10.1. Getting Started with Tungsten REST API

10.1. Getting Started with Tungsten REST API
Prev	^Up	Chapter 10. Tungsten REST APIv8	Next

10.1. Getting Started with Tungsten REST API

10.1.1. Configuring the API
10.1.2. How to Access the API
10.1.3. Data Structures
10.1.4. Summary of all API TPM options

10.1.1. Configuring the API

10.1.1.1. Network Ports
10.1.1.2. User Management
10.1.1.3. SSL/Encryption
10.1.1.4. Enabling and Disabling the API

10.1.1.1. Network Ports

The Replicator process listens for API calls using the following port by default:

Port	Component
8097	Replicator

Should you wish to choose your own ports for the API, this can be handled by specifying the new ports in the tpm config using the following properties:

replicator-rest-api-port=8097

10.1.1.2. User Management

In APIv8 it is now mandatory to create the admin user via use of the rest-api-admin-user and rest-api-admin-password options during installation.

Additional admin users can be created after installation if required, this can be achieved via the following methods:

Using CURL commands

The POST call will allow creation of additional users.

shell> curl -k --request POST --location 'https://host1:8096/api/v8/users?i-am-sure=true' \
--header 'Content-Type: application/json' \
--header 'Authorization: ••••••' \
--data '{
  "payloadType": "credentials",
  "user":"tungsten2",
  "pass":"security2"
}'

The PUT call can be used for password modification:

shell> curl -k --request PUT --location 'https://host1:8096/api/v8/users?i-am-sure=true' \
--header 'Content-Type: application/json' \
--header 'Authorization: ••••••' \
--data '{
  "value": "new-password"
}'

Using tapi

The tapi tool can make the creation of additional admin users simple and straightforward, the following example shows the use of this approach.

shell> tapi --create --host hostnamehere --create-user usernamehere --create-password passwordhere -v

Important

Note that users created/modified through the curl and tapi calls only apply to the host on which the call was done. The same, identical call, will have to be re-run on each host of the cluster.

Important

Usernames must NOT contain any of the following reserved characters: (space) ! # $ & ' ( ) * + , / : ; = ? @ [ ]

10.1.1.3. SSL/Encryption

SSL is enabled by default and will use the same keystore, certificates and aliases as the cluster TLS ones.

You can specify them with java-tls-keystore-path and java-truststore-path tpm options, or let tpm generate the certificates for you during installation.

For more detailed information on SSL, see Chapter 6, Deployment: Security

10.1.1.4. Enabling and Disabling the API

As previously mentioned, the API is enabled by default, listening only on localhost.

To disable the API, you will need to specify the following tpm options:

replicator-rest-api=false

rest-apis=false

To change the address that the API is listening on, you need to specify the following tpm options:

replicator-rest-api-address=0.0.0.0

rest-api-address=0.0.0.0

For more information on all of the tpm options for managing the API, see Section 10.1.4, “Summary of all API TPM options”

Prev	Up	Next
Chapter 10. Tungsten REST APIv8	^Level	10.1.2. How to Access the API

Continuent Documentation