World check one API - 401 unauthorized when testing connection from SOAP or Fiddler
This is the first time we are working on World check API. We are testing authorization and connection process. We already have secret key and API key. Below request we are using to generate hash value from secret key.
(request-target): post /v1/cases
host: rms-world-check-one-api.thomsonreuters.com
date: Fri, 28 Sep 2018 09:29:59 GMT
content-type: application/json
content-length: 88
{
"caseId": "my customer ID",
"name": "John Doe",
"providerTypes": ["WATCHLIST"]
}
After generating Hash value we are sending request from SOAP-ui. Below is the request as checked in fiddler which is sent to World check API when sent from SOAP-UI.
POST https://rms-world-check-one-api-pilot.thomsonreuters.com/v1/cases HTTP/1.1 Date: Fri, 28 Sep 2018 09:29:59 GMT
Authorization: Signature keyId="xxxxxxxxxxxxxxxxxxxxxxxxx",algorithm="hmac-sha256", headers="(request-target) host date content-type content-length", signature="2qvdOiSvDZCogwO1VY+V3F1NdTmkqrhO/rUW2CJ16nM="
Content-Type: application/json
Content-Length: 88
Host: rms-world-check-one-api-pilot.thomsonreuters.com
Connection: Keep-Alive
User-Agent: Apache-HttpClient/4.1.1 (java 1.5)
{
"caseId": "my customer ID",
"name": "John Doe",
"providerTypes": ["WATCHLIST"]
}
Below is the response we are getting -
HTTP/1.1 401 Unauthorized
X-Application-Context: application
Authorization: WWW-Authenticate: Signature realm="World-Check One API",algorithm="hmac-sha256",headers="(request-target) host date content-type content-length
Transfer-Encoding: chunked
Date: Fri, 28 Sep 2018 09:30:15 GMT
Server: ""
Please help on this.
Best Answer
-
The above issue is resolved. The problem was with few unnecessary white spaces included in the request. After removing the white spaces, we are able to get the correct JSON response.
0
Answers
-
Thank you for the query.
As per the details provided, I see that the host address which you are using in the (request-target) is - rms-world-check-one-api.thomsonreuters.com and should be - rms-world-check-one-api-pilot.thomsonreuters.com in the (request-target).
Also, I advise you to use - "groupId" and "entityType": "INDIVIDUAL", in the body of the request.
Please let me know if you need further assistance.
0 -
Following
up on the above reported issue.Please let us know if you are still facing the issue or has it been resolved.
0 -
Hi @Prabhjyot,
Thanks for your response.
We already tested the rms-world-check-one-api-pilot.thomsonreuters.com as Host address. It did not work; we receive the 401 Unauthorized response.
What will be the groupId that we should pass?
0 -
In order to retrieve the groupId, you need to use the GET API call - 'SEQ-pre-groups: Get my top-level groups', which will provide you the details of the goups.
Can you please confirm if you are able to call the above API call successfully or are you receiving Error 401 for the above call as well?
0 -
Hi @Prabhjyot please find below the request we used to get groups.
GET https://rms-world-check-one-api-pilot.thomsonreuters.com/v1/groups HTTP/1.1
Host: rms-world-check-one-api-pilot.thomsonreuters.com
Date: Thu, 04 Oct 2018 08:58:30 GMT
Authorization: Signature keyId="XXXXXXXXXXXXXXXXXXX",algorithm="hmac-sha256", headers="(request-target) host date", signature="nk60LnUlWPa6SKs2BWjqMtwAFCWE1DQfNmWX1O2KisQ="Also, below is the request we used to generate hmac.
(request-target): get https://rms-world-check-one-api-pilot.thomsonreuters.com/v1/groups
host: rms-world-check-one-api-pilot.thomsonreuters.com
date: Thu, 04 Oct 2018 08:58:30 GMTKindly check and let us know if this is correct or not.
0 -
Glad to know that the issue has been resolved! If you face the issue again, do let us know for further assistance by posting a new query.
0
Categories
- All Categories
- 3 Polls
- 6 AHS
- 37 Alpha
- 166 App Studio
- 6 Block Chain
- 4 Bot Platform
- 18 Connected Risk APIs
- 47 Data Fusion
- 34 Data Model Discovery
- 698 Datastream
- 1.5K DSS
- 633 Eikon COM
- 5.2K Eikon Data APIs
- 14 Electronic Trading
- 1 Generic FIX
- 7 Local Bank Node API
- 6 Trading API
- 2.9K Elektron
- 1.5K EMA
- 257 ETA
- 564 WebSocket API
- 40 FX Venues
- 16 FX Market Data
- 1 FX Post Trade
- 1 FX Trading - Matching
- 12 FX Trading – RFQ Maker
- 5 Intelligent Tagging
- 2 Legal One
- 25 Messenger Bot
- 3 Messenger Side by Side
- 9 ONESOURCE
- 7 Indirect Tax
- 60 Open Calais
- 283 Open PermID
- 47 Entity Search
- 2 Org ID
- 1 PAM
- PAM - Logging
- 6 Product Insight
- Project Tracking
- ProView
- ProView Internal
- 23 RDMS
- 2.1K Refinitiv Data Platform
- 799 Refinitiv Data Platform Libraries
- 4 LSEG Due Diligence
- LSEG Due Diligence Portal API
- 4 Refinitiv Due Dilligence Centre
- Rose's Space
- 1.2K Screening
- 18 Qual-ID API
- 13 Screening Deployed
- 23 Screening Online
- 12 World-Check Customer Risk Screener
- 1K World-Check One
- 46 World-Check One Zero Footprint
- 45 Side by Side Integration API
- 2 Test Space
- 3 Thomson One Smart
- 10 TR Knowledge Graph
- 151 Transactions
- 143 REDI API
- 1.8K TREP APIs
- 4 CAT
- 27 DACS Station
- 122 Open DACS
- 1.1K RFA
- 107 UPA
- 194 TREP Infrastructure
- 232 TRKD
- 918 TRTH
- 5 Velocity Analytics
- 9 Wealth Management Web Services
- 100 Workspace SDK
- 11 Element Framework
- 5 Grid
- 19 World-Check Data File
- 1 Yield Book Analytics
- 48 中文论坛
