Using the REST API with Swagger
The REST endpoints exposed by the Remedy AR System Server are documented by using Swagger specifications. This topic provides guidelines for using Swagger UI. In addition to the Swagger UI, you can view the endpoints provided by this REST API in the End point documentation page.
Accessing AR REST API through Swagger UI
The Swagger UI shows a list of endpoints on a web page. You can read and submit requests after authentication. The following process explains how to access AR REST APIs through the Swagger UI.
You must enable the following CORS (Cross Origin Resource Sharing) on the AR System Server. The CORS headers are configured as Centralized Configuration settings.
- Access-Control-Allow-Credentials
- Access-Control-Expose-Headers
- Access-Control-Allow-Headers
- Access-Control-Allow-Methods
- Access-Control-Allow-Origin
For more information, see Configuration settings A-B.
To download the Swagger UI
- In a web browser open the following URL:
https://github.com/swagger-api/swagger-ui - Click the Clone or download button and select the Download Zip option.
- Save the downloaded file to some location on your computer and extract the contents of the file.
- From the extracted folder, copy the dist folder and rename the dist folder to swagger-ui.
To deploy Swagger UI in a Web container
The following procedure explains how to deploy Swagger UI in Apache Tomcat.
- Move the swagger-ui folder from your custom location to Tomcat\webapps folder.
For example, C:\Program Files\Apache Software Foundation\Tomcat7.0\webapps - From the swagger-ui folder, open the index.html file.
- In the index.html file, search for SwaggerUIBundle.
Replace the url section below the SwaggerUIBundle with the URL details having the following syntax:
[ {url:"http://<AR Server IP address>:<Jetty Server Port>/api/arsys/v1.0/swagger/ars-jwt.json", name:"JWTResource"}, {url:"http://<AR Server IP address>:<Jetty Server Port>/api/arsys/v1.0/swagger/ars-entry.json", name:"EntryResource"}, {url:"http://<AR Server IP address>:<Jetty Server Port>/api/arsys/v1.0/swagger/ars-fields.json", name:"FieldsResource"} ],For example,
[ {url:"http://ARSERVER:8008/api/arsys/v1.0/swagger/ars-jwt.json", name:"JWTResource_Name"}, {url:"http://ARSERVER:8008/api/arsys/v1.0/swagger/ars-entry.json", name:"EntryResource_Name"}, {url:"http://ARSERVER:8008/api/arsys/v1.0/swagger/ars-fields.json", name:"FieldsResource_Name"} ],The default Jetty Server Port is 8008.
(Optional) Turn off the Swagger schema validation by adding
validatorUrl: null,in theSwaggerUIBundleobject of the index.html file.
To authenticate the AR REST API
- Open the following URL in the web browser:
http://<localhost>:<Tomcat port>/swagger-ui/
The default Tomcat port is 8080. - From the Select a definition drop-down, select JWTResouce.
- Click on the /jwt/login API.
- Click Try it out!.
- Enter details such as username and password and then click Execute.
Status code 200 is displayed. - Copy the text in the Response body.
The copied text is a token to authenticate REST APIs. - From the Select a definition drop-down on the right hand corner, select EntryResource (for entry APIs) or FieldsResource (for field APIs).
- Click Authorize.
The Available authorization dialog-box is displayed.
- In the text-box, enter AR-JWT, space, and paste the copied token.
- Click Authorize and close the dialog box.
You can now access any AR REST API by entering relevant field information. For more information, see End points in AR REST API.
Using the RSSO_Oauth2 authentication with Swagger UI
If you have Remedy Single Sign-On (RSSO) installed, you can use the RSSO_Oauth2 authentication scheme through the Swagger UI. The following process explains how to access AR REST APIs through OAuth2 authentication.
Before you begin
Make sure that the Cross-domain requests are allowed on the Remedy SSO Server.
You can enable the Cross-domain requests on Apache Tomcat. For more information, see https://tomcat.apache.org/tomcat-7.0-doc/config/filter.html#CORS_Filter. An error occurs if Cross-domain requests are not enabled.
To register clients in the Remedy SSO Console
- Register the Swagger UI as a Remedy SSO client in the Remedy SSO Console. For more information, see
OAuth Client Authentication
.
On the Remedy SSO Console, in the Redirect URI text box enter the following URL:
http://<Swagger Tomcat Host Name or IP address>:<Tomcat HTTP port>/swagger-ui/oauth2-redirect.html
The default port is 8080.
Best Practice
Use Localhost in the redirect URL. Use the Host Name or IP address of the computer where Swagger is running.Click Save.
Copy the ClientSecret shown in the pop-up.
To configure OAuth authentication in the Swagger UI
Add the following attribute in the index.html file, located in the swagger-ui folder.
oauth2RedirectUrl: window.location.origin +"/swagger-ui/oauth2-redirect.html"
Replace the url attribute below the SwaggerUIBundle with the following URL details.
[{url:"http://<AR Server IP address>:<Jetty Server port>/api/arsys/v1.0/swagger/ars-jwt.json",name:"JWTResource"}, {url:"http://<AR Server IP address>:<c>/api/arsys/v1.0/swagger/ars-entry.json?rssoUrl= http://<rsso server ip>:<RSSO Jetty Server port>",name:"EntryResource"}, {url:"http://<AR Server IP address>:<Jetty Server port>/api/arsys/v1.0/swagger/ars-fields.json?rssoUrl= http://<rsso server ip>:<RSSO Jetty Server port>",name:"FieldsResource"}],The default Jetty Server port is 8008.
- Refresh the browser.
- Click Authorize.
The following pop-up is displayed.
- Enter Client ID and ClientSecret for the client registered in your Remedy SSO admin console. Refer to the ClientSecret that you have saved.
- Click Authorize.
A new browser window opens.
- Enter the AR System login credentials. Click Log in.
After successful authentication, the following screen is displayed.
- Click OK. You are now authorised through OAuth2 authentication.
Related topics
Integrating AR System forms with a third-party application by using REST API
Comments
Am I correct in assuming that the Swagger/OpenAPI-specification is version 2.0?
Hello Anders,
Yes, the Swagger/OpenAPI-specification version is 2.0.
Regards,
Rudrangshu
Typo? 1)To authenticate the AR REST API
Open the following URL in the web browser: http://:<8008>/swagger-ui/
Shouldn't that point to the tomcat server and the swagger-ui web app?
Hello Anders,
Thanks for bringing this to our notice.
We have corrected the topic.
Regards,
Anagha
is the Swagger UI support applies to older versions of remedy (or) is it a newly introduced feature for 19.02 upwards?
Hello Karthick,
Using Swagger UI is a new feature introduced in version 19.02. It is available for Remedy AR System version 19.02 and later.
Regards,
Anagha
We are not getting swagger-ui to work on our 19.05-server, it yields a CORS-error.
ar.conf contains: Access-Control-Allow-Credentials: T Access-Control-Expose-Headers: * Access-Control-Allow-Headers: * Access-Control-Allow-Methods: * Access-Control-Allow-Origin: *
Hello Anders,
We are working on your query. We will respond soon.
Regards,
Anagha
Hello Anders,
Please try entering comma-separated HTTP method names instead of * for Access-Control-Allow-Methods in the ar.conf file. For example - GET, POST, PUT, and DELETE.
Hope this helps.
Regards,
Anagha
Please can you review /api/v1.0/swagger.json url ? shouldn't it be ars-jwt.json , ars-entry.json ... ?
Hello Andreas,
Thanks for the feedback.
We are working on your query. We will respond soon.
Regards,
Anagha
Hello Andreas,
The following URL is given as an example:
/api/v1.0/swagger.json
The actual syntax is documented as Point 4 in the To deploy Swagger UI in a Web container section. The syntax is as follows:
[ {url:"http://<AR Server IP address>:<Jetty Server Port>/api/arsys/v1.0/swagger/ars-jwt.json", name:"JWTResource"}, {url:"http://<AR Server IP address>:<Jetty Server Port>/api/arsys/v1.0/swagger/ars-entry.json", name:"EntryResource"}, {url:"http://<AR Server IP address>:<Jetty Server Port>/api/arsys/v1.0/swagger/ars-fields.json", name:"FieldsResource"} ],Hope this helps.
Regards,
Anagha
Log in or register to comment.