Scripted REST API - ServiceNow Fluent
The Scripted REST API defines the endpoints, query parameters, and headers for a scripted REST service [sys_ws_definition].
For general information about scripted REST services, see Scripted REST APIs.
RestApi object
Create a scripted REST API [sys_ws_definition] to define web service endpoints.
| Name | Type | Description |
|---|---|---|
| $id | String or Number | Required. A unique ID for the metadata object. When you build the application, this ID is hashed into a unique sys_id. Format: |
| name | String | Required. The name of the API, which is used in the API documentation. |
| service_id | String | Required. The API identifier used to distinguish this API in URI paths. It must be unique within the API namespace. |
| active | Boolean | Flag that indicates whether the API can serve requests. Valid values:
Default: true |
| short_description | String | A brief description of the API, which is used in the API documentation. |
| consumes | String | A list of media types that resources of the API can consume. Default: application/json,application/xml,text/xml |
| doc_link | String | A URL that links to static documentation about the API. |
| enforce_acl | Array | A list of variable identifiers of ACL objects or sys_ids of ACLs to enforce when accessing resources [sys_security_acl]. For more information, see Access Control List API - ServiceNow Fluent. To not enforce ACLs, set this property to an empty array ( Default: Scripted REST External Default |
| produces | String | A list of media types that resources of the API can produce. Default: application/json,application/xml,text/xml |
| routes | Array | The resources [sys_ws_operation] for the API. For more information, see routes object. |
| policy | String | The policy for how application files are protected when downloaded or installed. Valid values:
|
| versions | Array | A list of versions [sys_ws_version] for the API. For more information, see versions object. Specifying versions allows you to manage different versions of an API and their statuses, such as whether they are active, the default version, or deprecated. |
| $meta | Object | Metadata for the application metadata. With the installMethod property, you can map the application metadata to an output directory that loads only in specific
circumstances. Valid values for installMethod:
|
import { RestApi } from '@servicenow/sdk/core'
import { process } from '../server/handler.js'
RestApi({
$id: Now.ID['rest1'],
name: 'customAPI',
service_id: 'custom_api',
consumes: 'application/json',
routes: [
{
$id: Now.ID['route1'],
path: '/home/{id}',
script: process,
parameters: [{ $id: Now.ID['param1'], name: 'n_param' }],
headers: [{ $id: Now.ID['header1'], name: 'n_token' }],
enforce_acl: [acl],
version: 1,
},
],
enforce_acl: [acl],
versions: [
{
$id: Now.ID['v1'],
version: 1,
},
],
})
import { Acl } from "@servicenow/sdk/core";
const acl = Acl({
name: 'My random ACL',
type: 'rest_endpoint',
script: `answer = (Math.random() > 0.5)`,
active: true,
admin_overrides: false,
operations: ['execute'],
})routes object
Create a scripted REST resource [sys_ws_operation] to define the HTTP method, the processing script, and to override settings from the parent service.
Use the routes object within the RestApi object.
| Name | Type | Description |
|---|---|---|
| $id | String or Number | Required. A unique ID for the metadata object. When you build the application, this ID is hashed into a unique sys_id. Format: |
| name | String | The name of the API resource, which is used in the API documentation. Default: the value of the path property |
| script | Script | Required. The custom script defines how the operation parses and responds to requests. This property supports a function from a JavaScript module, a reference to another file in the application that contains a script, or inline JavaScript. Format:
|
| parameters | Array | A list of query parameters [sys_ws_query_parameter] for the route. For more information, see parameters and headers objects. |
| headers | Array | A list of headers [sys_ws_header] for the route. For more information, see parameters and headers objects. |
| active | Boolean | Flag that indicates whether the resource is used. Valid values:
Default: true |
| path | String | The path of the resource relative to the base API path. The relative URI can contain path parameters such as '/abc/{id}'.Default: / |
| short_description | String | A brief description of the resource, which is used in the API documentation. |
| consumes | String | A list of media types that the resource can consume. This property can be overridden with the PUT, PATCH, or POST methods. Default: The value of the consumes property in the RestApi object |
| enforce_acl | Array | A list of variable identifiers of ACL objects or sys_ids of ACLs to enforce when accessing resources [sys_security_acl]. For more information, see Access Control List API - ServiceNow Fluent. To not enforce ACLs, set this property to an empty array ( Default: Scripted REST External Default |
| produces | String | A list of media types that the resource can produce. Default: The value of the produces property in the RestApi object |
| request_example | String | A valid sample request body payload for the resource, which is used in the API documentation. |
| method | String | The HTTP method that the resource implements. Valid values: GET, POST, PUT, PATCH, DELETE Default: GET |
| authorization | Boolean | Flag that indicates whether users must be authenticated to access the resource. Valid values:
Default: true |
| authentication | Boolean | Flag that indicates whether ACLs are enforced when accessing the resource. Valid values:
Default: true |
| internalRole | Boolean | Flag that indicates whether the route requires the snc_internal role. This property is supported only if the Explicit Roles plugin (com.glide.explicit_roles) is enabled. Valid values:
Default: true |
| policy | String | The policy for how application files are protected when downloaded or installed. Valid values:
|
| version | Number | The version of the API. This property is required if the versions property is used in the RestApi object. The version specified with this property is used to automatically generate a URI with a version, such as /api/management/v1/table/{tableName}. Version numbers identify the endpoint version that a URI accesses. By specifying a version number, you can test and deploy changes without impacting existing integrations. |
| $meta | Object | Metadata for the application metadata. With the installMethod property, you can map the application metadata to an output directory that loads only in specific
circumstances. Valid values for installMethod:
|
routes: [
{
$id: Now.ID['route1'],
path: '/home/{id}',
script: process,
parameters: [{ $id: Now.ID['param1'], name: 'n_param' }],
headers: [{ $id: Now.ID['header1'], name: 'n_token' }],
enforce_acl: [acl],
version: 1,
},
],parameters and headers objects
Create query parameters [sys_ws_query_parameter] and headers [sys_ws_header] for routes in a scripted REST API. Query parameters control what values a requesting user can pass in the request URI. Headers specify what the API accepts and can respond with.
Use the parameters and headers objects within the routes object.
| Name | Type | Description |
|---|---|---|
| $id | String or Number | Required. A unique ID for the metadata object. When you build the application, this ID is hashed into a unique sys_id. Format: |
| name | String | Required. The name of the parameter or header, which is used in the API documentation. |
| required | Boolean | Flag that indicates whether the parameter or header is required. Valid values:
Default: false |
| example_value | String | An example of a valid value for the parameter or header, which is used in the API documentation. |
| short_description | String | A brief description of the parameter or header, which is used in the API documentation. |
| $meta | Object | Metadata for the application metadata. With the installMethod property, you can map the application metadata to an output directory that loads only in specific
circumstances. Valid values for installMethod:
|
parameters: [{ $id: Now.ID['param1'], name: 'n_param' }],
headers: [{ $id: Now.ID['header1'], name: 'n_token' }],versions object
Create versions for a scripted REST API [sys_ws_version] to define web service endpoints.
Use the versions object within the RestApi object.
| Name | Type | Description |
|---|---|---|
| $id | String or Number | Required. A unique ID for the metadata object. When you build the application, this ID is hashed into a unique sys_id. Format: |
| version | Number | Required. A version of the REST API. |
| active | Boolean | Flag that indicates whether the version of the REST API can serve requests. Valid values:
Default: true |
| deprecated | Boolean | Flag that indicates whether the version of the REST API is deprecated. Resources belonging to deprecated versions can serve requests, but are identified as deprecated in documentation. Valid values:
Default: false |
| short_description | String | A brief description of the version of the REST API, which appears in the API documentation. |
| is_default | Boolean | Flag that indicates whether the version of the REST API is the default version. Clients can access the default version using either the versioned or non-versioned URI path. Valid values:
Default: false |
| $meta | Object | Metadata for the application metadata. With the installMethod property, you can map the application metadata to an output directory that loads only in specific
circumstances. Valid values for installMethod:
|
versions: [
{
$id: Now.ID['v1'],
version: 1,
},
],