/en/_posts/2014-05-20-how-to-use-runabove-api.markdown

https://gitlab.com/billyprice1/knowledge-base · Markdown · 86 lines · 62 code · 24 blank · 0 comment · 0 complexity · 40a1efd49979289b2975cdd7aba98c9a MD5 · raw file 

    

  1. ---
    2. 

  2. layout: post
    3. 

  3. title:  "How to use RunAbove API?"
    4. 

  4. categories: Instances
    5. 

  5. author: VincentCasse
    6. 

  6. lang: en
    7. 

  7. ---
    8. 

  8. RunAbove has been designed to help developers in building scalable software faster. To create applications with our product, we provide an API for each of our products. But, how do you use our api ?
    9. 

  9. 

  10. # API capabilities
    11. 

  11. 

  12. To discover all possibilities of our APIs, you could use the automated console available here : [https://api.runabove.com/console/](https://api.runabove.com/console/). In the  console, you can see the documentation of APIs and you can test each of the calls available .
    13. 

  13. 

  14. __Note__ : The RunAbove API is designed to be very simple. If you want to deal directly with Openstack API, you can authenticate with Keystone in [https://auth.runabove.io/](https://auth.runabove.io/).
    15. 

  15. 

  16. More information about how to use Openstack APIs for [Object Storage](http://developer.openstack.org/api-ref-objectstorage-v1.html), [Instances](http://developer.openstack.org/api-ref-compute-v2.html) and [Authentication](http://developer.openstack.org/api-ref-identity-v2.html)
    17. 

  17. 

  18. # How to authenticate a user?
    19. 

  19. 

  20. First, you have  to declare your application in the API to be authorized to communicate with RunAbove API. To declare a new application, you can fill  in the form found at the following page : [https://api.runabove.com/createApp/]( https://api.runabove.com/createApp/). This application will be linked to your account with a specific name and description. You need to save your _application key_ and _application secret_ to identify your requests.
    21. 

  21. 

  22. If you want to develop an application with RunAbove API, you have to use a token, called a  _consumer key_ for each API's request. To get this token, you must go to this url [https://api.runabove.com/1.0/auth/credential](https://api.runabove.com/1.0/auth/credential) with some data  inside the body of the request:
    23. 

    24. 

  24. ```bash
    25. 

  25. curl    -X POST \
    26. 

  26.         -H 'X-Ra-Application: z5czlUfqJL6HsYKj' \
    27. 

  27.         -H 'Content-Type: application/json' \
    28. 

  28.         -d '{
    29. 

  29.             "accessRules":
    30. 

  30.                 [
    31. 

  31.                     { "method":"GET","path":"/me"}
    32. 

  32.                 ],
    33. 

  33.                 "redirection":"http://runabove.com"
    34. 

  34.             }' \
    35. 

  35.         "https://api.runabove.com/1.0/auth/credential"
    36. 

  36. ```
    37. 

  37. 

  38. This request contains your application key included in metadata and requires that the access rules be listed inside the body.
    39. 

  39. 

  40. Access rules define which call will be authorized when the consumer key is used. For example, here, the application can only call /me but you can add requests as required. You can precisely define which calls each app has access to: you can use regex to declare with request will be authorize in the consumer key. If you want get vnc console of all your instances, you could authorize your application with this accessRules :
    41. 

  41. 

  42. ```bash
    43. 

  43. { "method":"GET","path":"/instance/*/vnc"}
    44. 

  44. ```
    45. 

  45. 

  46. In return to this request, you will get the consumer key and a url. In this url, a user can validate the consumer key with their authentication.
    47. 

  47. 

  48. # How to call the API?
    49. 

  49. 

  50. Now that you have the  application's credentials and consumer key validated, by user login, you can call our API. For example to get a list of your instances.
    51. 

  51. To do this, you need to send a request to  [https://api.runabove.com/1.0/instance](https://api.runabove.com/1.0/instance) with the following.
    52. 

  52. 

  53. ```bash
    54. 

  54. $ curl  -XGET
    55. 

  55.         -H 'X-Ra-Application:your_application_key' \
    56. 

  56.         -H 'X-Ra-Timestamp:current_timestamp'   \
    57. 

  57.         -H 'X-Ra-Signature:generated_signature' \
    58. 

  58.         -H 'X-Ra-Consumer:the_consumer_key'  \
    59. 

  59.         https://api.runabove.com/1.0/instance
    60. 

  60. ```
    61. 

  61. 

  62. To reduce differences between your local timestamp and timestamp inside API's servers, you can get the current timestamp of our servers with a call on [https://api.runabove.com/1.0/auth/time](https://api.runabove.com/1.0/auth/time).
    63. 

    64. 

  64. ```bash
    65. 

  65. $ curl https://api.runabove.com/1.0/auth/time
    66. 

  66.   1400000000
    67. 

  67. ```
    68. 

  68. 

  69. With this information, you can calculate the difference between timestamps and add it on your local timestamp on each request.
    70. 

  70. 

  71. Signature is a sha1, in hexadecimal format, composed by a string with some information separated by _+_ character: your application secret, the consumer key, HTTP verb, query, body of the request and timestamp.
    72. 

  72. 

  73. ```bash
    74. 

  74. $ echo -n "your_application_secret_key+application_consumer_key+GET+https://api.runabove.com/1.0/instance++1400000000" | openssl dgst -sha1 | awk '{print $2}'
    75. 

  75. d33fced42c337a8dfc15d6b7a8e0c588d3a0f62f
    76. 

  76. ```
    77. 

  77. 

  78. Prepend `$1$` to the signature so it becomes:
    79. 

  79. 

  80. ```
    81. 

  81. $1$d33fced42c337a8dfc15d6b7a8e0c588d3a0f62f
    82. 

  82. ```
    83. 

  83. 

  84. # Congratulations!
    85. 

  85. 

  86. You have your first request on RunAbove API! Now you can create applications on object storage or automate your infrastructure with some creation of new instances!
    87.