topic Re: Using a Session Cookie with Repository API in Integration, Extension & APIs

Using a Session Cookie with Repository API

elva_lester — Fri, 23 Sep 2016 21:26:52 GMT

I have a .NET MVC web application that requires SSL. I am able to successfully access the Proxy Service to obtain a session ID and store it in my forms authentication cookie to allow for single sign-on. I am able to display a specific app or sheet within an iframe by simply specifying the URL. Instead of hard-coding the GUIDs for the apps and sheets, I would like to use the Repository Service to get a list of available apps and sheets. Whenever I call qrs/virtualproxy/app/hublist, I get the html for the login screen returned. I have tried adding various headers, but can't seem to find the right combination. Here's my code:

public string GetAppList(string method, string server, string virtualProxy, string user, string userdirectory, HttpCookie session)

{

string url = server + "/qrs/" + virtualProxy + "/app/hublist";

//Create the HTTP Request and add required headers and content in Xrfkey

string Xrfkey = "0123456789abcdef";

HttpWebRequest request = (HttpWebRequest)WebRequest.Create(url + "?Xrfkey=" + Xrfkey);

request.Method = method;

request.Accept = "application/json";

request.ContentType = "application/json";

request.Headers.Add("X-Qlik-Xrfkey", Xrfkey);

request.Headers.Add("X-Qlik-User", "UserDirectory=" + userdirectory + ";UserId=" + user);

request.Headers.Add("X-Qlik-Virtual-Proxy-Prefix", virtualProxy);

// make the web request and return the content

HttpWebResponse response = (HttpWebResponse)request.GetResponse();

Stream stream = response.GetResponseStream();

return stream != null ? new StreamReader(stream).ReadToEnd() : string.Empty;

}

Basically, I want the call to work like the .NET SDK command location.AsExistingSessionViaProxy(sessionCookie.Value, sessionCookie.Name). Is this possible?

Thanks.

Re: Using a Session Cookie with Repository API

konrad_mattheis — Mon, 26 Sep 2016 14:00:45 GMT

Hi Elva,

yes this should be possible. You have to extract the cookie out of the response.

bye Konrad

Re: Using a Session Cookie with Repository API

elva_lester — Mon, 26 Sep 2016 14:52:46 GMT

Yes, I am able to extract the cookie, but I cannot get the qrs request to use it. I tried request.Headers.Add("X-Qlik-SessionId", session.Value); where the variable session is the cookie.

Re: Using a Session Cookie with Repository API

grangerats — Mon, 26 Sep 2016 19:19:06 GMT

Hi,

If you're trying to get to the QRS Api via a Virtual Proxy, you appear to be using the wrong path. It should be /{virtual-proxy-prefix}/qrs/... E.g. /virtualproxy/qrs/app or /virtualproxy/qrs/app/full or /virtualproxy/qrs/about/api/description With that, you can use whatever AuthC your Virtual Proxy is setup to use.

Re: Using a Session Cookie with Repository API

elva_lester — Tue, 27 Sep 2016 19:18:17 GMT

Thank you. That definitely was part of my problem. The other thing I needed to do was to add the Session cookie to the request as follows:

request.CookieContainer = new CookieContainer();

request.CookieContainer.Add(new Uri(server), new Cookie(session.Name, session.Value));

Re: Using a Session Cookie with Repository API

dmohanty — Thu, 27 Apr 2017 15:51:26 GMT

Hi elva.lester‌, grangerats‌,

I have a similar requirement to get the active SMSESSION cookie for an application in Access Point. Once I can capture that, I have to pass the same as one of the header and x-api-key as another to call the URL (HTTP request).

Any suggestion here how to capture that SMSESSION cookie (or all cookie of that page) using VBScript or JScript in Qlik?

Regards!

Re: Using a Session Cookie with Repository API

dmohanty — Mon, 01 May 2017 14:55:44 GMT

Hi elva.lester, grangerats

Any possible help on my request please?

Regards!

Re: Using a Session Cookie with Repository API

grangerats — Mon, 01 May 2017 18:51:58 GMT

Not enough information, and what's there appears to be jumping between many different products. Sounds like only a small portion of it has anything to do with Qlik Sense. And, finally, it sounds like a completely new topic; ask a new question (not on this question) and supply more detail.

Re: Using a Session Cookie with Repository API

dmohanty — Mon, 01 May 2017 19:19:33 GMT

grangerats‌

Thank you for suggestion

I have a thread already created here -

Generate a user specific SMSESSION cookie calling a WebService

To simplify more -

Fetch the SMSESSION cookie from the login browser (may be using a Macro). Store in variable or notepad.
Use this SMSESSION as one of the header input and X-API-KEY as another input to call the URL (HTTP Request)

GET https://iri1lvu09j.execute-api.us-east-1.amazonaws.com/oe_stage/api/v1/token-generator/generate?user=user’s login id

Create the Cart by calling the URL –

POST https://dzrsa753r1.execute-api.us-east-1.amazonaws.com/oe_stage/pd/ecom/v1/carts

Here are the inputs –

Authorization – JWT Token

X-API-KEY - Qlik API Key

Content-Type: application/json

User – User’s Log in id

UUID - cb6d61da-1eb4-4827-bc32-fb2a71f15f8b (It is just a unique transaction tracking identifier. We can use whatever you want to generate it and can be any format. It will be part of the API logs we can find it in Splunk. It should be unique per request. It will accept the same one on multiple calls and does not do duplicate checking.)

Re: Using a Session Cookie with Repository API

amien — Mon, 01 May 2017 23:07:25 GMT

@elva.lester

Just wondering. .why dont you use the SDK for extracting all the apps and sheets indeed of adding de API solution?

Re: Using a Session Cookie with Repository API

dmohanty — Tue, 02 May 2017 12:46:44 GMT

amien‌,

Hi,

Could you please throw some more light on your suggested approach please?

Regards!

Re: Using a Session Cookie with Repository API

elva_lester — Tue, 02 May 2017 13:00:51 GMT

I could not use the SDK because the does not expose all of the properties we needed. See .NET SDK app properties.

Re: Using a Session Cookie with Repository API

elva_lester — Tue, 02 May 2017 13:02:12 GMT

Sorry, I do not have any experience with SMSESSION.

Re: Using a Session Cookie with Repository API

dmohanty — Tue, 02 May 2017 14:22:36 GMT

elva.lester‌,

Hi Elva,

U had mentioned you were able to extract the SMSESSION. Could you please help me on how did you do this in QlikView? You used any macro codes for this?

Also after fetching the SMSESSION, what is the approach to use it as a Header in calling a Web Service?

Regards!

Re: Using a Session Cookie with Repository API

elva_lester — Tue, 02 May 2017 14:26:15 GMT

Sorry, Dicky.

I did not extract SMSESSION. I did extract all of the session cookies for Qlik Sense in my MVC .NET code as documented above. I have never used SMSESSION.

Elva

Re: Using a Session Cookie with Repository API

dmohanty — Tue, 02 May 2017 14:36:34 GMT

elva.lester‌,

Not a problem Elva. Thanks for suggesting,

Do you have any other suggestions just to kick off my requirement in QlikView?

if not SMSESSION, any help on how to pass the X-API-KEY as a header to call the URL (HTTP Request)

Regards!

Re: Using a Session Cookie with Repository API

elva_lester — Tue, 02 May 2017 15:21:32 GMT

The one thing I would try would be something like:

request.Headers.Add("X-Qlik-Xrfkey", Xrfkey);

where you substitute the literal X-API-KEY for the first parm (enclosed in quotes) and the value as the second parm.

Good luck!

Re: Using a Session Cookie with Repository API

dmohanty — Tue, 02 May 2017 19:16:12 GMT

Hi elva.lester‌,

a bit novice here.

Could you please help a more on how to use the script if I have the URL to pass the header into? Something like, once called from a button click, where can I validate the results too.

I have also created a separate thread for this, if you want to help out there -

Generate a user specific SMSESSION cookie calling a WebService

Regards!