Re: HP ALM REST API components endpoint forbidden - Micro Focus Community

Brause · ‎2019-03-14

I was experimenting with HP ALM REST and i see that the "domains/{domain}/projects/{project}/components" endpoint always gives me back the response.

{
    "Id": "qccore.operation-forbidden",
    "Title": "Access to this resource has been denied",
    "ExceptionProperties": null,
    "StackTrace": null
}

This problem occures with trail server as well as evaluation standalone server (where i have complete admin rights). All other endpoints like "/tests, /runs ..." work just fine.

My questions are:

Is there a way to enable access to this endpoint with an administrator setting?
Is there another way to read out buisness compontes per REST?

pedro2 · ‎2019-03-14

Hello,

You can refer for more information on the exception with the follwing link:

https://admhelp.microfocus.com/alm/en/12.55/api_refs/REST_TECH_PREVIEW/ALM_REST_API_TP.html#REST_API_Tech_Preview/General/Exceptions.html%3FTocPath%3D_____6

Brause · ‎2019-03-15

Thanks for the reply, i figured as much than i dont have permissions, but now the question is how can i give said user these permissions. I could not find anything in the site-administrator panel or profile settings. Also the user i used to request the endpoint is the admin account and as far as i can see in user settings he is member of the admin group and has all rights?

arichtman · ‎2019-03-19

Any version before 12.60 there is no way to lock API if the user has project access.

That means that as long as user has access to project they can use REST resource.

User may not be able to submit or read everything depending on permission configuration.

Check to see if they can read and create entities through the GUI with that logon.

If they can but only REST is not working- check Site Configuration parameters to see that OTA_ACCESS_APIKEY_ONLY is not enabled.

If they cannot then you need to customize project permissions until they can.

Brause · ‎2019-03-19

I can create/delete/edit everything the GUI and REST (expect Buisness Components). By now i tried almost everything, but could not get REST to work with "Business Components". Yesterday i tried the OTA win32 approach and it is able to read/write components.

Maybe its not implemented in the REST properly, the endpoint is there but i dont see it on

rest/resource-list # endpoint to list all endpoints

I think i will continue working with the OTA from now on and replace the implementation if REST gets an update.

PS. arichtman: I do not have this parameter enabled in my site configuration, also how did you know about the parameter i could not i find it on the list from the internet.
http://bienabee.freshdesk.com/support/solutions/articles/1000188830-hp-alm-site-configuration-parameters

arichtman · ‎2019-03-20

The ALM REST API is still quite new and maturing - I wouldn't be surprised if some functionality was either missing or undocumented - I've had to nut a few things out myself.

Best of luck with your work 🙂