How to Create AuthToken to access TaskList API incase of Self Managed Deployment

hari_kiran · June 20, 2022, 5:09am

Hi,

Briefly:
I want to explore the graphql tasklist restapi of Camunda 8.

Blocker:
Not sure how to get the access token in case of self managed deployment.

Details:

I am running Camunda 8 platform as a self managed deployment where I have elastic, zeebe, tasklist running on my laptop.

I was going through the article - tasklist REST API Overview | Camunda Platform 8 and wanted to invoke the API’s through POSTMAN.

Since its a self managed deployment,

what should be the inputs for below parameters to get the authentication token ?

{
  "client_id": "<client-id>",
  "client_secret": "<client-secret>",
  "audience": "<audience>",
  "grant_type": "client_credentials"
}

I am trying to fetch the token by invoking a POST method to url - http://localhost:26500/oauth/token. I hope the url is correct.

Thanks in advance
Srihari.

Hafflgav · June 20, 2022, 7:30am

Hey @hari_kiran!
Maybe it is worth to try and run the Camunda 8 docker-compose.yaml and see if it is going to work with that one. It include Zeebe, Tasklist, Operate and ElasticSearch without any IAM and Security.

github.com

camunda/camunda-platform/blob/main/docker-compose-core.yaml

# While the Docker images themselves are supported for production usage,
# this docker-compose.yaml is designed to be used by developers to run
# an environment locally. It is not designed to be used in production.
# We recommend to use Kubernetes in production with our Helm Charts:
# https://docs.camunda.io/docs/self-managed/platform-deployment/kubernetes-helm/
# For local development, we recommend using KIND instead of `docker-compose`:
# https://docs.camunda.io/docs/self-managed/platform-deployment/kubernetes-helm/#installing-the-camunda-helm-chart-locally-using-kind

# This is a lightweight configuration with Zeebe, Operate, Tasklist, and Elasticsearch
# See docker-compose.yml for a configuration that also includes Optimize, Identity, and Keycloak.

services:

  zeebe: # https://docs.camunda.io/docs/self-managed/platform-deployment/docker/#zeebe
    image: camunda/zeebe:${CAMUNDA_PLATFORM_VERSION:-8.0.2}
    container_name: zeebe
    ports:
      - "26500:26500"
      - "9600:9600"
    environment: # https://docs.camunda.io/docs/self-managed/zeebe-deployment/configuration/environment-variables/

This file has been truncated. show original

I am also wondering how you obtained the source code for Tasklist? As far as I am concerned the code is not available to public.

Let me know if you make any progress with this approach!
Best,
Thomas

hari_kiran · June 20, 2022, 9:02am

Hi @Hafflgav , I’m sorry, I mis-written it as code, I actually downloaded the binaries from Release Camunda Platform 8.0.0 · camunda/camunda-platform · GitHub

I have a windows laptop and hence cannot run the docker on this one. Any other approach that you can suggest that I should try ?

Hafflgav · June 20, 2022, 9:32am

@hari_kiran you should be able to run docker on windows.

hari_kiran · June 23, 2022, 4:35am

Thanks @Hafflgav

I also found another way.

As mentioned in this article: Getting Started with Camunda Platform 8’s GraphQL API - Camunda we can invoke the tasklist login service to fetch the session id and use it in the further api calls to fetch the data.

We are able to use the session id returned in the above call in the further api calls as below.

Hope others find this useful as well.

Regards,
Srihari.

Hafflgav · June 27, 2022, 9:04am

Hey @hari_kiran!
Thanks for posting this

Just a little addition: If you use Camunda Identity and Keycloak this is authentication is not possible. So make sure to only use the core components when doing so.