Testing Oauth2 authorization with SoapUI

From i2Rest
Revision as of 17:51, 25 June 2020 by Pavel.lobko (talk | contribs)
Jump to: navigation, search

We assume that you already have Soap UI installed. If not, open source installation package could be found on https://www.soapui.org/downloads/soapui/.
Run SOAP UI, if you alredy have a project, you would like to update with authorization profile - go to it. Otherwise go to File ---> New REST Project. As an example we will create Managment Api call poject. Specify URI to request as follows:

<Managment Gate URL>

where <Managment Gate URL> is the value in your configuration *.json.

Auth soapui 1.png

Find Auth tab in the left bottom corner of the screen, then choose "Add New Authorization..." .

Auth soapui 2.png

Choose "OAuth2.0" authorization type, profile name is up to you:

Auth soapui 3.png

Now go to "Get token":

Auth-soapui-4.png

Choose "Authorization Code Grant". The rest fields must be filled as follows:

"Client identification" and "Client Secret" are the Login/Password of the IBM i user, defined as a i2Rest Server client in configuration *.json.
Assuming that you didn't change default settings in configuration *.json, "Authorization URI" and "Access Token URI" should look like <main gate url>/<value described in OAuth2 object defenition>.
"Redireсt URI" is a value, defined in Clients object in configuration *.json.

Then click on "Get token".

Auth-soapui-5.png

You will be prompted for a Login and a password. Login/Password of the IBM i user, defined in Users object must be entered.

Auth-soapui-6.png

Now it's time to decide either access to a displayed client with displayed scope will be granted or denied. We beleive you click on "Allow" button...

Auth-soapui-7.png

Look at highlighted with green "Access Token" field! Now we are authorized to make requests to protected resources!

Auth-soapui-8.png
Retrieved from "https://www.i2rest.com/index.php?title=Auth_profile_SoapUI&oldid=1325"