This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

simple external oAuth service callout

Posted on 01-23-2017 03:05 AM
Not applicable
Reply posted on --/--/---- --:-- AM

Hi I am using a very simple service callout to verify our third-party oAuth token, but I keep getting a timeout error even when I set the timeout.

I am verifying the token with a GET request like this: https://{external_URL}/oauth/token/user?=access_token={oAuthtoken}

On the music example: https://github.com/dzuluaga/apigee-tutorials/tree/master/apiproxies/musicapi-oauth-delegated-authent... from the http://docs.apigee.com/api-services/content/use-third-party-oauth-system, it seems that it's passed in as a header parameter instead of query.

Am I not verifying the token correctly in apigee when I pass it in as a query param with GET verb?

Error I am getting:

{ "fault": { "faultstring": "Execution of ServiceCallout OAuthVerifyCall failed. Reason: timeout occurred in OAuthVerifyCall", "detail": { "errorcode": "steps.servicecallout.ExecutionFailed" } } }

ServiceCallout policy:

<Properties/>

<Request clearPayload="true" variable="OAuthVerifyRequest"> <IgnoreUnresolvedVariables>false</IgnoreUnresolvedVariables>

</Request>

<Response>OAuthVerifyResponse</Response>

<Timeout>3600000</Timeout>

<HTTPTargetConnection>

<Properties>

<Property name="success.codes">1xx,2xx,3xx,4xx</Property>

</Properties>

<URL>https://{external_URL}/oauth/token/user</URL>

</HTTPTargetConnection>

Assign Message policy:

<Set>

<QueryParams>

<QueryParam name="access_token">{oauthtoken}</QueryParam>

</QueryParams>

<Verb>GET</Verb>

</Set>

0 5 709
Topic Labels
0 Likes
5 REPLIES 5

Posted on --/--/---- --:-- AM
Not applicable
Reply posted on --/--/---- --:-- AM

@Barbara: Are you getting timeout in Apigee only? have you checked that third-party OAuth API not giving any time time out in Postman or SoapUI...?

Posted on --/--/---- --:-- AM
Not applicable
In response to
Reply posted on --/--/---- --:-- AM

Hi Sachhida, I ran the apigee proxy immediately after I generated an access token. Then, I validated my apigee token with the GET request that I mentioned before on Postman, and the token is still valid.

0 Likes

Posted on --/--/---- --:-- AM
Not applicable
In response to
Reply posted on --/--/---- --:-- AM

@Barbara: the resource you created and service call out, are they both GET?

don't set access_token in other assign message policy. set in the service call out request.

for you reference service call out policy:

<Properties/> <Request clearPayload="true" variable="OAuthVerifyRequest"> <IgnoreUnresolvedVariables>false</IgnoreUnresolvedVariables> <Set> <QueryParams> <QueryParam name="access_token">{{oauthtoken}</QueryParam> </QueryParams> <Headers> <Header name="Accept">application/json</Header> </Headers> <Verb>GET</Verb> </Set> </Request> <Response>OAuthVerifyResponse</Response> <Timeout>3600000</Timeout> <HTTPTargetConnection> <Properties> <Property name="success.codes">1xx,2xx,3xx,4xx</Property> </Properties> <URL>https://{external_URL}/oauth/token/user</URL> </HTTPTargetConnection>

0 Likes

Posted on --/--/---- --:-- AM
Not applicable
In response to
Reply posted on --/--/---- --:-- AM

Thank you! I will change that policy and try to resolve the network error as well. Yes the resource I created and the service call out are both GET.

0 Likes

Posted on --/--/---- --:-- AM
Not applicable
In response to
Reply posted on --/--/---- --:-- AM

Actually I checked and you might be right that there may be a network issue with apigee and the external oAuth verification. While we fix that, do you mind letting me know if the way I am using service callout in the correct way to verify an access token with a GET method?

0 Likes