I couldn't get POSTMAN working with just the NS to...
# suitescriptc
Craig
02/04/2021, 1:38 AMI couldn't get POSTMAN working with just the NS token details which my was litmus test - doubt their system supports oauth
b
battk
02/04/2021, 1:43 AMPerhaps they require you to install their integration record first
c
Craig
02/04/2021, 1:43 AM@battk I wish!
Craig
02/04/2021, 1:43 AMThey don't have anything to do with NetSuite
Craig
02/04/2021, 1:44 AMTHey're just asking for a callback URL to send fulfilments to and two auth values: USER, SECRETY KEY
Craig
02/04/2021, 1:44 AMSo that can only be TBA or username / password (which would require NLAUTH headers I believe).
b
battk
02/04/2021, 1:47 AMProbably want to get clarification
battk
02/04/2021, 1:48 AMThey might mean oauth 2
c
Craig
02/04/2021, 1:49 AMI thought OAUTH 2 would require more than just two fields to authenticate?
Craig
02/04/2021, 1:50 AMOR maybe not - I'll play around with that.
b
battk
02/04/2021, 1:52 AMif you skip to the end, you only need the access token
battk
02/04/2021, 1:53 AMif you start at the beginning, then the client id and secret can be used in a browser redirect based flow to get the access token
battk
02/04/2021, 1:53 AMand refresh token in netsuite's case
p
PNJ
02/04/2021, 8:40 AMIn the past I’ve just used a without login suitelet & hard-coded an API key that you ask them to put in the URL. Fast fail in the script if it isn’t set correctly. Not elegant, but does the job because you’re not dealing with returning data
c
Craig
02/04/2021, 9:18 AM@PNJ How did you do that?
Craig
02/04/2021, 9:18 AMI'm hoping I don't have to resort to a bit of a hack but it might be necessary!
p
PNJ
02/04/2021, 9:30 AMIt's really simple. Like I said, I needed something quick & there was 0 risk involved with the data we were handling.
PNJ
02/04/2021, 9:30 AMGet them to call the suitelet with
&apikey=abcdefghijklwhatever Copy code
function onRequest(context) {
if (context.request.method === 'GET') {
if (context.request.parameters.apikey=='abcdefghijklwhatever') {
// do stuff
} else {
log.debug('sweet let', 'DENIED');
}
}
else
{
log.debug('sweet let','bad request type');
}
return true;
}PNJ
02/04/2021, 9:31 AMIn your case you'd have to adapt it for
POSTGETc
Craig
02/05/2021, 1:31 AM@PNJ thanks - looks like the sender cannot do anything other than HTTP basic
Craig
02/05/2021, 1:31 AMand they can't add anything to the headers
Craig
02/05/2021, 1:31 AMfrustrating!
b
battk
02/05/2021, 1:40 AMif you are desperate, you can probably badly implement http basic in an external suitelet
battk
02/05/2021, 1:41 AMassuming they arent doing the actual challenge part of basic that nobody does anymore
c
Craig
02/05/2021, 1:46 AMWhat a pain - that will be my backup if all else fails
Craig
02/07/2021, 12:20 PM@battk it turns out the sender ONLY support HTTP BASIC and sending PLAINTEXT
Craig
02/07/2021, 12:20 PMso I can't even use celigo as that has to be JSON
Craig
02/07/2021, 12:20 PMlooks like my only option is what you suggested.
p
PNJ
02/07/2021, 12:28 PMCrikey. I’d probably ask them when they planned on moving on from 1990s technology
c
Craig
02/07/2021, 12:31 PMYeah....
Craig
02/07/2021, 12:32 PMThis is stopping go live on this NetSuite / 3PL integration
p
PNJ
02/07/2021, 3:21 PMThis actually might be a good use case for something like AWS Lambda - use it as a stateless bridge that forwards the call on
c
Craig
02/07/2021, 11:03 PM@PNJ AWS was my next port of call, it does mean budget approval plus the ops team having to monitor that service on top of all the other services though.
m
matt.graney
02/09/2021, 5:46 PM@Craig, I see the ticket you raised. Perhaps you could use MyAPI which I think would allow you to customize a response. See https://docs.celigo.com/hc/en-us/articles/360047267771-What-is-My-API-. You’d just need to write a little JS hook to return the synchronous response that you want, and that same script could then invoke other flows etc. via the integrator.io API. Happy to help explain that further if needed.
2 Views