Use bearer token for REST Message authentication

Lucas Fernando · ‎03-30-2023

Hi.

I'm building a REST Message application to get data from a third-party API. However I'm stuck at the authentication setting.

To get the data I need, I need to use a bearer token, but this token only lasts for one hour. So I need to get the token (using POST) and, after it, make a GET request.

I can get the token, but I have no idea how I pass it as an authentication parameter to the POST request.

Has anyone faced this problem?

Thanks for the help.

Kamil Smusz · ‎03-30-2023

Hi Lucas,

You can create script include which will be using Rest Message to generate token - this will be function 1 then you can create second function and call there Rest Message to get data and pass token to this function from first function. In that scenario second function will trigger token generation each time when it will run. Example below

getToken: function() {

        try {
            var rm = new sn_ws.RESTMessageV2('xxx', "Token");
            var response = rm.execute();
            var responsebody = response.getBody();
            var httpStatus = response.getStatusCode();

            var a = JSON.parse(responsebody);
            var token = a.access_token;
            
            return token;
        } catch (ex) {
            var message = ex.getMessage();
            gs.error("xxx:Token:Error: " + message);
        }
    },

    getlist: function() {

        try {

            var date = new GlideDate();
            date.addMonthsUTC(-1);
            var rm = new sn_ws.RESTMessageV2('xxx', "GET list");
            rm.setStringParameter('date', date);
            rm.setStringParameter('token', this.getToken());
            var response = rm.execute();
            var responsebody = response.getBody();
            var httpStatus = response.getStatusCode();

            var a = JSON.parse(responsebody);
			
            return a;
        } catch (ex) {
            var message = ex.getMessage();
            gs.error("xxx:getlist:Error: " + message);
        }
    },

In Rest Message you need to add token like below (name of the parameter may be different then authorization but it will be described in documentation from 3rd party)

View solution in original post

harikrishna De1 · ‎11-17-2023

I have to pass the username and password through body, that’s how mule-soft queue integration working. I can’t give the username and password in rest only through script I have to set the body.

Kamil Smusz · ‎11-18-2023

hi @harikrishna De1 i don't think you understand.. is below part of the function working (when you comment the rest of the code)?

var body = "username=username&password=password";

var authRequest = new sn_ws.RESTMessageV2();
authRequest.setEndpoint("https://xxxxxxxxxxxx");
authRequest.setRequestHeader("Accept", "application/json");
authRequest.setRequestHeader("Content-Type", "application/x-www-form-urlencoded");
authRequest.setHttpMethod('POST');
authRequest.setRequestBody(body);

var authResponse = authRequest.execute();
var responseBody = authResponse.getBody();
var token = responseBody.access_token;
var httpStatus = authResponse.getStatusCode();

gs.info('Body:', body);
gs.info('HTTP Status:', httpStatus);
gs.info('Token:', token);