Rebus API#

This topic covers how you set up Rebus so that you can retrieve widget data from the Rebus database through the Rebus Application Programming Interface (API).

How the API works#

Each request to the Rebus database must come from an authenticated client (e.g., an application on your end that sends API requests.). The authentication details that a client needs to be authenticated are stored on the Rebus side in an API user account set up on the Organization Admin screen. An API user account is authorized to send API requests to the data collections of a set of specified widgets.

Events of a typical Rebus API transaction:

Client (i.e., your application) sends POST query with authentication credentials.
Rebus API server authenticates the client. If the client has correct credentials and its IP is whitelisted, the client will be authenticated and the Rebus API server will send to the client a session cookie, which lets the client send queries for a limited time.
Client sends GET query to get data from a widget that’s assigned to its API user account.
Rebus API server responds with requested data in JavaScript Object Notation (JSON) format.

Creating API User accounts#

A tab on the Organization Admin screen, API Users, lets you set up API user accounts through which you can send GET queries to retrieve widget data from the Rebus database.

Pre-requisites

Access to the Organization Admin screen.
The IP address of the machine that will be sending requests. In most cases, this should be the static IP address of your external (public) network. The website https://www.whatismyip.com/ is a good online tool that can help you find the right IP address.

Go to the Organization Admin screen and click the API Users tab.
Click the ‘New User’ button and fill in the needed details. An API user account stores the following authentication-related details:

Fields to set up API user accounts#
Field	What You Enter…
User ID	Set up automatically. Identifier of account that is sending API requests.
Password	Password for account. Password must meet the following criteria: 1) Minimum length of 12 characters. 2) Contain at least one of each of the following: uppercase and lowercase letters, numbers, and special characters.
White Listed IP	The authorized IP address from where the API requests are sent. In most cases, this should be the static IP address of your external (public) network. The website https://www.whatismyip.com/ is a good online tool that can help you find the right IP address.

For an application to be authenticated to send API requests, it needs to be configured with the user ID and password of an API user account and its IP address needs to be among the IP addresses whitelisted for that account. You can create up to five API user accounts.

_images/scn_org_admin_API_users_whitelist1.jpg

Click ‘Save API User’. The API user account is created.

Assigning Widgets and Setting the GET Query Endpoint URL#

Pre-requisites

Widgets set up that have the data you want to retrieve via API.

After setting up the API user account on the Organization Admin screen, do the following:

Open the API user account’s Assigned Widgets tab.
Assign to the user account the widget data collections from which this account is authorized to retrieve data. You can move widgets from the Available list to the Assigned list by clicking the ‘<’ button.

To set the endpoint URL of the GET query for an assigned widget, do the following:

1. Click the widget’s name and then click the gearwheel button. The widget’s URL Builder form appears. This form shows all the widget’s parameters and the default values that are used to populate the widget. At the bottom, the URL value shows the query string of the widget’s GET query endpoint URL.

_images/scn_org_admin_API_users_URL_bldr.jpg

Adjust the parameter values to those you want the GET query to use when you are retrieving this widget’s data via API. The query string is changed to reflect any changes made to the parameter values.
Copy the query string at the bottom of the form and paste it someplace where you can easily get it when you are configuring the application that will be sending GET queries. You will append the query string to another value to build the full GET query endpoint URL for this widget.

Example of query string:

5b8721984eca9d67e53c80c9?parameters=%7B%22PICK_REFERENCE%22:%22ABC%22,%22PICK_TYPE%22:%22E,M,T,G%22,%22PICK_STATUS%22:%22CANCELLED%22%7D

Sending GET Queries for a Widget#

Authenticating to Rebus API server

The Rebus API system uses a stateless approach to retrieve data from widgets. Stateless protocol does not require the server to retain server information or session details. Your authentication credentials will be included in the request header of each request.

In Postman, in the request Authorization tab, select Basic Auth from the Type dropdown list.
Enter your API username and password in the Username and Password fields. In the request Headers, the Authorization header will pass the API a Base64 encoded string representing your username and password values.

GET Queries

The client can now send GET queries to the Rebus API server. A properly formatted GET query endpoint URL comprises two parts.

Part 1: The host and path name, which is constant:
```
https://api.rebusap.com/inbound/extract/
```

and

Part 2: The query string for the widget, which is taken from the API user account record on the Organization Admin screen.

Example:

5b8721984eca9d67e53c80c9?parameters=%7B%22PICK_REFERENCE%22:%22ABC%22,%22PICK_TYPE%22:%22E,M,T,G%22,%22PICK_STATUS%22:%22CANCELLED%22%7D

To build the GET query endpoint URL, the query string is appended to the host and path name:

Example:

https://api.rebusap.com/inbound/extract/5b8721984eca9d67e53c80c9?parameters=%7B%22PICK_REFERENCE%22:%22ABC%22,%22PICK_TYPE%22:%22E,M,T,G%22,%22PICK_STATUS%22:%22CANCELLED%22%7D

Example in Postman:

Setting up Authentication to 3rd Party APIs#

You can set up the credentials that Rebus uses to authenticate to the application programming interfaces (APIs) of third-party systems when itâ€™s doing mass product status updates through the Quality Assurance (QA) module. A tab on the System Details screen, Communication, stores a set of credentials and API endpoints. For each third-party system, you can create a set of credentials that lets Rebus authenticate through one of the following:

Authentication Option	Key Value pairs that are put in request header to authenticate API request
API Key	Key: “Header” Value: Header value from Communication tab. Key: ”API Key” Value: API Key value from Communication tab.
Basic	Key: “Authorization” Value: String of username and password (encoded using Base 64)

You also set up details for the API endpoints to which Rebus is authorized to send its API requests when mass updating product statuses on the third-party system. The credentials are included in the header of the API requests sent to those API endpoints.

Creating a Set of Credentials to send API requests to a Third-Party System

Go to Admin Tools > System > Organization Admin > System Details tab. The System Information screen opens.
From the Existing Systems list, select the third-party system for which you want to set up a set of credentials to authenticate API requests. The main interface is filled with a System Information tab that’s populated with the details of the selected system.
Next to the System Information tab, click the Communication tab and then click ‘New’. Two fields, Method and Authentication, appear.
In Method, leave value at default, ‘API’.
In the Authentication field, select how Rebus will populate the request header with authentication information: API Key or Basic Authentication.

Selected API Key	Selected Basic Authentication
In the API Key field, enter the string of the API key. In the Header field, enter the Header value that, combined with the API Key, will authenticate the message to the third -party system.	Enter Username and password combination that will authenticate Rebus to the third-party system

Selected API Key

Selected Basic Authentication

In the API Key field, enter the string of the API key.

In the Header field, enter the Header value that, combined with the API Key, will authenticate the message to the third -party system.

Enter Username and password combination that will authenticate Rebus to the third-party system

Create an API endpoint record for each API endpoint at the third-party system to which Rebus will be sending API requests: To create an API endpoint record, in the API Endpoints table:

Click the ‘+’’ symbol.

Fill out the Create API Endpoint form. Its fields are described in the table below:

Field

Description

Name

Name of API endpoint.

URL

URL of API endpoint.

Method

HTTP request type thatâ€™s used on the endpoint

GET - to retrieve a resource.

PUT - to update a resource.

POST - to create a resource.

DELETE - to remove a resource.

Content Type

Data format of request:

Application/JSON

Text

Click ‘Create’. You have created an API endpoint record.

Field	Description
Name	Name of API endpoint.
URL	URL of API endpoint.
Method	HTTP request type thatâ€™s used on the endpoint GET - to retrieve a resource. PUT - to update a resource. POST - to create a resource. DELETE - to remove a resource.
Content Type	Data format of request: Application/JSON Text

You have created a communication record: A set of credentials to authenticate to a third-party system. The Quality Assurance (QA) module lets you mass update the status of your products across different systems, send notifications for updates, and consult the module’ss change history.

Rebus API

Contents