03-15-2018 08:34 AM
Hello,
I am looking for some documentation as to how to retrieve an accessToken for a Common Identity site as described in the AuthenticateUser section of the XML API reference: https://developer.cisco.com/site/webex-developer/develop-test/xml-api/xml-api-reference/
Separately, but related, I am curious as to whether a "Partner Administrator," who is not a member of a Customer's Spark Org, can use the XML API with WebEx sites that use CI and are attached to a Customer's Spark Org.
Thanks
NPM
Solved! Go to Solution.
03-15-2018 01:48 PM
CI site authentication is detailed below. Partner Delegated Authentication (a global application specificl SSO configuration for multiple WebEx sites) will also work with CI sites. I am not aware of any backdoor admin access for CI sites.
Meeting Service API authentication for Cisco Spark with WebEx.
Log in to developer.ciscospark.com.
Click My Apps
Create a new app with spark:all scope selected (Existing app is ok)
Issue HTTP GET request to https://api.ciscospark.com/v1/authorize
Spark page will prompt user to authorize application, if approved, user will be redirected to redirect uri with a code and the previously set state value as GET variables, save the code
Issue HTTP POST request to https://api.ciscospark.com/v1/access_token
JSON data will be returned in the response body, save the access_token value.
Issue XML API AuthenticateUser request
returned sessionTicket will be used in the security context for subsequent XML API requests.
03-15-2018 01:48 PM
CI site authentication is detailed below. Partner Delegated Authentication (a global application specificl SSO configuration for multiple WebEx sites) will also work with CI sites. I am not aware of any backdoor admin access for CI sites.
Meeting Service API authentication for Cisco Spark with WebEx.
Log in to developer.ciscospark.com.
Click My Apps
Create a new app with spark:all scope selected (Existing app is ok)
Issue HTTP GET request to https://api.ciscospark.com/v1/authorize
Spark page will prompt user to authorize application, if approved, user will be redirected to redirect uri with a code and the previously set state value as GET variables, save the code
Issue HTTP POST request to https://api.ciscospark.com/v1/access_token
JSON data will be returned in the response body, save the access_token value.
Issue XML API AuthenticateUser request
returned sessionTicket will be used in the security context for subsequent XML API requests.
03-15-2018 04:54 PM
Thank you.
WHere can I find documentation on the setup of partner delegated Authentication for CI WebEx sites?
npm
03-15-2018 05:04 PM
Hello,
PDA is not specific to CI sites, it can be used on both CI and traditional WebEx sites, whether SSO is configured or not. I am not able to easily paste our reference material here, as format is altered and links stripped, however you may email webex-meetings-api-dev@cisco.com to request the guide in Doc format. The basic config is just a matter of submitting a provisioning request to create the new SSO config, including the SSL certificate, IdP ID, SP ID, NameID Format, AuthContextClassRef, a unique name to identify the configuration, and a list of WebEx sites to link to this SSO configuration. This is mostly the same as our standard site SSO, but in a global sense so must be managed by provisioning instead of in Site Admin or Spark Control Hub. The end result is an application specific SSO config for authenticating API requests.
03-20-2018 11:26 AM
One more question Nathan/Cisco: are the methods described above also valid for NBR API?
03-20-2018 11:48 AM
Hello,
NBR API is strictly limited to site admin username and password at this time. This will not work with SSO or CI authentication method until this behavior is addressed. CI sites that have not yet configured SSO can use NBR API in the meantime, with their login email address and password.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide