User Token for webhook URL

Raghav Manchand · ‎03-01-2024

Hello Team,

I am looking to create a user token in the Servicenow Vancouver Instance for a webhook URL that directs to a Scripted API. Could you please guide me on how to accomplish this and what modifications I need to make? Please note that I do not wish to install any external plugins for this purpose.

Thank you.

How can I achieve this and what changes do I need to make?
Note: I don't want to have any external plugin installation for this

Kieran Anson · ‎03-03-2024

Token based authentication is a capability delivered in the Washington DC release and can be read about here.

For pre-WDC releases, you'd need to set the scripted rest API to unauthenticated and apply your own scripted logic. This could be a piece of condition logic that looks up the specified API Key and checks for validity against a system property or custom API key storage table. However, it is worth noting that technically the API session is "authenticated" at this point, and any work done needs to be tightly controlled to prevent security issues such as time-attacks