Web Services Connection Profiles

The following topics describe connection profiles for web services:

ConnectionProfile:Web Services REST

Web Services REST jobs enable you to design and execute single REST API calls.

The following examples show how to define a Web Services REST connection profile.

  • This JSON defines a connection profile using basic authentication:

    Copy 
    {
       "REST_BASIC_AUTH"
       {
          "Type": "ConnectionProfile:Web Services REST",
          "Description": "",
          "Centralized": true,
          "WebServiceAuthenticationBasic":
          {
             "UsePreemptiveAuth": true,
             "User": "User Name",
             "Password": "Password"
          }
       }
    }   

  • This JSON defines a connection profile using OAuth2 authentication:

    Copy 
    {
       "REST_OAUTH2"
       {
          "Type": "ConnectionProfile:Web Services REST",
          "Description": "",
          "Centralized": true,
          "WebServiceAuthenticationOauth2": {
             "Headers": [
                {
                   "key1": "value1"
                },
                {
                   "key2": "value2"
                }
             ],
             "Body": [
                {
                   "resource1": "2ff814a6-3304-4ab8-85cb-cd0e6f879c1d"
                },
                {
                   "resource2": "2ff814a6-3310-4ab8-85de-cd0e6f879c12"
                }
             ],
             "ApiUrl": "https://login.microsoftonline.com/tenantId/oauth2/token",
             "ContentType": "application/x-www-form-urlencoded",
             "ClientId": "7f477fa3-1a1f-4877-ba80-f39bb563f1b5",
             "ClientSecret": "*****",
             "BasicAuthentication": {
                "Password": "*****",
                "User": "jdoe"
             },
             "GrantTypePassword": {
                "User": "abc",
                "Password": "*****"
             }
          }
       }
    }   

  • This JSON defines a connection profile using AWS authentication:

    Copy 
    {
       "REST_AWS"
       {
          "Type": "ConnectionProfile:Web Services REST",
          "Description": "",
          "Centralized": true,
          "WebServiceAuthenticationAws":
          {
             "CustomServiceName": "batch",
             "Region": "eu-west-2",
             "AuthMethodAccessAndSecretKeys":
             {
                "AccessKey": "MYAWSACCESSKEY1234",
                "SecretAccessKey": "*****"
             }
          }
       }
    }

  • This JSON defines a connection profile using Google authentication:

    Copy 
    {
       "REST_GCP":
       {
          "Type": "ConnectionProfile:Web Services REST",
          "Description": "",
          "Centralized": true,
          "WebServiceAuthenticationGoogle":
          {
             "TokenType": "Access",
             "ServiceAccountKey": "{\"type\":\"service_account\",\"project_id\":\"sso-gcp-dba-ctm1-priv-cc30752\",\"private_key_id\":\"5197d05c5b8212bea944985cec74a34d6c1868aa\",\"private_key\":\"-----BEGIN PRIVATE KEY-----\\nprivate-key\\n-----END PRIVATE KEY-----\\n\",\"client_email\":\bmc-wla-svc-02@sso-gcp-dba-ctm1-priv-cc30752.iam.gserviceaccount.com\,\"client_id\":\"116650586827623521335\",\"auth_uri\":\https://accounts.google.com/o/oauth2/auth\,\"token_uri\":\https://oauth2.googleapis.com/token\,  \"auth_provider_x509_cert_url\":\https://www.googleapis.com/oauth2/v1/certs\,\"client_x509_cert_url\":\https://www.googleapis.com/robot/v1/metadata/x509/bmc-wla-svc-02%40sso-gcp-dba-ctm1-priv-cc30752.iam.gserviceaccount.com\}"
          }
       }
    }   

The following table describes the Web Services REST connection profile parameters.

Parameter

Authentication Type

Description

Authentication Type

N/A

If the connection to the REST endpoint requires authentication, use one of the following objects to define the authentication type and to group together additional authentication parameters:

  • WebServiceAuthenticationBasic

  • WebServiceAuthenticationOauth2

  • WebServiceAuthenticationAws

  • WebServiceAuthenticationGoogle

User

Basic

Defines the basic authentication username.

Password

Basic

Defines the basic authentication password.

UsePreemptiveAuth

Basic

Determines whether to use preemptive authentication.

Valid Values:

  • True

  • False

Default: False

ApiUrl

OAuth2

Defines the OAuth2 web service URL.

ClientId

OAuth2

Defines the user ID associated with the Web Services REST user and application.

ClientSecret

OAuth2

Defines the secret (password) associated with the Web Services REST user and application. You can use Secrets in Code to hide this value in the code.

BasicAuthentication

OAuth2

Determines whether to add basic authentication to the OAuth2 authentication, by defining another user and password.

GrantTypePassword

OAuth2

Determines whether the OAuth2 web service requires an additional grant user and password, in addition to the client ID and secret, for added security.

ContentType

OAuth2

Defines the content type.

application/x-www-form-urlencoded

Headers

OAuth2

Defines OAuth2 header parameters, as an array of Key:Value pairs.

Body

OAuth2

Defines OAuth2 body parameters, as an array of Key:Value pairs.

Region

AWS

Defines the AWS region.

CustomServiceName

AWS

Defines the AWS service to access.

AuthMethodIAMRole

AWS

Determines that authentication of the AWS connection is based on an Identity and Access Management (IAM) role. The IAMRole parameter on the next level defines the IAM role for the AWS connection.
AuthMethodAccessAndSecretKeys AWS

Determines that authentication of the AWS connection is based on an AWS access key and secret, with the following parameters on the next level:

  • AccessKey: Defines the AWS account access key.

  • SecretAccessKey: Defines the AWS account secret access key.

TokenType

Google

Determines one of the following token types for GCP Access Control:

  • Access

  • Identity

ServiceAccountKey

Google

Defines a service account that is associated with an RSA key pair.

Centralized

All Authentication Types

Determines whether to create a centralized connection profile, which is stored in the Control-M/EM database and is available to all Agents.

You must set this parameter to true.

ConnectionProfile:Web Services SOAP

Web Services SOAP jobs enable you to design and execute single SOAP API calls.

The following examples show how to define a connection profile for a Web Services SOAP job.

  • This JSON defines a connection profile using basic authentication:

    Copy 
    "SOAP_BASIC_AUTH":
    {
       "Type": "ConnectionProfile:Web Services SOAP",
       "Description": "",
       "Centralized": true,
       "WebServiceAuthenticationBasic":
       {
          "UsePreemptiveAuth": true,
          "User": "User Name",
          "Password": "Password"
       }
    }

  • This JSON defines a connection profile with no authentication:

    Copy 
    "SOAP_NO_AUTH":
    {
       "Type": "ConnectionProfile:Web Services SOAP",
       "Description": "",
       "Centralized": true
    }

The following table describes the WebServices SOAP connection profile parameters.

Parameter

Description

UsePreemptiveAuth

Determines whether to use preemptive authentication.

Valid Values:

  • True

  • False

Default: False

User

Defines the basic authentication username.

Password

Defines the basic authentication password. You can use Secrets in Code to hide this value in the code.

Centralized

Determines whether to create a centralized connection profile, which is stored in the Control-M/EM database and is available to all Agents.

You must set this parameter to true.