cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Walkthrough Wednesdays

UCCX: HTTP Triggered Applications and Authentication

485
Views
15
Helpful
2
Comments

Symptoms

UCCX does not natively protect HTTP Triggers.

Diagnosis

I wanted to come up with a solution to handle HTTP cookie based authentication.

Solution

There is a zip file for this project attached to this article.  It was written on UCCX 12.5(1).

Before HTTP Authentication

uccx-http-triggered-application-code.png

uccx-http-triggered-application-result.png

After HTTP Authentication

uccx-http-triggered-application-with-auth-code.png

uccx-http-triggered-application-with-auth-result-pre.png

uccx-http-triggered-application-with-auth-result-post.png

Comments
Enthusiast

What a coincidence, sitting here updating my rudimentary http trigger application for prompt management capabilities using a similar process as you've outlined here.  The challenge I'm running into is there doesn't seem to be a way to assign API access to agents or supervisors, so although I can authenticate them via the http trigger and use their login info (for auditing purposes) to upload the new prompt, I've had to either embed the API user info in the script, or prompt the user to input the API user info to generate the API calls via REST.

 

It's just something self contained within UCCX that doesn't rely on external web servers or IT support staff.

 

2020-12-31_19-52-23.png

 


Great write up.  Thanks for sharing @Anthony Holloway .

 

Edit - this isn't an attempt to hijack your excellent post. Just sharing an example of how the process you've outlined for securing an http trigger can be used.

@Bill Talley 

No worries Bill.  I appreciate the conversation.  I came to the same conclusion as you, that the API would not be able to be used with the Agent nor Supervisor credentials.  This is actually why I do not store their credentials in the solution, and instead, opted to store the authenticated user object.  You could then use this user object in your repo steps like upload document, or, you could simply just check for its existence, and then on their behalf, auth to the API with a pair of admin creds.  Don't forget to hide your admin creds though!
https://community.cisco.com/t5/collaboration-voice-and-video/uccx-masking-passwords-in-scripts/ta-p/3137357

Content for Community-Ad