Newer
Older
1001
1002
1003
1004
1005
1006
1007
1008
1009
1010
1011
1012
1013
1014
1015
1016
1017
1018
1019
1020
1021
1022
1023
1024
1025
1026
1027
1028
1029
1030
1031
1032
1033
1034
1035
1036
1037
1038
1039
1040
1041
1042
1043
1044
1045
1046
1047
</div>
</div>
</div>
<div class="md-content" data-md-component="content">
<article class="md-content__inner md-typeset">
<h1 id="postman">Postman</h1>
<p>In this section we can use Postman to publish an API as a provider and use it as an invoker.</p>
<h2 id="requisites">Requisites</h2>
<ul>
<li>We will need to have Node.js installed since we will use a small script to create the CSRs of the certificates.</li>
<li>An instance of CAPIF (If it is not local, certain variables would have to be modified both in the Node.js script and in the Postman environment variables).</li>
</ul>
<h2 id="first-steps">First steps</h2>
<ol>
<li>Install the Node dependencies <a href="./package.json" download>package.json</a> to run the script with:</li>
</ol>
<pre><code>npm i
</code></pre>
<ol>
<li>Run the <a href="./script.js" download>script.js</a> with the following command:</li>
</ol>
<pre><code>node script.js
</code></pre>
<ol>
<li>Import Postman collection and environment variables (<a href="./CAPIF.postman_collection.json" download>CAPIF.postman_collection.json</a> and <a href="./CAPIF.postman_environment.json" download>CAPIF.postman_environment.json</a>)</li>
<li>Select CAPIF Environment before start testing.</li>
</ol>
<h2 id="remote-capif">Remote CAPIF</h2>
<p>If the CAPIF is not local, the host and port of both the CAPIF and the register would have to be specified in the variables, and the CAPIF_HOSTNAME in the script, necessary to obtain the server certificate.</p>
<p><strong>Enviroments in Postman</strong></p>
<pre><code>CAPIF_HOSTNAME capifcore
CAPIF_PORT 8080
REGISTER_HOSTNAME register
REGISTER_PORT 8084
</code></pre>
<p><strong>Const in script.js</strong></p>
<pre><code>CAPIF_HOSTNAME capifcore
</code></pre>
<h2 id="capif-flows">CAPIF Flows</h2>
<p>Once the first steps have been taken, we can now use Postman requests. These requests are numbered in the order that must be followed to obtain everything necessary from CAPIF.</p>
<h3 id="creation-of-user-by-admin">Creation of User by Admin</h3>
<p>The first step would be for an administrator to create a user with which a provider and an invoker will be created. To do this, the admin must log in to obtain the token needed in admin requests.</p>
<h4 id="01-login_admin"><strong>01-Login_admin</strong></h4>
<p><img alt="Flow" src="../../images/flows/01_Login_Admin.png" /></p>
<h4 id="02-creation-of-user"><strong>02-Creation of User</strong></h4>
<p><img alt="Flow" src="../../images/flows/02_Creation_of_user.png" /></p>
<h3 id="publication-of-an-api">Publication of an API</h3>
<p>The next step is to register a provider using the user created by the administrator in order to publish an API.</p>
<h4 id="03-getauth_provider"><strong>03-getauth_provider</strong></h4>
<p><img alt="Flow" src="../../images/flows/03_Register_of_AEF_GetAuth.png" /></p>
<h4 id="04-onboard_provider"><strong>04-onboard_provider</strong></h4>
<p><img alt="Flow" src="../../images/flows/04_AEF_API_Provider_registration.png" /></p>
<p>At this point we move on to using certificate authentication in CAPIF. In Postman it is necessary to add the certificates manually and using more than one certificate for the same host as we do in CAPIF complicates things. For this reason, we use the script to overwrite a certificate and a key when it is necessary to have a specific one.</p>
<p>To configure go to <strong>settings</strong> in Postman and open the <strong>certificates</strong> section. </p>
<ul>
<li>Here, activate the <strong>CA certificates</strong> option and add the <strong>ca_cert.pem</strong> file found in the <strong>Responses</strong> folder.</li>
<li>Adds a client certificate specifying the CAPIF host being used and the files <strong>client_cert.crt</strong> and <strong>client_key.key</strong> in the <strong>Responses</strong> folder.</li>
</ul>
<p>Once this is done, the node script will be in charge of changing the certificate that is necessary in each request.</p>
<h4 id="05-publish_api"><strong>05-publish_api</strong></h4>
<p><img alt="Flow" src="../../images/flows/05_AEF_Publish.png" /></p>
<p>Once the api is published, we can start it. In this case we have a test one created in python called <a href="./hello_api.py" download>hello_api.py</a> that can be executed with the following command:</p>
<pre><code>python3 hello_api.py
</code></pre>
<p>The API publication interface is set to localhost with port 8088, so the service must be set up locally. If you wanted to build it on another site, you would have to change the interface description in the body of publish_api.</p>
<p>With this the provider part would be finished.</p>
<h3 id="calling-the-api">Calling the API</h3>
<p>Finally, we will create an invoker with the user given by the administrator to be able to use the published api.</p>
<h4 id="06-getauth_invoker"><strong>06-getauth_invoker</strong></h4>
<p><img alt="Flow" src="../../images/flows/06_Invoker_Register_GetAuth.png" /></p>
<h4 id="07-onboard_invoker"><strong>07-onboard_invoker</strong></h4>
<p><img alt="Flow" src="../../images/flows/07_Invoker_Onboarding.png" /></p>
<p>At this point we move on to using certificate authentication in CAPIF. <strong>If you did not configure the provider's certificates, you would have to do it now</strong>.</p>
<h4 id="08-discover"><strong>08-discover</strong></h4>
<p><img alt="Flow" src="../../images/flows/08_Invoker_Discover_AEF.png" /></p>
<h4 id="09-security_context"><strong>09-security_context</strong></h4>
<p><img alt="Flow" src="../../images/flows/09_Invoker_Create_Security_Context.png" /></p>
<h4 id="10-get_token"><strong>10-get_token</strong></h4>
<p><img alt="Flow" src="../../images/flows/10_Invoker_Get_Token.png" /></p>
<h4 id="11-call_service"><strong>11-call_service</strong></h4>
<p><img alt="Flow" src="../../images/flows/11_Invoker_Send_Request_to_AEF_Service_API.png" /></p>
<p>With this, we would have made the API call and finished the flow.</p>
<h3 id="other-requests">Other requests</h3>
<p>Other requests that we have added are the following:</p>
<ul>
<li><strong>offboard_provider</strong> Performs offboarding of the provider, thereby eliminating the published APIs.</li>
<li><strong>offboard_invoker</strong> Offboards the invoker, also eliminating access to the APIs of that invoker.</li>
<li><strong>remove_user</strong> Delete the user.</li>
<li><strong>refresh_admin_token</strong> Return a new access token to the admin.</li>
1097
1098
1099
1100
1101
1102
1103
1104
1105
1106
1107
1108
1109
1110
1111
1112
1113
1114
1115
1116
1117
1118
1119
1120
1121
1122
1123
1124
1125
1126
1127
1128
1129
1130
1131
1132
1133
1134
1135
1136
1137
1138
1139
1140
1141
1142
1143
1144
1145
1146
1147
1148
1149
1150
1151
1152
1153
1154
1155
1156
1157
1158
1159
1160
1161
1162
1163
1164
1165
1166
1167
1168
1169
1170
1171
1172
1173
1174
1175
1176
1177
1178
1179
1180
1181
1182
1183
1184
1185
1186
1187
1188
1189
1190
1191
1192
1193
1194
1195
1196
1197
1198
1199
1200
1201
1202
1203
1204
1205
1206
1207
1208
1209
1210
1211
1212
1213
1214
1215
1216
1217
1218
1219
1220
1221
1222
1223
1224
1225
1226
1227
1228
1229
1230
1231
1232
1233
1234
1235
1236
1237
1238
1239
1240
1241
1242
1243
1244
1245
1246
1247
1248
1249
1250
1251
1252
1253
1254
</ul>
<h2 id="notes">Notes</h2>
<ul>
<li>This process is designed to teach how requests are made in Postman and the flow that should be followed to publish and use an API.</li>
<li>It is possible that if external CAPIFs are used (Public CAPIF) the test data may already be used or the API already registered.</li>
<li>It is necessary to have the Node service running to make the certificate change for the requests, otherwise it will not work.</li>
<li>We are working on adding more requests to the Postman collection.</li>
<li>This collection is a testing guide and is recommended for testing purposes only.</li>
</ul>
</article>
</div>
<script>var target=document.getElementById(location.hash.slice(1));target&&target.name&&(target.checked=target.name.startsWith("__tabbed_"))</script>
</div>
<button type="button" class="md-top md-icon" data-md-component="top" hidden>
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M13 20h-2V8l-5.5 5.5-1.42-1.42L12 4.16l7.92 7.92-1.42 1.42L13 8v12Z"/></svg>
Back to top
</button>
</main>
<footer class="md-footer">
<nav class="md-footer__inner md-grid" aria-label="Footer" >
<a href="../robotframework/" class="md-footer__link md-footer__link--prev" aria-label="Previous: Robot Framework">
<div class="md-footer__button md-icon">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M20 11v2H8l5.5 5.5-1.42 1.42L4.16 12l7.92-7.92L13.5 5.5 8 11h12Z"/></svg>
</div>
<div class="md-footer__title">
<span class="md-footer__direction">
Previous
</span>
<div class="md-ellipsis">
Robot Framework
</div>
</div>
</a>
<a href="../../FAQ/" class="md-footer__link md-footer__link--next" aria-label="Next: FAQ">
<div class="md-footer__title">
<span class="md-footer__direction">
Next
</span>
<div class="md-ellipsis">
FAQ
</div>
</div>
<div class="md-footer__button md-icon">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 24 24"><path d="M4 11v2h12l-5.5 5.5 1.42 1.42L19.84 12l-7.92-7.92L10.5 5.5 16 11H4Z"/></svg>
</div>
</a>
</nav>
<div class="md-footer-meta md-typeset">
<div class="md-footer-meta__inner md-grid">
<div class="md-copyright">
<div class="md-copyright__highlight">
Copyright © 2019-2024 OpenCAPIF Project
</div>
Made with
<a href="https://squidfunk.github.io/mkdocs-material/" target="_blank" rel="noopener">
Material for MkDocs
</a>
</div>
<div class="md-social">
<a href="https://ocf.etsi.org/" target="_blank" rel="noopener" title="ocf.etsi.org" class="md-social__link">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><!--! Font Awesome Free 6.5.2 by @fontawesome - https://fontawesome.com License - https://fontawesome.com/license/free (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License) Copyright 2024 Fonticons, Inc.--><path d="M352 256c0 22.2-1.2 43.6-3.3 64H163.3c-2.2-20.4-3.3-41.8-3.3-64s1.2-43.6 3.3-64h185.4c2.2 20.4 3.3 41.8 3.3 64zm28.8-64h123.1c5.3 20.5 8.1 41.9 8.1 64s-2.8 43.5-8.1 64H380.8c2.1-20.6 3.2-42 3.2-64s-1.1-43.4-3.2-64zm112.6-32H376.7c-10-63.9-29.8-117.4-55.3-151.6 78.3 20.7 142 77.5 171.9 151.6zm-149.1 0H167.7c6.1-36.4 15.5-68.6 27-94.7 10.5-23.6 22.2-40.7 33.5-51.5C239.4 3.2 248.7 0 256 0s16.6 3.2 27.8 13.8c11.3 10.8 23 27.9 33.5 51.5 11.6 26 20.9 58.2 27 94.7zm-209 0H18.6c30-74.1 93.6-130.9 172-151.6-25.5 34.2-45.3 87.7-55.3 151.6zM8.1 192h123.1c-2.1 20.6-3.2 42-3.2 64s1.1 43.4 3.2 64H8.1C2.8 299.5 0 278.1 0 256s2.8-43.5 8.1-64zm186.6 254.6c-11.6-26-20.9-58.2-27-94.6h176.6c-6.1 36.4-15.5 68.6-27 94.6-10.5 23.6-22.2 40.7-33.5 51.5-11.2 10.7-20.5 13.9-27.8 13.9s-16.6-3.2-27.8-13.8c-11.3-10.8-23-27.9-33.5-51.5zM135.3 352c10 63.9 29.8 117.4 55.3 151.6-78.4-20.7-142-77.5-172-151.6h116.7zm358.1 0c-30 74.1-93.6 130.9-171.9 151.6 25.5-34.2 45.2-87.7 55.3-151.6h116.6z"/></svg>
</a>
<a href="https://labs.etsi.org/rep/ocf" target="_blank" rel="noopener" title="labs.etsi.org" class="md-social__link">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><!--! Font Awesome Free 6.5.2 by @fontawesome - https://fontawesome.com License - https://fontawesome.com/license/free (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License) Copyright 2024 Fonticons, Inc.--><path d="m503.5 204.6-.7-1.8-69.7-181.78c-1.4-3.57-3.9-6.59-7.2-8.64-2.4-1.55-5.1-2.515-8-2.81-2.9-.295-5.7.083-8.4 1.11-2.7 1.02-5.1 2.66-7.1 4.78-1.9 2.12-3.3 4.67-4.1 7.44l-47 144H160.8l-47.1-144c-.8-2.77-2.2-5.31-4.1-7.43-2-2.12-4.4-3.75-7.1-4.77a18.1 18.1 0 0 0-8.38-1.113 18.4 18.4 0 0 0-8.04 2.793 18.09 18.09 0 0 0-7.16 8.64L9.267 202.8l-.724 1.8a129.57 129.57 0 0 0-3.52 82c7.747 26.9 24.047 50.7 46.447 67.6l.27.2.59.4 105.97 79.5 52.6 39.7 32 24.2c3.7 1.9 8.3 4.3 13 4.3 4.7 0 9.3-2.4 13-4.3l32-24.2 52.6-39.7 106.7-79.9.3-.3c22.4-16.9 38.7-40.6 45.6-67.5 8.6-27 7.4-55.8-2.6-82z"/></svg>
</a>
<a href="https://www.linkedin.com/company/opencapif/" target="_blank" rel="noopener" title="www.linkedin.com" class="md-social__link">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 448 512"><!--! Font Awesome Free 6.5.2 by @fontawesome - https://fontawesome.com License - https://fontawesome.com/license/free (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License) Copyright 2024 Fonticons, Inc.--><path d="M416 32H31.9C14.3 32 0 46.5 0 64.3v383.4C0 465.5 14.3 480 31.9 480H416c17.6 0 32-14.5 32-32.3V64.3c0-17.8-14.4-32.3-32-32.3zM135.4 416H69V202.2h66.5V416zm-33.2-243c-21.3 0-38.5-17.3-38.5-38.5S80.9 96 102.2 96c21.2 0 38.5 17.3 38.5 38.5 0 21.3-17.2 38.5-38.5 38.5zm282.1 243h-66.4V312c0-24.8-.5-56.7-34.5-56.7-34.6 0-39.9 27-39.9 54.9V416h-66.4V202.2h63.7v29.2h.9c8.9-16.8 30.6-34.5 62.9-34.5 67.2 0 79.7 44.3 79.7 101.9V416z"/></svg>
</a>
<a href="https://twitter.com/OpenCAPIF" target="_blank" rel="noopener" title="twitter.com" class="md-social__link">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512"><!--! Font Awesome Free 6.5.2 by @fontawesome - https://fontawesome.com License - https://fontawesome.com/license/free (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License) Copyright 2024 Fonticons, Inc.--><path d="M389.2 48h70.6L305.6 224.2 487 464H345L233.7 318.6 106.5 464H35.8l164.9-188.5L26.8 48h145.6l100.5 132.9L389.2 48zm-24.8 373.8h39.1L151.1 88h-42l255.3 333.8z"/></svg>
</a>
</div>
</div>
</div>
</footer>
</div>
<div class="md-dialog" data-md-component="dialog">
<div class="md-dialog__inner md-typeset"></div>
</div>
<div class="md-progress" data-md-component="progress" role="progressbar"></div>
<script id="__config" type="application/json">{"base": "../..", "features": ["navigation.instant", "navigation.instant.progress", "navigation.top", "navigation.footer", "navigation.path", "search", "search.highlight"], "search": "../../assets/javascripts/workers/search.b8dbb3d2.min.js", "translations": {"clipboard.copied": "Copied to clipboard", "clipboard.copy": "Copy to clipboard", "search.result.more.one": "1 more on this page", "search.result.more.other": "# more on this page", "search.result.none": "No matching documents", "search.result.one": "1 matching document", "search.result.other": "# matching documents", "search.result.placeholder": "Type to start searching", "search.result.term.missing": "Missing", "select.version": "Select version"}, "version": {"provider": "mike"}}</script>
<script src="../../assets/javascripts/bundle.081f42fc.min.js"></script>
</body>
</html>