![Image of Akana] (https://www.akana.com/img/formerlyLOGO8.png) Akana.com
API Hook using SOA Software's Products to Merge both the Box Content and Box Upload API's into a single API, as well as integrate and hide the Box OAuth Auth steps.
- The Box Content API gives you access to the content management features you see in our web app and lets you extend them for use in your own app.
- API Documentation: [Box Content API docs] (https://developers.box.com/docs/)
- Create a Box Developer account at [Box Developers] (https://app.box.com/developers/services) and define your App.
- Click on the "Create a Box Application" right hand menu item
- enter the name of the application (any name you wish) into the "Application Name" field displayed, and ensure that the "Box content" radio button is selected
- Click the "Create Application" button
- If you are not already taken to the App you just created:
- Click on the "My Applications" right menu item
- Click the "Edit Application" button next to your newly created App
- go to the "OAuth2 Parameters" section
- copy the "client_id"
- copy the "client_secret"
- place this value into the "redirect_uri" field: https://"ND HOST:ND HTTPS Port"/box_api_hook/auth_success
- ensure that the "Read and write all files and folders" Scope checkbox is checked
- go to the bottom of the page and click the "Save Application" button
- you must install the pso extensions custom polices:
- unzip the com.akana.pso.apihooks.extensions_7.2.0.zip (available in this repository) into the /sm70 directory.
- unzip the com.akana.pso.apihooks.technology.preview_7.2.90.zip (available in this repository) into the /sm70 directory
- unzip the com.akana.pso.persistence_7.2.0.zip (available in this repository) into the /sm70 directory.
- stop all PM and ND(s)
- run the configurator in update mode for all the PM and ND instances:
-
run this command, depending on whether you are running on Windows or Linux: Windows: [Gateway base dir]\sm70\bin>startup.bat configurator "-Dsilent=true" "-DdeploymentName=Standalone" "-Dproperties=C://myprops.properties"
UNIX [Gateway base dir]/sm70/bin>startup.sh configurator "-Dsilent=true" "-DdeploymentName=Standalone" "-Dproperties=/export/home/username/\myprops.properties"
-
the myprops.properties path must be the fully qualified path, and the file contnents will look like: container.instance.name=[intance name, e.g. PM] credential.username = [administrator login] credential.password = [administrator password] default.host=[instance Host, e.g. localhost] default.port=[instance Port, e.g. 9905]
-
- Using the SOA Admin Console, install the following Plug-ins in each PM container:
- Akana PSO Persistence
- Using the SOA Admin Console, install the following Plug-ins in each ND container:
- Akana APIHooks Enhancements
- restart all PM and ND(s)
- Download BoxAPIHook.zip
- Download the migrations.properties file, and edit it to replace the text with the "Container Key" of the ND or ND cluster in your target PM.
- the container key is found by going to the "Deatils Tab" of the ND cluster, or ND defined in the Policy Manager Console, then looking at the " Container Overview" tab on that page, and copying the "Container Key:" value.
- the container key is found by going to the "Deatils Tab" of the ND cluster, or ND defined in the Policy Manager Console, then looking at the " Container Overview" tab on that page, and copying the "Container Key:" value.
- Login to PolicyManager example: http://localhost:9900
- Select the root "Registry" organisation and click on the "Import Package" from the Actions navigation window on the right side of the screen
- click on button to browse for the BoxAPIHook.zip archive file
- make sure select the migrations.properties file
- click Okay to start the importation of the hook.
- this will create a Box API Hook Organisation with the requisite artefacts needed to run the API.
- Expand the services folder in the Box API Hook you imported and find Box_API_Hook VS
- Expand the contracts folder in the Google Sheets API Hook you imported and find the "Anonymous" contract under the "Provided Contracts" folder
- click on the "Activate Contract" workflow activity in the righ-hand Activities portlet
- ensure that the status changes to "Workflow Is Completed"
- Go to Box API Hook -> Policies -> Operational Policies -> ProcessVariables policy
- Click "modify" in the XML Policy Tab. An XML Policy Content editor dialog will be displayed.
- change the value of the 'appkey' element to be the 'client_id' value you saved from the Box Developers App Console, above.
- Go to the "PM home Dir"/sm70/scripts directory and run the encryptData script/batch file and enter the 'client_secret' you saved from the Box Developers App Console, above.
- copy the resultant value (including the two '==' at the end of the string)
- change the value of the 'appsecret' element to be the 'client_secret' value you just copied.
- change the value of the 'redirectURI' element to be the 'Redirect URL' value you added in the the Box Developers App Console, above.
- save the changes
- click on the "Activate Policy" workflow activity in the righ-hand Activities portlet
- ensure that the status changes to "State: Active"
- Go to Google Sheets API Hook -> Policies -> Operational Policies -> AddAuthToken policy
- click on the "Activate Policy" workflow activity in the righ-hand Activities portlet
- ensure that the status changes to "State: Active"
- Using curl -H "authKey:" http://"URL of the Listener of your ND"/box_api_hook/helloworld
- The correct response should be a JSON object listing the details of the user owning the credentials being used to make the call: { "address": "", "avatar_url": "https://app.box.com/api/avatar/large/229214787", "created_at": "2014-12-15T01:12:03-08:00", "id": "229214787", "job_title": "", "language": "en", "login": "paul.pogonoski@soa.com", "max_upload_size": 2147483648, "modified_at": "2015-03-16T21:49:50-07:00", "name": "Paul Pogonoski", "phone": "+61416101363", "space_amount": 10737418240, "space_used": 790, "status": "active", "timezone": "Australia/Sydney", "type": "user" }
Note: the authKey in the curl request, above, is retrieved by using the process in the [Dropbox 3-legged OAuth Client.pdf] (https://github.com/pogo61/Dropbox-API-Hook/blob/master/src/Dropbox%203-legged%20OAuth%20Client.pdf) file in the /src directory
The Google_Sheets_API_Hook API is a "Virtual Service". That is, its interface is not that of a real service implementation. It can be a proxy to a "real" implementation, or it can be an aggregate (a combination) of a number of "real" implementations. In Policy Manager a "real" implementation is called a "Physical Service". Apart from offering a different interface to the Physical Service, a Virtual Service offers the ability to attach Policies for security, logging, QoS, and a number of other non-functional capabilities. Virtual Services also have the ability to have Custom Process and Scripts run before the Physical Service is called. Here is where a lot of the magic of Integration occurs.
To create the helloworld operation the following was added to a base RAML document to create the box API Hook HelloWorld.raml document:
/helloworld:
get:
description: "returns details about authorised user"
responses:
200:
body:
application/atom+xml:
Then a VS was created by using the RAML as the definition source. The root contect of the VS was made exactly the same as the root context of the Box API Hook VS. the consequense of this is that this simple HelloWorld VS and the Hook VS become a single VS.
Then the /helloworld Operation in the VS was mapped to the GET /users/me operation in the Box API Hook PS.
Go to the Box_API_Hook_Helloworld VS -> Operations Tab -> GET /hellowworld operation -> Process tab you'll see this image: ![Helloworld process] (https://github.com/pogo61/Box-API-Hook/blob/master/Box%20API%20Hook.png)
Double click on the Process activity to see that it call's the Heloworld Process, which call's an invoke on the GET /users/me operation to make the Hello World operation call successful.
The Hello World operation is one simple way of integrating or extending your API's. Take a look at the Box API Integration. this will give you a deeper inderstanding of the richness of our gateway product in integrating to API's
In the event you need to change the API Hook. Here are the instructions to do so.
Put a link to an open source license