Token Approval

Tokens can be used once by an external system to approve, reject, or revoke the request without users having to log in to CDA Web Interface.

This is done by issuing an HTTP POST request to the URL /api/approval_requests with the following parameters:

• approvalToken

  The one time token that was generated when the request was created

• comment

  A comment that is added to the approval request. Must not be longer than 256 characters.

• approver

  The person who approves/rejects/revokes the request. The person does not need to exist in CDA. The name must not be longer than 30 characters. If the person exists in CDA, it is mapped to the CDA user.

Example request via the single command line:

curl -d "approvalToken
=alksji7wkjw6slkj6wlkwe86wjkw86erlkw9v86av8623jsdl
&approver=henrytoms&comment=Approved%20by%20Henry%20Toms
%20via%20Remedy%20ticket%201234." http://ara.example.com/api/approval_requests

(line breaks for formatting purposes only)

When the system receives the request, it validates the token and changes the state of the approval request accordingly. The respond codes are as follows:

• 200

  The approval status was changed accordingly.

• 403

  Invalid approval token.

• 500

  No approver was specified.

• 500

  No approver was specified. If anything else failed, the details of the error are returned in the body.