Forums Technical SuiteTalk

Tagged: , ,

This topic contains 0 replies, has 1 voice, and was last updated by Intelligent Technologies 6 years, 4 months ago.

  • Author
    Posts
  • July 4, 2018 at 4:06 am #19019

    Intelligent Technologies
    Member
    @intelligent_technologies

    Hi, I keep getting a Invalid login attempt when using a tokenPassport. As the token authentication seems quite complex I will include all the steps i have taken.

     

    I have retreived the account id from Setup > Integration > Web Service Preferences

     

    I have set up a new role with all Authentication boxes unchecked.

    In the permissions > Setup I have added the following permissions

    – Access Token Management = Full

    – User Access Tokens = Full

    – Web Services = Full

     

    I have added the new role to my User Access Permissions

     

    I have created a new application in Setup > Integration > Manager Integrations

    Under the Authentication tab I have selected TOKEN-BASED Authentication

     

    I have created a new access token in the Setup > Users/Roles > Access Tokens with the following settings

    – Application Name =ย  the new applicaiton

    – User = me

    – Role = the new role

    – Token Name = renamed to something that makes sense

     

     

    My request xml looks like

     

    <env:Envelope xmlns:xsd=”http://www.w3.org/2001/XMLSchema”

    xmlns:xsi=”http://www.w3.org/2001/XMLSchema-instance”

    xmlns:env=”http://schemas.xmlsoap.org/soap/envelope/”

    xmlns:msg=”urn:messages_2016_2.platform.webservices.netsuite.com”

    xmlns:core=”urn:core_2016_2.platform.webservices.netsuite.com”>

    <env:Header>

    <msg:tokenPassport>

    <core:account>123XXXX_SB1</core:account>

    <core:consumerKey>MY_CONSUMER_KEY</cre:consumerKey>

    <core:token>MY_TOKEN_ID</core:token>

    <core:nonce>ZcVszy7ySJ3Ji8PIgwlW</core:nonce>

    <core:timestamp>1530692570</core:timestamp>

    <core:signature algorithm=”HMAC-SHA256″>nN7V4PH9qNNT9VocMQzFcFetqZ3JxpxutCJ8iSjHmH8=</core:signature>

    </msg:tokenPassport>

    </env:Header>

    <env:Body>

    <msg:get>

    <msg:baseRef xsi:type=”core:RecordRef” internalId=”1234567″ type=”customer”/>

    </msg:get>

    </env:Body>

    </env:Envelope>

     

    I am using the following ruby class to generate the nonce and signature

     

    class NetSuiteToken

    attr_reader :account, :consumer_key, :consumer_secret, :token_id, :token_secret

     

    def initialize(account, consumer_key, consumer_secret, token_id, token_secret)

    @account = account.to_s

    @consumer_key = consumer_key

    @consumer_secret = consumer_secret

    @token_id = token_id

    @token_secret = token_secret

    end

     

    def passport

    {

    ‘msg:tokenPassport’ => {

    ‘core:account’ => account,

    ‘core:consumerKey’ => consumer_key,

    ‘core:token’ => token_id,

    ‘core:nonce’ => nonce,

    ‘core:timestamp’ => timestamp,

    ‘core:signature’ => signature,

    :attributes! => { ‘core:signature’ => { ‘algorithm’ => ‘HMAC-SHA256’ } }

    }

    }

    end

     

    private

     

    def signature

    Base64.encode64(OpenSSL::HMAC.digest(OpenSSL::Digest.new(‘sha256′), signature_key, signature_data))

    end

     

    def signature_key

    “#{consumer_secret}&#{token_secret}”

    end

     

    def signature_data

    “#{account}&#{consumer_key}&#{token_id}&#{nonce}&#{timestamp}”

    end

     

    def nonce

    @nonce ||= Array.new(20) { alphanumerics.sample }.join

    end

     

    def alphanumerics

    [*’0′..’9′,*’A’..’Z’,*’a’..’z’]

    end

     

    def timestamp

    @timestamp ||= Time.now.to_i

    end

    end

     

    If anybody could offer any assistance it would be highly appreciated.

  • Author
    Posts

You must be logged in to reply to this topic.