Versions Compared

Old Version 25

changes.mady.by.user Anthony George

Saved on

compared with

New Version 26

changes.mady.by.user Zoe Baldwin

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Insert excerpt
_Banners
_Banners
nameactionflow
nopaneltrue

Overview

Excerpt
nameAPI_end_point

Actionflows can be setup to provide an API end point which enables external systems to make calls to PhixFlow.

Actionflows set up as API end points have a

Insert excerpt
_actionflow_api_endpoint
_actionflow_api_endpoint
nopaneltrue
 icon on the Actionflow home screen.


This functionality has been enhanced between version 10 and version 11, please refer to the relevant section below.

Incoming API SetupImage Added Actionflow from the Actionflow home page
  • Set a unique name and provide a useful description
    1. Note if using a pre 10.1 version of PhixFlow the name must be unique across all applications on PhixFlow.
  • When the Actionflow opens, on the toolbar click 
    • In the API section of the properties, enable API End-PointImage Added Properties
  • In the Basic Settings section of the properties, click API End-Point
    1. This turns the Actionflow into an incoming API.
  • Enable Click Allow Anonymous Connections
      1. AllowAnonymousConnections

    1. This allows anyone with the URL for the API to call it, the audit trail records the system as running performing the API call.

       Adding authorization is covered later on this page.

    2. Image Added Apply your changes

      3. Step 2 - Input Connection Point Input Parameters

      Incoming APIs require a specific set of Input Parameters on the connection point.

      1. Click on the Connection Point In
      2. In the Properties that open, in the Input Parameters section add the following attributes, the names are case sensitive:


      Expand
      titleVersion 11
      10

      To enable an actionflow as an incoming API, we need to define it as an end point and configure an incoming connection point with a set of predefined input parameters. These settings are described below:

      Step 1 - Actionflow Properties

      1. Create an 
      Insert excerpt
      _actionflow_actionflow
      nopaneltrue
      Insert excerpt
      _property_settings_property_settings
      nopaneltrue
      Excerpt
      name
      Insert excerpt
      _save_save
      nopaneltrue
      Name
      Type
      Description
      bodyStringprovides the information sent in the body of the API call.
      contentTypeStringProvides details of the Content Type
      headersStringProvides the information sent in the API call header.
      urlStringProvides the complete URL that was used to call the API. This can be used to pass parameters to the API.  


      _save_savenopaneltrue

       3. 

      Insert excerpt

      Image Added Apply your changes

      Step 3 - Configure your Actionflow

      Configure the

      Actionflow

      actionflow to perform the required tasks

      , for example return all company data , or pass in a date and return all companies onboarded after this date

      .

      If you wish to return data from the API, 

      1. Add a new Connection of type Output
        1. The name of the Output Connection Point will be used to retrieve the data as part of the path. This is covered in Calling a PhixFlow API (below).
      2. Add the required Output Attributes i.e. the data you wish the API to return. Output Attributes

      Calling a PhixFlow API

      Step 4 - HTTP Method

      and API ModeHTTP Method

      To call a PhixFlow API use the HTTP

      Method GET or 

      Method POST

      :
    3. GET simply calls the API with data passed in the body of the request.
    4. POST calls the URL and sends data in the body of the request. The body data is passed into the body attribute of the Actionflow setup above as an Input Connection point. 
    5. API Mode
      1. Wait for result (Synchronous) (Default): The API waits for the results or the timeout to occur. Note: If the timeout occurs the command is aborted.
      2. Poll for result (Asynchronous): The API is called and a response is returned immediately including the process ID. Subsequent API calls can be made using the process ID to fetch the status of the action. The asynchronous mode can be thought of as “fire and forget”.

      6. Step 5 - API URL

      The API URL can be found in the Actionflow Properties → API Section → URL value

      Example URL: https://app.phixflow.

      Step 5 - API URL

      The API can be called using a URL which is constructed as follows:

      https://<<Server Name>>/phixflow/api/1/action/<<Actionflow Name>>/trigger


      parameter
      description
      <<Server Name>>URL of the server e.g. app.phixflow.com
      phixflowthe name of the instance, typically this is phixflow
      <<Actionflow Name>>The name of the actionflow set in Step 1. Note that if your actionflow has a space in the name this must be replaced with %20. For example "My API" becomes, "My%20API". 


      Example URL

      https://app.phixflow.com/phixflow/api/1/action/MyApp/My%20API/trigger

      Expand
      titleUrl Structure

      The structure of the URL is as follows:

      https://<<Server Name>>/phixflow/api/1/action/<<Application Name>>/<<Actionflow Name>>/trigger

      parameterdescription<<Server Name>>URL of the server e.g. app.phixflow.comphixflowthe name of the instance, typically this is phixflow<<Application Name>>The name of the application where the Actionflow resides.<<Actionflow Name>>The name of the actionflow set in Step 1. Note that if your actionflow has a space in the name this must be replaced with %20. For example "My API" becomes, "My%20API". 

      note: In version 10 the url structure differed, this old structure has been deprecated: https://<<Server Name>>/phixflow/api/1/action/<<Actionflow Name>>/trigger 
      Integrations using this old structure should be updated, however the url structure will still work in version 11.

      Step 5.1 - API Status Check (Poll for Result)

      1. If calling a PhixFlow Asynchronous API only, a result will be immediately returned which includes a Process ID for that run.
      2. The Process ID is returned on the path:
        1. $.processId
        2. This can be accessed in an Output attribute using, _result.value
      3. The Process ID can be used to call the following URL which will return the current state of the run:
        1. https://<<Server Name>>/phixflow/api/1/action/<<Application Name>>/<<Actionflow Name>>/poll/<<processID>>

      Step 6 - Returned Data JSON Path

      If your API has been configured to return data the path will be in the format:

      $.data.<<Output Name>> 

      Where <<Output Name>> is the Output connection point setup in step 3.

      Adding Authentication

      Step 7 - Enable Authentication

    6. Open the Incoming API Actionflow.
      7. On the toolbar click  Insert excerpt_property_settings_property_settingsnopaneltrue
    7. In the Basic Settings section of the properties, click Allow Anonymous Connection so that it is disabled, it will appear greyed out.
      8. Insert excerpt_save_savenopaneltrue the changes

      Step 8 - Create an Authentication User

      In the Insert excerpt_repository_repositorynopaneltrue, expand the application with the Incoming API.Expand Insert excerpt_roles_rolesnopaneltrue and create an New Role by clicking  Insert excerpt_addIcon_addIconnopaneltrue.
    8. Pin the tab as we will need it to remain open.
    9. Provide a useful Name e.g. GenerateToken
      10. In the Privileges section, click  Insert excerpt_privilege_privilegenopaneltrue
    10. Scroll down to the Full Repository, expand it and search for  the privilege: Use API Key
    11. Drag the Use API Key into the privileges section of the Role.
    12. Image Removed
      13. Insert excerpt_save_savenopaneltrue the changesIn the  Insert excerpt_user_group_user_groupnopaneltrue section, click  Insert excerpt_user_group_user_groupnopaneltrueAdd a new Group for you Role.
    13. Give it a useful Name e.g. API Users.
    14. Add any users you require to be able to run the API. This could be a dedicated API user with limited privileges.
      1. To create a user see Managing User Accounts → Creating Users.
      15. Click  Insert excerpt_save_savenopaneltrue and close the tab.Now drag the new user group into the  Insert excerpt_user_group_user_groupnopaneltrue section of the new privilege. Insert excerpt_save_savenopaneltrue the changes
    15. The setup should look similar to:
      1. Image Removed

      16. Step 9 - Authentication Token KeyStore

      A signing key is used to generate the Phixflow API key and this is stored on the server to ensure secure access.

      Using the page Configure a Keystore and Aliases, configure phixflow-api-key to be used as the signing key for PhixFlow API Keys in the same way as the pepperKey is configured. This secret string must be a minimum of 32 bytes length.

      Step 10 - Generate Authentication Token

    16. The Incoming API will run as a specified user, this means when it is called the audit trail will show the specified user as having performed the Incoming API actionflow
    17. You do not need to login as this user, however, if you were already logged in as this user when performing Step 1 above, you will need to logout and login again to pick up the user group change
      18. In the  Insert excerpt_repository_repositorynopaneltrue, scroll down to the Full Repository section and expand itExpand the Insert excerpt_user_usernopaneltrue section
    18. Double click on the user who will run the Incoming API
    19. Click the 3-dot more menu in the top right of the user properties
    20. Click Generate API Key
    21. Copy the value displayed and store it somewhere safe

      22. Step 11 - Send Authorization

      When calling the Incoming API, the authorisation token must be passed in as a header called: Authorization

      Server Console Responses

      The item calling the API End-Point will receive the a Response from the API End-Point stating whether it has run successfully (Success) or not (Fail). Responses can be customised to return specific messages.

      The response recorded in the Insert excerpt_console_consolenopaneltrue:

      If you are making the call using PhixFlow the Responses can be access as follows:

      1. Click the ActionFlow entry
        1. Image Removed
      2. In the Messages section which is opened below, double-click the lines that begin Response
        1. Image Removed
      3. Click the Message Details tab to see the response.

      API End-Point Results

      To see the results of the API End-Points processing in the  Insert excerpt_console_consolenopaneltrue:
      1. Click the ActionFlow entry for the API End-Point
      2. In the Messages section which is opened below, double-click any of the Messages to see more details
      3. If you are using a debug() statement these will appear here.

      Failures

      An API End-Point will fail if the logic in the Actionflow fails or if the error() function is used to force a failure.

      If records are passed to the API End-Point individually a failure will only impact the specific record being processed.

      Expand
      titleVersion 10

      To enable an actionflow as an incoming API, we need to define it as an end point and configure an incoming connection point with a set of predefined input parameters. These settings are described below:

      Step 1 - Actionflow Properties

      1. Create an Image Removed Actionflow from the Actionflow home page
      2. Set a unique name and provide a useful description
        1. Note the name must be unique across all applications on PhixFlow.
      3. When the Actionflow opens, on the toolbar click Image Removed Properties
      4. In the Basic Settings section of the properties, click API End-Point
        1. This turns the Actionflow into an incoming API.
      5. Click Allow Anonymous Connections

        1. This allows anyone with the URL for the API to call it, the audit trail records the system as running performing the API call.

           Adding authorization is covered later on this page.

      6. Image Removed Apply your changes

      Step 2 - Input Connection Point Input Parameters

      Incoming APIs require a specific set of Input Parameters on the connection point.

      1. Click on the Connection Point In
      2. In the Properties that open, in the Input Parameters section add the following attributes, the names are case sensitive:
      Name
      Type
      Description
      bodyStringprovides the information sent in the body of the API call.contentTypeStringProvides details of the Content TypeheadersStringProvides the information sent in the API call header.urlStringProvides the complete URL that was used to call the API. This can be used to pass parameters to the API.  

       3. Image Removed Apply your changes

      Step 3 - Configure your Actionflow

      Configure the actionflow to perform the required tasks.

      If you wish to return data from the API, 

      1. Add a new Connection of type Output
        1. The name of the Output Connection Point will be used to retrieve the data as part of the path. This is covered in Calling a PhixFlow API (below).
      2. Add the required Output Attributes

      Calling a PhixFlow API

      Step 4 - HTTP Method

      To call a PhixFlow API use the HTTP Method POST

      Step 5 - API URL

      The API can be called using a URL which is constructed as follows:

      Step 6 - Returned Data JSON Path

      If your API has been configured to return data the path will be in the format:

      $.data.<<Output Name>> 

      Where <<Output Name>> is the Output connection point setup in step 3.

      Adding Authentication

      Step 7 - Enable Authentication

      1. Open the Incoming API Actionflow.
      2. On the toolbar click Image Added Properties
      3. In the Basic Settings section of the properties, click Allow Anonymous Connection so that it is disabled, it will appear greyed out.
      4. Image Added Apply the changes

      Step 8 - Create an Authentication User

      1. In the Image Added Repository, expand the application with the Incoming API.
      2. Expand Image Added Roles and create an New Role by clicking Image Added.
        1. Pin the tab as we will need it to remain open.
        2. Provide a useful Name e.g. GenerateToken
        3. In the Privileges section, click Image Added Privileges
        4. Scroll down to the Full Repository, expand it and search for  the privilege: Use API Key
        5. Drag the Use API Key into the privileges section of the Role.
        6. Image Added
        7. Image Added Apply the changes
      3. In the Image Added User Groups section, click Image Added User Groups
        1. Add a new Group for you Role.
          1. Give it a useful Name e.g. API Users.
          2. Add any users you require to be able to run the API. This could be a dedicated API user with limited privileges.
            1. To create a user see Managing User Accounts → Creating Users.
          3. In the Roles section, assign the role, User
          4. Click Image Added Apply and close the tab.
        2. Now drag the new user group into the Image Added User Groups section of the new privilege.
        3. Image Added Apply the changes
      4. The setup should look similar to:
        1. Image Added

      Step 9 - Authentication Token KeyStore

      A signing key is used to generate the Phixflow API key and this is stored on the server to ensure secure access.

      Using the page Configure a Keystore and Aliases, configure phixflow-api-key to be used as the signing key for PhixFlow API Keys in the same way as the pepperKey is configured. This secret string must be a minimum of 32 bytes length.

      Step 10 - Generate Authentication Token

      1. The Incoming API will run as a specified user, this means when it is called the audit trail will show the specified user as having performed the Incoming API actionflow
      2. You do not need to login as this user, however, if you were already logged in as this user when performing Step 1 above, you will need to logout and login again to pick up the user group change
      3. In the Image Added Repository, scroll down to the Full Repository section and expand it
      4. Expand the Image Added Users section
      5. Double click on the user who will run the Incoming API
      6. Click the 3-dot more menu in the top right of the user properties
      7. Click Generate API Key
      8. Copy the value displayed and store it somewhere safe

      Step 11 - Send Authorization

      When calling the Incoming API, the authorisation token must be passed in as a header called: Authorization and referenced in the Expression using the syntax, ${_datasource.KeyName} where KeyName is the name of the Secret Key.

      Image Added

      Server Console Responses

      The item calling the API End-Point will receive the a Response from the API End-Point stating whether it has run successfully (Success) or not (Fail). Responses can be customised to return specific messages.

      The response recorded in the Image Added Console:

      If you are making the call using PhixFlow the Responses can be access as follows:

      1. Click the ActionFlow entry
        1. Image Added
      2. In the Messages section which is opened below, double-click the lines that begin Response
        1. Image Added
      3. Click the Message Details tab to see the response.

      API End-Point Results

      To see the results of the API End-Points processing in the Image Added Console:

      1. Click the ActionFlow entry for the API End-Point
      2. In the Messages section which is opened below, double-click any of the Messages to see more details
      3. If you are using a debug() statement these will appear here.

      Failures

      An API End-Point will fail if the logic in the Actionflow fails or if the error() function is used to force a failure.

      If records are passed to the API End-Point individually a failure will only impact the specific record being processed.

      Version 11

      Incoming API Setup

      To enable an actionflow as an incoming API, we need to define it as an end point and configure an incoming connection point with a set of predefined input parameters. These settings are described below:

      Step 1 - Actionflow Properties

      1. Create an 
        Insert excerpt
        _actionflow
        _actionflow
        nopaneltrue
         from the Actionflow home page
      2. Set a unique name and provide a useful description
        1. Note if using a pre 10.1 version of PhixFlow the name must be unique across all applications.
      3. When the Actionflow opens, on the toolbar click 
        Insert excerpt
        _property_settings
        _property_settings
        nopaneltrue
      4. In the API section of the properties, enable API End-Point
        1. This turns the Actionflow into an incoming API.
      5. Enable Allow Anonymous Connections


        1. Excerpt
          nameAllowAnonymousConnections

          This allows anyone with the URL for the API to call it, the audit trail records the system as running performing the API call.


        2. Adding authorization is covered later on this page.
      6. Insert excerpt
        _save
        _save
        nopaneltrue
         your changes

      Step 2 - Input Connection Point Input Parameters

      Incoming APIs require a specific set of Input Parameters on the connection point.

      1. Click on the Connection Point In
      2. In the Properties that open, in the Input Parameters section add the following attributes, the names are case sensitive:
      NameTypeDescription
      bodyStringprovides the information sent in the body of the API call.
      contentTypeStringProvides details of the Content Type
      headersStringProvides the information sent in the API call header.
      urlStringProvides the complete URL that was used to call the API. This can be used to pass parameters to the API.  

      Insert excerpt
      _save
      _save
      nopaneltrue
       your changes

      Step 3 - Configure your Actionflow

      1. Configure the Actionflow to perform the required tasks, for example return all company data , or pass in a date and return all companies onboarded after this date.
      2. If you wish to return data from the API, 
        1. Add a new Connection of type Output
          1. The name of the Output Connection Point will be used to retrieve the data as part of the path. This is covered in Calling a PhixFlow API below.
          2. Add the required Output Attributes i.e. the data you wish the API to return.

      Calling a PhixFlow API

      Step 4 - HTTP Method and API Mode

      1. HTTP Method
        1. To call a PhixFlow API use the HTTP Method GET or POST:
        2. GET simply calls the API with data passed in the body of the request.
        3. POST calls the URL and sends data in the body of the request. The body data is passed into the body attribute of the Actionflow setup above as an Input Connection point. 
      2. API Mode
        1. Wait for result (Synchronous) (Default): The API waits for the results or the timeout to occur. Note: If the timeout occurs the command is aborted.
        2. Poll for result (Asynchronous): The API is called and a response is returned immediately including the process ID. Subsequent API calls can be made using the process ID to fetch the status of the action. The asynchronous mode can be thought of as “fire and forget”.

      Step 5 - API URL

      The API URL can be found in the Actionflow Properties → API Section → URL value

      Example URL: https://app.phixflow.com/phixflow/api/1/action/MyApp/My%20API/trigger

      Example URL

      https://app.phixflow.comtrigger 
      Integrations using this old structure should be updated, however the url structure will still work in version 11.

      Expand
      titleUrl Structure

      The structure of the URL is as follows:

      https://<<Server Name>>/phixflow/api/1/action/<<Application Name>>/<<Actionflow Name>>/trigger

      parameterdescription
      <<Server Name>>URL of the server e.g. app.phixflow.com
      phixflowthe name of the instance, typically this is phixflow
      <<Application Name>>The name of the application where the Actionflow resides.
      <<Actionflow Name>>The name of the actionflow set in Step 1. Note that if your actionflow has a space in the name this must be replaced with %20. For example "My API" becomes, "My%20API". 


      note: In version 10 the url structure differed, this old structure has been deprecated: https://<<Server Name>>/phixflow/api/1/action/<<Actionflow Name>>/trigger

      parameter
      description
      <<Server Name>>URL of the server e.g. app.phixflow.com
      phixflowthe name of the instance, typically this is phixflow
      <<Actionflow Name>>The name of the actionflow set in Step 1. Note that if your actionflow has a space in the name this must be replaced with %20. For example "My API" becomes, "My%20API". 

      Step 5.1 - API Status Check (Poll for Result)

      1. If calling a PhixFlow Asynchronous API only, a result will be immediately returned which includes a Process ID for that run.
      2. The Process ID is returned on the path:
        1. $.processId
        2. This can be accessed in an Output attribute using, _result.value
      3. The Process ID can be used to call the following URL which will return the current state of the run:
        1. https://<<Server Name>>/phixflow/api/1/action
      /My%20API/trigger
        1. /<<Application Name>>/<<Actionflow Name>>/poll/<<processID>>

      Step 6 - Returned Data JSON Path

      If your API has been configured to return data the path will be in the format:

      $.data.<<Output Name>> 

      Where <<Output Name>> is the Output connection point setup in step 3.

      Adding Authentication

      Step 7 - Enable Authentication

      1. Open the Incoming API Actionflow.
      2. On the toolbar click 
      Image Removed Properties
      1. Insert excerpt
        _property_settings
        _property_settings
        nopaneltrue
      2. In the
       
      1. Basic Settings
       
      1. section of the properties, click
       
      1. Allow Anonymous Connection
       
      1. so that it is disabled, it will appear
      greyed out.Image Removed Apply
      1. greyed out.
      2. Insert excerpt
        _save
        _save
        nopaneltrue
         the changes

      Step 8 - Create an Authentication User

      1. In the
       Image Removed Repository
      1. Insert excerpt
        _repository
        _repository
        nopaneltrue
        , expand the application with the Incoming API.
      2. Expand
       Image Removed Roles
      1. Insert excerpt
        _roles
        _roles
        nopaneltrue
         and create an New Role by
      clicking Image Removed
      1. clicking 
        Insert excerpt
        _addIcon
        _addIcon
        nopaneltrue
        .
        1. Pin the tab as we will need it to remain open.
        2. Provide a useful
       
        1. Name
       
        1. e.g. GenerateToken
        2. In the Privileges section, click 
      Image Removed Privileges
        1. Insert excerpt
          _privilege
          _privilege
          nopaneltrue
        2. Scroll down to the
       
        1. Full Repository, expand it and search for  the privilege: Use API Key
        2. Drag the Use API Key into the privileges section of the Role.
        3. Image Modified
      Image Removed Apply
        2. Insert excerpt
          _save
          _save
          nopaneltrue
           the changes
      2. In the 
      Image Removed User Groups section, click Image Removed User Groups
      1. Insert excerpt
        _user_group
        _user_group
        nopaneltrue
         section, click 
        Insert excerpt
        _user_group
        _user_group
        nopaneltrue
        1. Add a new
       
        1. Group
       
        1. for
      you
        1. your Role.
          1. Give it a useful
       
          1. Name
       
          1. e.g. API Users.
          2. Add any users you require to be able to run the API. This could be a dedicated API user with limited privileges.
            1. To create a user see Managing User Accounts → Creating Users
      .Click Image Removed Apply
            1. .
          2. In the Roles section, assign the role, User
          3. Click 
            Insert excerpt
            _save
            _save
            nopaneltrue
             and close the tab.
        2. Now drag the new user group into the 
      Image Removed User Groups
        1. Insert excerpt
          _user_group
          _user_group
          nopaneltrue
           section of the new privilege.
      Image Removed Apply
        2. Insert excerpt
          _save
          _save
          nopaneltrue
           the changes
      2. The setup should look similar to:
        1. Image Modified

      Step 9 - Authentication Token KeyStore

      A signing key is used to generate the Phixflow API key and this is stored on the server to ensure secure access.

      Using the page Configure a Keystore and Aliases, configure phixflow-api-key to be used as the signing key for PhixFlow API Keys in the same way as the pepperKey is configured. This secret string must be a minimum of 32 bytes length.

      Step 10 - Generate Authentication Token

      1. The Incoming API will run as a specified user, this means when it is called the audit trail will show the specified user as having performed the Incoming API actionflow
      2. You do not need to login as this user, however, if you were already logged in as this user when performing Step 1 above, you will need to logout and login again to pick up the user group change
      3. In the 
      Image Removed Repository
      1. Insert excerpt
        _repository
        _repository
        nopaneltrue
        , scroll down to the
       
      1. Full Repository section and expand it
      2. Expand the
       Image Removed Users
      1. Insert excerpt
        _user
        _user
        nopaneltrue
         section
      2. Double click on the user who will run the Incoming API
      3. Click the 3-dot more menu in the top right of the user properties
      4. Click
       
      1. Generate API Key
      2. Copy the value displayed and store it somewhere safe

      Step 11 - Send Authorization

      When calling the Incoming API

      , the authorisation token must be passed in as a header called: Authorization

      , the authorisation token must be passed in as a header called: Authorization and referenced in the Expression using the syntax, ${_datasource.KeyName} where KeyName is the name of the Secret Key.

      Image Added

      Server Console Responses

      The item calling the API End-Point will receive the a Response from the API End-Point stating whether it has run successfully (Success) or not (Fail). Responses can be customised to return specific messages.

      The response recorded in the

       Image Removed Console

      Insert excerpt
      _console
      _console
      nopaneltrue
      :

      If you are making the call using PhixFlow the Responses can be access as follows:

      1. Click the ActionFlow entry
        1. Image Modified
      2. In the
       
      1. Messages section which is opened below, double-click the lines that begin
       
      1. Response
        1. Image Modified
      2. Click the Message Details tab to see the response.

      API End-Point Results

      To see the results of the API End-Points processing in the 

      Image Removed Console

      Insert excerpt
      _console
      _console
      nopaneltrue
      :

      1. Click the ActionFlow entry for the API End-Point
      2. In the
       
      1. Messages section which is opened below, double-click any of the Messages to see more details
      2. If you are using a debug() statement these will appear here.

      Failures

      An API End-Point will fail if the logic in the Actionflow fails or if the

       

      error() function is used to force a failure.

      If records are passed to the API End-Point individually a failure will only impact the specific record being processed.