I've been trying to feed a secret created from the...
# suitescriptj
Jono
04/16/2021, 3:26 AMI've been trying to feed a secret created from the UI 'API Secrets' page through to a https post though not having any luck.
Jono
04/16/2021, 3:26 AMvar secureToken = https.createSecureString({
input: 'custsecret_mypassword'
});
var response = https.request({
url: 'https://ptsv2.com/t/999999/post',
method: 'POST',
credentials:[secureToken],
body: 'My POST Data: ' + secureToken
});
Jono
04/16/2021, 3:28 AMdoco says that the secure token can be used in the https.request credentials parameter which will replace the reference in the body with the decrypted password.
The examples are a bit skinny and I've become stuck. Any ideas?
b
battk
04/16/2021, 3:51 AMyour body is a string, adding your secure string to a string just creates a normal string that wont have any credentials in it
battk
04/16/2021, 3:52 AMuse the secure string as the body
👍 1
battk
04/16/2021, 4:04 AMif you include the credentials as a parameter to your request, you can also just use the secret's script id in your body as a normal string
battk
04/16/2021, 4:04 AMuse {custsecret_mypassword} as the string you would want replaced
j
Jono
04/16/2021, 4:34 AMthanks battk - I've changed the secure string as the body, though it seems that it's not grabbing the password from the field from the API Secrets - It's returning the script id.
var secureToken = https.createSecureString({
input: 'custsecret_mypassword'
});
var response = https.request({
url: 'https://ptsv2.com/t/vsrfd-999999/post',
method: 'POST',
credentials:[secureToken],
body: secureToken
});
comes through as:
b
battk
04/16/2021, 4:35 AMall the credential stuff in request works by string replacement
battk
04/16/2021, 4:36 AMwhere expressions are denoted as beginning with { and ending with }
battk
04/16/2021, 4:36 AMuse {custsecret_mypassword} as the string you would want replaced
battk
04/16/2021, 4:36 AMcustsecret_mypassword by itself is treated as a normal string
j
Jono
04/16/2021, 4:38 AMi think the request is replacing sucessfully - the secureToken param is being replaced with custsecret_mypassword
Jono
04/16/2021, 4:38 AMthough https.createSecureString is not pulling my password from the API Secret?
b
battk
04/16/2021, 4:38 AMokay, then do the boring thing of making your secure string input "im a normal string"
battk
04/16/2021, 4:39 AMyour post body will be the perfectly normal string
battk
04/16/2021, 4:39 AMbecause it has no template expression in it
j
Jono
04/16/2021, 4:40 AMgot it...
Jono
04/16/2021, 4:47 AMthanks Battk - the string input for the secureToken needs the scriptID to be wrapped
b
battk
04/16/2021, 4:49 AMi personally find it easier to not use the secure string at all
battk
04/16/2021, 4:49 AMyou put the id of the secret in the credentials parameters
battk
04/16/2021, 4:50 AMand the request will automatically do the string replacement without using a secure string
j
Jono
04/16/2021, 5:17 AMThanks for the tip - i tried though could not get the body to do the string replacement. It replaced the parameter though.
var response = https.request({
url: 'https://ptsv2.com/t/999999/post?credentials='+'{custsecret_mypassword}',
method: 'POST',
body: 'test body ' + '{custsecret_mypassword}'
});
b
battk
04/16/2021, 8:45 AMneed to set the options.credentials parameter
e
Eduard
04/20/2021, 2:40 PMalso see this for a similair solution
https://netsuiteprofessionals.slack.com/archives/C29HQS63G/p1616421976227100?thread_ts=1616369048.217800&cid=C29HQS63G
👍 1
3 Views