cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

SharePoint PnP Webcast - Calling external APIs securely from SharePoint Framework

Vesa Juvonen
Microsoft

‎May 07 2017 11:06 PM

‎May 07 2017 11:06 PM

SharePoint PnP Webcast - Calling external APIs securely from SharePoint Framework

webcast-securely-calling-api-spfx-promo.png

 

In this PnP Webcast, we concentrate on how to secure traffic from SharePoint Framework solution towards an external API hosted in Azure. Technically similar process does work with other platforms as well, but Azure is typically used as customization platform also for solutions hosted in SharePoint Online. Webcast demo concentrates showing securely calling an Azure function from client-side web part, but you can absolutely also securely call WebAPIs using similar pattern.

 

More details from following blog post at dev.office.com

 

 

Labels:
2,408 Views
3 Likes
2 Replies
Reply
2 Replies
Ketill Antoníus Ágústsson

‎Aug 01 2017 02:15 PM - edited ‎Aug 02 2017 02:50 AM

‎Aug 01 2017 02:15 PM - edited ‎Aug 02 2017 02:50 AM

Re: SharePoint PnP Webcast - Calling external APIs securely from SharePoint Framework

Love these informative and easy to follow WebCasts, I only wish there were more, not at all taking away from the astounding load of content you guys put out! Some of it is just a little bit ahead of my game :\

 

Could someone instruct me on the best practices for contacting an external API, for which the user would input an authentication key?

 

I'm using "this.context.httpClient.get()" to get a user specific list of objects from a third party web service. During runtime I'm getting hit by some CORS errors (I believe) the error I get is:

                   "Response to preflight request doesn't pass access control check: No

                 'Access-Control-Allow-Origin' header is present on the requested resource."

Is there some SP specific way of handling this or just any solution in general, I am new to this and didn't realize this could be a problem before I got hit with the error :\

 

EDIT:

I just got a response from the serivce and they do not support client side calls, would the best course be utilizing azure functions or no? Again any and all input appreciated :)

 

Thanks in advance,

-Ketill

 

0 Likes
Reply
Butch Marshall

‎Apr 11 2018 06:36 AM

‎Apr 11 2018 06:36 AM

Re: SharePoint PnP Webcast - Calling external APIs securely from SharePoint Framework

Great Info.  I got it working all the way up to my external API getting an "Authorization" header.  But the header is always empty?

 

Array 
( 
   [Authorization] =>  
   [Host] => xxxx.xxxx.com 
   [Connection] => keep-alive 
   [Content-Length] => 0 
   [Pragma] => no-cache 
   [Cache-Control] => no-cache 
   [Accept] => application/json;odata=verbose 
   [Origin] => https://XXXX-admin.sharepoint.com 
   [User-Agent] => Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/65.0.3325.181 Safari/537.36 
   [Content-Type] => application/json;odata=verbose;charset=utf-8 
   [Referer] => https://XXXX-admin.sharepoint.com/_layouts/15/workbench.aspx 
   [Accept-Encoding] => gzip, deflate, br 
   [Accept-Language] => en,fr;q=0.9,en-US;q=0.8,en-GB;q=0.7 
   [X-Forwarded-Proto] => https 
   [X-Ssl-Cipher] => TLSv1.2/ECDHE-RSA-AES256-GCM-SHA384 TLSv1.2 Kx=ECDH     Au=RSA  Enc=AESGCM(256) Mac=AEAD 
   [X-Forwarded-For] => X.X.X.X 
)

 

0 Likes
Reply