/// <summary>
/// The CreateNew method creates an instance of the APIClient for use
/// in your application.
/// Here you must specify your SUBSCRIPTION KEY, SIGNING KEY and BASEURL
/// The base url will be different if you are using a Murano API, however it
/// follows the same pattern as Sage 200, so it is the url up to but not
/// including the version number.
/// </summary>
/// <returns>A configured APIClient</returns>
public static APIClient CreateNew(HttpSessionStateBase Session)
{
if (Session == null)
{
throw new Exception("Session not set");
}
// Create a new instance of the APIClient.
APIClient apiClient = new APIClient();
// Set the base URL, this sample is for Sage 200.
apiClient.BaseUrl = @"https://api.columbus.sage.com/uk/sage200/accounts/";
// Enter your developer subscription key (from the developer portal).
apiClient.SubscriptionKey = "Enter your subscription key here";
// Enter your developer signing key (from the developer portal).
apiClient.SigningKey = "Enter your signing key here";
// Validate that values have been set
if (string.IsNullOrEmpty(apiClient.SubscriptionKey) || apiClient.SubscriptionKey.ToLower().StartsWith("enter"))
{
throw new System.ArgumentException("Please edit APIClientFactory.cs and specify your SubscriptionKey");
}
if (string.IsNullOrEmpty(apiClient.SigningKey) || apiClient.SigningKey.ToLower().StartsWith("enter"))
{
throw new System.ArgumentException("Please edit APIClientFactory.cs and specify your SigningKey");
}
// The following line will get a SageID security token based on the
// ClientID and Scope defined in AuthenticationProviderFactory.cs.
// If you are not signed in, then this will present a sign in screen,
// where you must sign in to receive a security token.
// If you are already signed in, it will return a security token.
// It’s important to make this call on every request: to ensure that you have a new and valid Access Token.
// If the access token has expired: it will silently get you a new access token by making use of the Refresh token.
// If the Refresh token has also expired, it will then prompt user for sign in.
apiClient.AccessToken = SecurityTokenStore.GetAccessToken(Session, AuthenticationProviderFactory.GetProvider());
// If there is now a valid site ID and company ID on the HTTPContext then set the default values on the API
if (ContextStore.IsValid(Session))
{
apiClient.CompanyID = ContextStore.GetCompanyID(Session).ToString();
apiClient.SiteID = ContextStore.GetSiteID(Session);
}
// Returns the configured client.
return(apiClient);
}
/// <summary>
/// Checks that the user is logged on
/// Executed on all controllers with RequiresValidLogonAttribute
/// </summary>
/// <param name="filterContext">The ActionExecutingContext</param>
public override void OnActionExecuting(ActionExecutingContext filterContext)
{
base.OnActionExecuting(filterContext);
string returnurl = string.Empty;
try
{
// Set the return URL to the request URL
returnurl = filterContext.HttpContext.Request.Url.AbsolutePath;
}
catch
{
}
// Get the current access token
string token = SecurityTokenStore.GetAccessToken(filterContext.HttpContext.Session, AuthenticationProviderFactory.GetProvider());
HttpRequestBase request = filterContext.HttpContext.Request;
try
{
// if the token is not set then redirect to the logon page
if (string.IsNullOrEmpty(token))
{
filterContext.Result = new RedirectToRouteResult(
new RouteValueDictionary(
new
{
controller = "Account",
action = "Logon",
ReturnUrl = returnurl
}));
}
}
catch (Exception)
{
{
// force re-logon
ContextStore.Reset(filterContext.HttpContext.Session);
filterContext.Result = new System.Web.Mvc.HttpUnauthorizedResult();
}
}
}
