Help Document
API Settings
The AD360 REST APIs facilitate sharing of data between AD360 and any third-party application or web service; they allow you to manage the various settings available in AD360, such as domain settings, proxy server settings, and email server settings. These APIs can be leveraged from any application capable of making HTTP requests.
Available APIs
The following list contains AD360 APIs currently available, as well as their functions:
| API | Function |
| Get Domain Settings | Read the details of the domains configured in AD360. |
| Update Domain Credential | Add/modify the domain credential configured in AD360. |
| Get Proxy Settings | Read the proxy server settings configured in AD360. |
| Update Proxy Settings | Add/modify the proxy server settings configured in AD360. |
| Get Mail Server Settings | Read the mail server settings configured in AD360. |
| Update Mail Server Settings | Add/modify the mail server settings configured in AD360. |
Note: Only JSON requests (Content-Type: application/x-www-form-urlencoded) and responses (Content-Type: application/json) are supported.
How do I access AD360's APIs?
To access AD360's APIs, you first need to create an AuthToken. Follow the steps below:
- Log in to AD360 as an admin.
- Go to Admin → General Settings → API Settings.
- Click Create New AuthToken.
- Select the scopes that you want to access by clicking on the + symbol.
What is scope?
Scope defines what APIs can be accessed using an AuthToken. One or a group of APIs can be part of a scope. - Next, choose an expiration date for the AuthToken.
- Click Create.
- Your AuthToken will be created.
Note: Copy this AuthToken and keep it safe for further use. If lost, it cannot be retrieved and must be regenerated.
API usage
To access an AD360 API, use the URL format below:
<scheme:port[/context]>/RestAPI/*.*[?query][#fragment]
Example: http://ad360-server:8082/RestAPI/DomainSettings/getDomains
Authorization: Bearer <authtoken>
Managing the AuthTokens
You can find all the AuthTokens you’ve created under the API Settings page in AD360. From here, you can see various details of the AuthTokens, such as their expiration date, scope, created date, and last accessed time. You can also revoke an AuthToken to disable it completely. Follow the steps below to manage AuthTokens:
- Log in to AD360 as an admin.
- Go to Admin → General Settings → API Settings. You’ll see a table containing all the AuthTokens you’ve created.
- To filter the AuthTokens: From the Showing drop down, you can select whether you want to view all the AuthTokens or only the AuthTokens that are active, expired, or revoked.
- To view the scopes of an AuthToken: Click under the Scope column to view all the scopes that an AuthToken provides access to.
- To audit AuthToken access: Hover the mouse over the values in the Last Accessed Time column. An audit icon will appear. Click it to view a detailed audit trail of who accessed the AuthToken.
- To revoke an AuthToken: Hover the mouse in the open space next to Last Accessed Time column. A Revoke link will appear. Click it to revoke the AuthToken.
Note: Once an AuthToken is revoked, the APIs that depend on it will no longer work.
Get Domain Settings API
This API allows you to get details of the domains configured in AD360.
- Request URL: http://<ad360-server>: <port>/RestAPI/DomainSettings/getDomains
- HTTP Method: GET
- Authorization: Bearer <authtoken>
- Request Parameters:
Parameter Mandatory Description Nil - No parameters required - Response Parameters:
Parameter Mandatory Description DEFAULT_NAMING_CONTEXT Yes Represents default naming context of the domain. IS_DEFAULT_DOMAIN Yes Represents whether the domain is used as a default domain in the login page. DC_LIST Yes Lists the domain controllers of the domain. DOMAIN_FLAT_NAME Yes Shows the domain flat name of the domain. DOMAIN_NAME Yes Shows the domain name. DOMAIN_DNS_NAME Yes Shows the DNS name of the domain. USER_NAME No Shows the username of the account used to configure the domain in AD360. DOMAIN_FUNCTIONAL_LEVEL Yes Shows the domain functional level of the domain. IS_AUTHENTICATION_REQUIRED No Represents whether authentication details were provided when the domain was configured. IS_LDAP_SSL_ENABLED No Represents whether the connection between the domain and AD360 is LDAPS-enabled. STATUS_MESSAGE No Shows the result of the previous domain configuration operation.
Sample request:
http://ad360-dc1:8082/RestAPI/DomainSettings/getDomains
Authorization: Bearer ztfhotq5ytctmgy4zi00nzk2lwjiodkmtwvlymvjyja3yjm5
Sample response:
[{"DEFAULT_NAMING_CONTEXT":"DC=ad360,DC=local","IS_DEFAULT_DOMAIN":"true","DC_LIST":["win2k12master.ad360.local","EST-ADC.ad360.local"],"DOMAIN_FLAT_NAME":"AD360","DOMAIN_NAME":"ad360.local","DOMAIN_DNS_NAME":"ad360.local","DOMAIN_FUNCTIONAL_LEVEL":"Windows Server 2008"}]
Update Domain Settings API
This API allows you to update the domain settings in AD360.
- Request URL: http://<ad360-server>:<port>/RestAPI/DomainSettings/updateDomainCredential
- HTTP Method: POST
- Authorization: Bearer <authtoken>
- Request Parameters:
Parameter Mandatory Description DOMAINS Yes Must have JSON input, with the following attributes (Key-Value Pair) Attributes Mandatory Description DOMAIN_NAME Yes Represents the domain name. USER_NAME No A valid username for authentication. USER_PASSWORD No A valid password for authentication. - Response Parameters:
Parameter Mandatory Description STATUS Yes Shows the status of the overall request (e.g. success or failure). DOMAINS Yes Shows the status of the request for each domain.
Sample request:
http://ad360-dc1:8082/RestAPI/DomainSettings/updateDomainCredential
Authorization: Bearer ztfhotq5ytctmgy4zi00nzk2lwjiodkmtwvlymvjyja3yjm5
DOMAINS=[{"DOMAIN_NAME":"ad360.local","USER_NAME":"admin","USER_PASSWORD":"Test123"}]
Sample response:
{"STATUS":"SUCCESS","DOMAINS":{"ad360.local":"{\"DOMAIN_STATUS\":\"SUCCESS\"}"}}
- Error Responses:
INVALID_DOMAIN Example:{"STATUS":"SUCCESS","DOMAINS":{"--":"{\"DOMAIN_STATUS\":\"FAILURE\",\"ERROR_MSG\":\"INVALID_DOMAIN\"}"}} DOMAIN_NOT_AVAILABLE Example:{"STATUS":"SUCCESS","DOMAINS":{"ad360.local":"{\"DOMAIN_STATUS\":\"FAILURE\",\"ERROR_MSG\":\"INVALID_OR_INSUFFICIENT_CREDENTIAL\"}"}} INVALID_OR_INSUFFICIENT_CREDENTIAL FAILURE_IN_SERVER Example:{"STATUS":"SUCCESS","DOMAINS":{"ad360.local":"{\"DOMAIN_STATUS\":\"FAILURE\",\"ERROR_MSG\":\"FAILURE_IN_SERVER\"}"}}
{"STATUS":"FAILURE","ERROR_MSG":"FAILURE_IN_SERVER"}
Get Proxy Settings API
This API allows you to get the details of the proxy server configured in AD360.
- Request URL: http://<ad360-server>:<port>/RestAPI/ProxySettings/getSettings
- HTTP Method: GET
- Authorization: Bearer <authtoken>
- Request Parameters:
Parameter Mandatory Description Nil No parameters required. - Response Parameters:
Parameter Mandatory Description ENABLE_PROXY Yes Enable or disable proxy server. SERVER_NAME No Host name or IP address of the proxy server. PORT No Port number of the proxy server. USER_NAME No Username used for proxy server authentication.
Sample request:
http://ad360-dc1:8082/RestAPI/ProxySettings/getSettings
Authorization: Bearer ztfhotq5ytctmgy4zi00nzk2lwjiodkmtwvlymvjyja3yjm5
Sample response:
{"ENABLE_PROXY":"true","SERVER_NAME":"ad360-dc1","PORT":"5005","USER_NAME":"admin"}
Update Proxy Settings API
This API allows you to update the proxy settings in AD360.
- Request URL: http://<ad360-server>:<port>/RestAPI/ProxySettings/updateSettings
- HTTP Method: POST
- Authorization: Bearer <authtoken>
- Request Parameters:
Parameter Mandatory Description PROXY_SETTINGS Yes Must have JSON input with the following attributes (Key-Value Pair). Attributes Mandatory Description ENABLE_PROXY Yes Enable or disable proxy server. SERVER_NAME Yes Server name or IP address of the proxy server. PORT Yes Enable or disable proxy server. USER_NAME No Username used for proxy server authentication. PASSWORD No Password used for proxy server authentication. - Response Parameters:
Parameter Mandatory Description STATUS Yes Shows the status of the request (e.g. success or failure).
Sample request:
http://ad360-dc1:8082/RestAPI/ProxySettings/updateSettings
Authorization: Bearer ztfhotq5ytctmgy4zi00nzk2lwjiodkmtwvlymvjyja3yjm5
PROXY_SETTINGS={"ENABLE_PROXY":"true","SERVER_NAME":"ad360-dc1","PORT":"5005","USER_NAME":"admin","PASSWORD":"Test123"}
Sample response:
{"STATUS": "SUCCESS"}
- Error Responses:
PS001 - Authentication required to access proxy server.
PS002 - Proxy Server is down. Please try again later.
PS003 - Failed to save the proxy settings.
Get Mail Settings API
This API allows you to get the details of the mail server configured in AD360.
- Request URL: http://<ad360-server>:<port>/RestAPI/MailSettings/getSettings
- HTTP Method: GET
- Authorization: Bearer <authtoken>
- Request Parameters:
Parameter Mandatory Description Nil - No parameters required. - Response Parameters:
Parameter Mandatory Description SERVER_NAME Yes Represents the host name or IP address of the mail server. PORT Yes Port number of the mail server. FROM_MAIL_ID Yes Represents the email address used for sending notification emails. ADMIN_MAIL_ID Yes Represents the comma-separated list of email addresses to which the notification emails will be sent. USER_NAME No Username used for mail server authentication. CONNECTION_SECURITY Yes Represents secure connection type (SSL or TLS).
Sample request:
http://ad360-dc1:8082/RestAPI/MailSettings/getSettings
Authorization: Bearer ztfhotq5ytctmgy4zi00nzk2lwjiodkmtwvlymvjyja3yjm5
Sample response:
{"PORT":"25","FROM_MAIL_ID":"no-reply@ad360.local","SERVER_NAME":"smtp","USER_NAME":"admin","ADMIN_MAIL_ID":"admin@ad360.local,super-admin@ad360.local"}
Update Mail Settings API
This API allows you to update the mail server settings in AD360.
- Request URL: http://<ad360-server>:<PORT>/RestAPI/MailSettings/updateSettings
- HTTP Method: POST
- Authorization: Bearer <authtoken>
- Request Parameters:
Parameter Mandatory Description MAIL_SETTINGS Yes Must have JSON input with the following attributes (Key-Value Pair) Attributes Mandatory Description SERVER_NAME Yes Server name or IP address of the mail server. PORT Yes Port number of the mail server FROM_MAIL_ID Yes The email address from which notifications will be sent. ADMIN_MAIL_ID Yes List of recipients. USER_NAME No Username used for mail server authentication. PASSWORD No Password used for mail server authentication. CONNECTION_SECURITY Yes Accepted values are SSL or TLS. - Response Parameters:
Parameter Mandatory Description STATUS Yes Shows the status of the request (e.g. success or failure).
Sample request:
http://ad360-dc1:8082/RestAPI/MailSettings/updateSettings
Authorization: Bearer ztfhotq5ytctmgy4zi00nzk2lwjiodkmtwvlymvjyja3yjm5
MAIL_SETTINGS={"PORT":"25","FROM_MAIL_ID":"no-reply@ad360.local","SERVER_NAME":"smtp","USER_NAME":"admin","ADMIN_MAIL_ID":"admin@ad360.local","PASSWORD":"Test123"}
Sample response:
{"STATUS": "SUCCESS"}
- Error Responses:
MS001 - Invalid from email address.
MS002 - Invalid admin email address.
MS003 - Invalid email address, or mail server requires authentication.
MS004 - Please check whether the server name/IP, port number, and connection type are correct, and try again.
MS005 - Network failure, or mail server is down.
MS006 - Authentication details for mail server are incorrect.
MS007 - Unrecognized SSL message: Secure Connection enabled.
MS008 - Invalid domain name.
MS009 - Please make sure the mail address doesn't contain "zohocorp" domain.
MS010 - Invalid server name or port number.
MS011 - Invalid username or password.
MS012 - Unable to configure SMTP server with TLS enabled.
MS013 - Invalid connection type. Connection type should be SSL or TLS.
MS014 - Invalid port number.
Common error response codes
AT001 - Invalid or missing AuthToken. Check whether the AuthToken is not revoked or expired.
AT002 - The given AuthToken doesn't have necessary permission to access the requested API.
AT003 - The requested API doesn't support this HTTP Method.
AT004 - Access denied. User role has changed and the user no longer has permission to access this API.
AT005 - Access denied. You don't have permission to access this API. Please contact your administrator.
CE001 - Invalid or missing mandatory parameters.
CE002 - Something went wrong.
CE003 - Invalid username or password.