This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

how to enable REST API support for custom application

Go to solution
Lynn
New Contributor II
New Contributor II

‎09/23/2023 09:20 PM - edited ‎09/23/2023 09:43 PM


Hi,

We have an custom application does not support REST interface. but it provided APIs to get the accounts and manage the accounts.
Is it possible we can add another service layer which will provide REST API to Saviynt and the service layer will use the existng API of the custom application to manage the accounts reconciliation and provisioning?

If it is possible, is there any best practice available?
We know we could develop a custom connector to connect to the custom application directly. but we would like to use the REST interface.

Regards,
Lynn

 

0 Kudos
4 REPLIES 4

Go to solution
AmitM
New Contributor III
New Contributor III

‎09/25/2023 06:32 AM

Hi Lynn, I would assume if the target is not supporting REST, it might be SOAP. 

And, you can convert SOAP to REST using AWS API Gateway or any other. Use Lambda functions for transformations and authentication.

I previously in one project used CA API Gateway , also known as Layer 7 at that time to convert APIs to REST and use the new url(API gateway one) as my recon / provisioning URL/Target. 

Custom connector is an option too, haven't used that yet.

Having a disconnected app and then a custom jar in Saviynt to pick , provision and update status back in Saviynt might also be an option 

0 Kudos

Go to solution
Lynn
New Contributor II
New Contributor II

‎09/26/2023 08:20 AM

Hi Amit,

Thank you so much for the information.

In your project of using the CA API gateway.
There will be two authentications:
1. When End User access the CA API gateway.
2. When CA API gateway access the legacy API.

Do you store the connection information of the legacy API in CA API gateway or the information need to be passed from end user?

Regards,
Lynn

0 Kudos

Go to solution
AmitM
New Contributor III
New Contributor III

‎09/26/2023 09:54 AM - edited ‎09/26/2023 09:59 AM

Hi Lynn,

I created a local identity user in gateway and password that is used for gateway authentication. And for fetching data from actual target and doing the XSLT transformations, used endpoint/target authentication.

As a consumer (which is Saviynt in this case), don't use the endpoint auth. That's all is in gateway configs. In Saviynt or postman , it is the gateway user and password.

To preciously answer your question "Do you store the connection information of the legacy API in CA API gateway or the information need to be passed from end user?"

yes stored it in API gateway. Legacy API auth is not passed by end user anywhere else.

0 Kudos

Go to solution
Lynn
New Contributor II
New Contributor II

‎09/26/2023 11:31 AM

@AmitMThanks a lot.

0 Kudos
Copyright © 2023 Khoros, LLC