Web Services REST


REST (Representational State Transfer) is an architectural style for distributed hypermedia systems.

  • It is based on the HTTP protocol for accessing resources thanks to their unique URI.
  • It is used by web services to perform various operations supported natively: GET (read), POST (write), PUT / PATCH (modify), DELETE (delete).

 Operating principle:

1. A consumer makes an application via a request to a REST API with a web services provider.
2. The REST web service carries out the request and returns a response to the consumer in the form of a data stream (usually JSON format, this format having become established over the years).
3. The consumer uses the response as part of an application he/she has developed.

Product name - ev itsm.png can be:

  • Supplier of REST web services thanks to its REST API: the services offered are well-defined business functions.

    Example documentation icon EN.png  Component of creation or suspension of an incident in Product name - ev itsm.png

    In this case, the third-party application (e.g. another Service Desk application) must call the Product name - ev itsm.png REST web service sending the values expected by the web service parameters (e.g. the number of the incident to suspend); processing is then carried out as if Product name - ev itsm.png was active.
  • Consumer using external REST web services.

    Example documentation icon EN.png  Use, during a workflow step, of an external component for resetting passwords

    In this case, the external REST web service must be declared and configured in the Administration > REST > Services menu before it can be accessed from a step in the process (via a REST action).


  • The Product name - ev itsm.png REST API exchange format is JSON.
  • The Product name - ev itsm.png API REST allows to manage the following resources.
Ressource Objet JSON Table SQL
assets asset AM_ASSET
catalog-assets catalog-assets AM_CATALOG
catalog-requests catalog-requests SD_CATALOG
configuration-items configuration-items AM_ASSET
departments department AM_DEPARTMENT
employees employee

alias : recipient ; requestor ( * )

known-problems known-problem SD_KNOWN_PROBLEMS
locations location AM_LOCATION
manufacturers manufacturer AM_MANUFACTURER
requests request SD_REQUEST
slas sla SD_SLA
status status SD_STATUS

( * ) The employee JSON object has 2 alias which are used for the requests resource to manage the case of the foreign keys submitted_by and recipient_id of the SD_REQUEST table.

  • The methods (operations) PUT and PATCH which allow to modify a specified resource are equivalent.
  • The methods which allow to obtain a specified resource or to modify a specified resource use a mandatory parameter that corresponds to a field of the Product name - ev itsm.png database for which we can guarantee the uniqueness.
        Example documentation icon EN.png  asset_id parameter for the following methods:
  • When you wish to obtain a specified resource or to modify a specified resource for which the third-party system does not know the value of the field used as parameter, you should use the method to obtain a list by applying the desired search/filter options on the fields of the database. You can then use the link URL (HREF) provided which contains the unique identifier of each resource.
        Example documentation icon EN.png  To obtain a specified access:
    • You should use the View a list of assets method (GET /assets) with the possible search/filter options on the fields asset_id, employee_id, location_id, department_id.
    • Then you can use the link URL: "HREF": "https://{your_server}/api/v1/{your_account}/assets/27590" to access the asset of which the identifier is 27590.
  • Results (JSON format) are returned in the language of the user for which the account is used to access to the Product name - ev itsm.png REST API.

Best Practice big icon.pngBest Practice

  • To run your tests, you shoud use:
    • The HTTP request library providing by Logo - EasyVista.png. It contains a set of examples which may help you understand and use the Product name - ev itsm.png REST API and run tests in your specific Product name - ev itsm.png environment if required.
    • Postman (extension of Chrome). It is an excellent third-party tool for mechanizing API tests; particularly REST API. 

Licensing and security system

  • All operations carried out with Product name - ev itsm.png REST API require a login in order to access a specific domain. Each time a call is made to the API, user access is recorded.
  • For security reasons and to prevent unwanted use of the Product name - ev itsm.png REST API by standard users, the REST API field has been added to profile management. It allows you to define a dedicated profile and user to the API use. Open url.png See the Procedure 



How to define a dedicated user to the REST API

Step 1: Create a REST API profile

1. Select Administration > Access Management > User Profiles in the menu.

2. Create a new profile and check the REST API box to give him the authorization to use the Product name - ev itsm.png REST API.
         Profile - REST API Users.png

Step 2: Create a dedicated user, authorized to carry out REST requests

1. Proceed to the employee directory: select Asset Management / Operation / Transition / Extended CMDB / Projet > Directory > Employee in the menu.

2. Create a new user and assign the profile previously created.
         User - Profile REST API.png
All multilingual data will be displayed in that user's language.


API References

Access to REST methods

Access is via a URL of format:  

  • {your_server}: server URL
             Example documentation icon EN.png  https://your_company.easyvista.com 
  • {your_account}: Account Product name - ev itsm.png used
             Example documentation icon EN.png  50004: Production base; 50005: Sandbox base
  • {resource_name}: Name of the resource called
             Example documentation icon EN.png  requests ; assets ; employees

        Example documentation icon EN.png


List of the REST API methods


Note: The Assets term includes equipment / licenses / contracts.

   Links of an asset






Note: The Tickets term includes incidents, service requests, change requests, investment requests, problems, events.



Known errors


Departments / Locations



Configuration items (CIs)

   Links of a CI

  • Create a CI link  :  POST  /configuration-items/{parent_ci_id}/item-links/{child_ci_id}
  • Update a CI link  :  PUT  /configuration-items/{parent_ci_id}/item-links/{child_ci_id}
  • Delete a CI link  :  DELETE  /configuration-items/{parent_ci_id}/item-links/{child_ci_id}

External tables (E_ tables)


HTTP status codes

Code Error Description
200 OK (Success) Request processed successfully.
201 Created Request processed successfully and an item created.
204 Deleted Request processed successfully and an item deleted.
400 Bad Request Request formulated incorrectly and cannot be executed correctly.
Example documentation icon EN.png
 "error": "Nothing to update (check fieldnames)"
401 Unauthorized Authentication process for accessing the resource is incorrect: Login/Password incorrect, Invalid session, Incorrect Product name - ev itsm.png account.
Example documentation icon EN.png
 "error": "Invalid Login / Password"
403 Forbidden Server refused to execute the request. Unlike error 401, authentication is accepted but access rights do not authorize the client to access the resource: The user does not have the REST API parameter enabled in their profile.
404 Not Found Resource not found: Incorrect URI, Missing resource, Incorrect communication with the server, rfc_number not found.
Example documentation icon EN.png
 "error": "Resource not found"
405 Method not allowed Request method not authorized: not supported or not appropriate for the resource.
Example documentation icon EN.png
 "error": "Invalid input parameter"
406 Not acceptable Resource not available in a format complying with the Accept headers of the request. Note: The exchange format of the Product name - ev itsm.png REST API is JSON.
409 Conflict Unable to process request in the current state. Records cannot be modified or deleted.
413 Request entity too large Processing abandoned because the request was too large.
500 Internal Server Error Generic error message displayed when an unexpected condition is encountered and there is no appropriate message which is more specific.
Example documentation icon EN.png
 "error": "An error occured. A text message is returned in the body."
503 Service unavailable Service temporarily unavailable or under maintenance. The request cannot be processed.


REST API Conventions

Convention Meaning
Orange Parameters used in an HTTP request string (URL) which do not correspond to Product name - ev itsm.png database fields.
Example documentation icon EN.png   Method View a list of assets
Black and Bold Parameters used in the URL of an HTTP request which correspond to Product name - ev itsm.png database fields.
Example documentation icon EN.png   Method View an asset
Green Parameters used in the body of an HTTP request which represent JSON object names corresponding to Product name - ev itsm.png database fields; they allow the value of a database field to be assigned or modified.
Example documentation icon EN.png   Method Close an incident/request

{  "closed": {  "end_date": "11/20/2016 12:12:12",  }  }
Parameters used in the body of an HTTP request which represent JSON object names not corresponding to Product name - ev itsm.png database fields.
Example documentation icon EN.png   Method Reopen an incident/request

{  "restarted": {  "comment": "string (required)"  }  }

Last modified by Christine Daussac on 2019/06/28 09:32
Created by Administrator XWiki on 2016/11/23 10:15
Powered by XWiki ©, EasyVista 2019