 

https://www.servicenow.com/docs/bundle/zurich-api-reference/page/integrate/inbound-rest/reference/r_...

 

If this helped to answer your query, please mark it helpful & accept the solution. 

 

Thanks,

Bhuvan

0 Helpfuls

Ankur Bawiskar
Tera Patron
Tera Patron

3 hours ago

@eyal abu hamad 

the 3rd party team must be using some API user to consume your Scripted REST API.

Seems that API user doesn't have read access to get the token.

OR

The token has expired

Why not let ServiceNow handle the token generation via REST Message?

You can simply associate the OAuth profile with your REST Message.

If my response helped please mark it correct and close the thread so that it benefits future readers.

Regards,
Ankur
Certified Technical Architect  ||  9x ServiceNow MVP  ||  ServiceNow Community Leader
0 Helpfuls