SuiteTalk (Web Services) Platform Guide - NetSuite

More documents

Recommendations

Info

Web Services SecuritySession Management80Session TimeoutsWeb services sessions automatically time out after 20 minutes of inactivity, requiring a login toresume activity. If the server resubmits the cookie during the first 20 minutes, the inactivitytimer is reset.Note: If you need shorter sessions for security reasons, you should create a login route forthe client that calls logout when operations are complete.If you explicitly log out of a session, and then attempt to use the same session, aSESSION_TIMED_OUT error message is returned. Your code should be prepared to handlesession timeouts by retrying if an InvalidSessionFault (SESSION_TIMED_OUT) is seen.Note that timeouts for NetSuite UI and NetSuite Web store sessions are handled differentlythan Web services session timeouts.• After 140 minutes of inactivity in the NetSuite application, the screen is locked and apopup displays requiring the user to log in again.• After 20 minutes of inactivity in a NetSuite Web store, the user is logged out andbecomes an anonymous shopper. (There is no automatic relogin to the Web store).Session LimitsA given login (username/password) is limited to two sessions, one through the browser andone through Web services. These two sessions can occur concurrently. The UI session and theWeb services session do not cause termination of each other.However, if two Web services clients attempt to establish two concurrent sessions, the firstsession is terminated. Note that more than two independent concurrent sessions are possiblewith the purchase of products such as Offline Client or Outlook Integration.Note: Using the same login from multiple client applications, or multiple instances of thesame application is NOT supported. However, NetSuite does offer a Web ServicesConcurrent License for purchase. This license allows designated employees to usethe same credentials five times concurrently before their first session is invalidated.For details see Enabling Web Services Concurrent Users with SuiteCloud Plus.Manually Managing CookiesWhen submitting Web services requests, the NetSuite server can accept any SOAP documentas long as it is valid against the NetSuite WSDL — it does not matter how the SOAP wasgenerated. When generating a SOAP document from tools or sources that do NOTautomatically generate the NetSuite port objects, you must ensure that all cookies receivedfrom the server are managed and passed back to the server in subsequent calls. There are a totalof three cookies that are initially returned in the HTTP header of the login response, includingthe JSESSIONID.Ensure that your client persists any cookies that our server sends you (re-submits the cookie onthe next request). In Axis, this is accomplished by enabling MaintainSession on the generatedBinding object. In .NET this involves allocating a CookieContainer. If persistence is notSuiteTalk Platform Guide
Web Services SecuritySession Management81maintained, you will receive an InvalidSessionFault —PLEASE_LOGIN_BEFORE_PERFORMING_ACTION.ExampleThe following code shows the cookie information returned in the login response.HTTP/1.1 200 OKDate: Wed, 18 May 2008 18:43:27 GMTServer: Oracle-Application-Server-10g/9.0.4.0.0 Oracle-HTTP-ServerSet-Cookie: NS_VER=2008.1.0; domain=joe.corp.netsuite.com; path=/Vary: User-AgentSet-Cookie: JSESSIONID=ac101fae1f4312dfxxx062fc829447eaa00c3dcd70af41d; Path=/Set-Cookie: lastUser=TSTDRV198400_935_3; Expires=Wed, 25-May-2008 17:42:24 GMT; Path=/Cache-Control: privateKeep-Alive: timeout=150, max=1000Connection: Keep-AliveTransfer-Encoding: chunkedContent-Type: text/xml; charset=utf-8For each subsequent request, all of the cookies must be returned in the HTTP header tomaintain the session as follows:Sample Code (C#)NetSuiteService nss = new NetSuiteService();nss.Url = https://webservices.netsuite.com/services/NetSuitePort_2008_1_0 ;nss.CookieContainer = new CookieContainer();Sample Code (Java with Axis 1.3)NetSuiteServiceLocator nss = new NetSuiteServiceLocator();nss.setMaintainSession(true);Reusing Session IDs During LoginEndpoints starting with v2008_1 support the reuse of session IDs. If you have a valid session atthe time you invoke login, NetSuite transparently connects you to your existing session insteadof creating a new session. Reusing an existing session (returning the same JSESSIONID)eliminates the overhead of generating a new session and thereby improves performance.For multi-threaded applications, the primary benefit to session ID resuse is that a threadexecuting a login does not invalidate sessions of existing threads. Instead, multiple threadsshare the same reference to a session. The trade-off is that the session returned by login may bein use, and as expected, any attempt to execute an operation with a busy session will result in aWS_CONCUR_SESSION_DISALLWD error.Note that the strategy for sharing a single set of credentials across threads remains the same asit was for endpoints older than v2008_1. Because only one session can exist for a given set ofcredentials, and a session cannot be used for more than one operation at a time, multiplethreads sharing those credentials should synchronize usage of the session. If collisions are notexpected often, a simpler alternative is to implement a retry strategy for operations that fail dueto a WS_CONCUR_SESSION_DISALLWD error.Important: Be aware that session ID reuse does not apply to the following:SuiteTalk Platform Guide
Page 1 and 2:
SuiteTalk (Web Services)Platform Gu
Page 3 and 4:
Chapter 1SuiteTalk Platform Overvie
Page 5 and 6:
SuiteTalk Platform OverviewUndersta
Page 7 and 8:
Page 9 and 10:
Page 11 and 12:
Page 13 and 14:
SuiteTalk Platform OverviewNetSuite
Page 15 and 16:
Page 17 and 18:
SuiteTalk Platform OverviewVocabula
Page 19 and 20:
Getting StartedQuick Start19Enablin
Page 21 and 22:
Getting StartedQuick Start21a. Loca
Page 23 and 24:
Getting StartedQuick Start235. Use
Page 25 and 26:
Getting StartedSuiteTalk Developmen
Page 27 and 28:
Getting StartedUsing Web Services w
Page 29 and 30: Chapter 3Setting Web ServicesPrefer
Page 31 and 32: Setting Web Services PreferencesRes
Page 33 and 34: Setting Web Services PreferencesSet
Page 35 and 36: Setting Web Services PreferencesSet
Page 37 and 38: Chapter 4Roles and Permissions in W
Page 39 and 40: Roles and Permissions in Web Servic
Page 41 and 42: Roles and Permissions in Web Servic
Page 43 and 44: Chapter 5Records, Fields, Forms, an
Page 45 and 46: Records, Fields, Forms, and Sublist
Page 69 and 70: Web Services ProcessingSynchronous
Page 71 and 72: Web Services ProcessingMonitoring W
Page 77 and 78: Web Services SecurityAuthentication
Page 79: Web Services SecurityAuthorization7
Page 83 and 84: Web Services SecurityWorking with C
Page 85 and 86: Platform FeaturesEnabling Web Servi
Page 87 and 88: Platform FeaturesOperations and The
Page 89 and 90: Platform FeaturesOperations and The
Page 91 and 92: Platform FeaturesInvoking a UI Sess
Page 93 and 94: TypesComplex Types93• In endpoint
Page 95 and 96: TypesComplex Types95RecordListThe R
Page 97 and 98: TypesComplex Types97Field Name XML
Page 99 and 100: TypesCustom Field Types99Custom Fie
Page 101 and 102: TypesCustom Field Types101SelectCus
Page 103 and 104: TypesSearch Types103SearchResultFie
Page 105 and 106: TypesSearch Types105Note: Note that
Page 107 and 108: TypesSearch Types107SearchDateCusto
Page 109 and 110: TypesSearch Types109SearchColumnLon
Page 111 and 112: TypesSearch Types111SearchColumnDat
Page 113 and 114: TypesPlatform Enumerations113Platfo
Page 115 and 116: TypesPlatform Enumerations115SuiteT
Page 117 and 118: Web Services OperationsWeb Services
Page 119 and 120: Web Services Operationsadd119Elemen
Page 121 and 122: Web Services Operationsadd121{}stat
Page 123 and 124: Web Services Operationsadd123// Set
Page 125 and 126: Web Services OperationsaddList125El
Page 127 and 128: Web Services Operationsattach / det
Page 129 and 130: Web Services Operationsattach / det
Page 131 and 132:
Web Services OperationschangePasswo
Page 133 and 134:
Web Services OperationscheckAsyncSt
Page 135 and 136:
Web Services OperationsdeleteList13
Page 137 and 138:
Web Services OperationsdeleteList13
Page 139 and 140:
Web Services Operationsget139get}_c
Page 141 and 142:
Web Services Operationsget141.http:
Page 143 and 144:
Web Services OperationsgetAsyncResu
Page 145 and 146:
Web Services OperationsgetBudgetExc
Page 147 and 148:
Web Services OperationsgetConsolida
Page 149 and 150:
Web Services OperationsgetCustomiza
Page 151 and 152:
Page 153 and 154:
Page 155 and 156:
Page 157 and 158:
Page 159 and 160:
Web Services OperationsgetDeleted15
Page 161 and 162:
Web Services OperationsgetDeleted16
Page 163 and 164:
Web Services OperationsgetItemAvail
Page 165 and 166:
Web Services OperationsgetList165It
Page 167 and 168:
Web Services OperationsgetList167Sh
Page 169 and 170:
Web Services OperationsgetPostingTr
Page 171 and 172:
Page 173 and 174:
Page 175 and 176:
Page 177 and 178:
Web Services OperationsgetSavedSear
Page 179 and 180:
Web Services OperationsgetSelectVal
Page 181 and 182:
Page 183 and 184:
Page 185 and 186:
Page 187 and 188:
Web Services OperationsgetServerTim
Page 189 and 190:
Web Services Operationsinitialize /
Page 191 and 192:
Web Services Operationsinitialize /
Page 193 and 194:
Web Services Operationslogin193logi
Page 195 and 196:
Web Services Operationslogin195}Fau
Page 197 and 198:
Web Services Operationslogin197}rol
Page 199 and 200:
Web Services Operationslogout199Sam
Page 201 and 202:
Web Services OperationsmapSso201The
Page 203 and 204:
Web Services Operationssearch203Jav
Page 205 and 206:
Web Services Operationssearch205In
Page 207 and 208:
Web Services Operationssearch207Thi
Page 209 and 210:
Web Services Operationssearch209...
Page 211 and 212:
Web Services Operationssearch211•
Page 213 and 214:
Web Services Operationssearch213Wha
Page 215 and 216:
Web Services Operationssearch215Adv
Page 217 and 218:
Web Services Operationssearch217For
Page 219 and 220:
Web Services Operationssearch219“
Page 221 and 222:
Web Services Operationssearch221Res
Page 223 and 224:
Web Services Operationssearch223C#p
Page 225 and 226:
Web Services Operationssearch225Jav
Page 227 and 228:
Web Services Operationssearch227Sam
Page 229 and 230:
Web Services Operationssearch229Per
Page 231 and 232:
Web Services Operationssearch231//
Page 233 and 234:
Web Services Operationssearch233Pro
Page 235 and 236:
Web Services OperationssearchMore23
Page 237 and 238:
Page 239 and 240:
Page 241 and 242:
Web Services OperationssearchMoreWi
Page 243 and 244:
Web Services OperationssearchMoreWi
Page 245 and 246:
Web Services OperationssearchNext24
Page 247 and 248:
Web Services OperationsssoLogin247
Page 249 and 250:
Web Services Operationsupdate249Ext
Page 251 and 252:
Web Services Operationsupdate251}Wr
Page 253 and 254:
Web Services OperationsupdateList25
Page 255 and 256:
Web Services OperationsupdateList25
Page 257 and 258:
Web Services OperationsupdateInvite
Page 259 and 260:
Web Services OperationsupdateInvite
Page 261 and 262:
Web Services Operationsupsert261ups
Page 263 and 264:
Web Services Operationsupsert263Sam
Page 265 and 266:
Web Services OperationsupsertList26
Page 267 and 268:
Page 269 and 270:
Page 271 and 272:
Web Services Error Handling and Err
Page 273 and 274:
Page 275 and 276:
Page 277 and 278:
Page 279 and 280:
Page 281 and 282:
Page 283 and 284:
Page 285 and 286:
Page 287 and 288:
Page 289 and 290:
Page 291 and 292:
Page 293 and 294:
Page 295 and 296:
Page 297 and 298:
Page 299 and 300:
Page 301 and 302:
Page 303 and 304:
Page 305 and 306:
Page 307 and 308:
Page 309 and 310:
Page 311 and 312:
Page 313 and 314:
Page 315 and 316:
Page 317 and 318:
Page 319 and 320:
Page 321 and 322:
Page 323 and 324:
Page 325 and 326:
Page 327 and 328:
Page 329 and 330:
Page 331 and 332:
Page 333 and 334:
Page 335 and 336:
Page 337 and 338:
Page 339 and 340:
Page 341 and 342:
Page 343 and 344:
Page 345 and 346:
Page 347 and 348:
Page 349 and 350:
Page 351 and 352:
Chapter 12 Task IDsThe following ta
Page 353 and 354:
Task IDs 353Task ID Page Label in N
Page 355 and 356:
Page 357 and 358:
Page 359 and 360:
Page 361 and 362:
Page 363 and 364:
Page 365 and 366:
Page 367 and 368:
Page 369 and 370:
Page 371 and 372:
Page 373 and 374:
Page 375 and 376:
Page 377 and 378:
show all

SuiteTalk (Web Services) Platform Guide - NetSuite

Create successful ePaper yourself

Delete template?

Save as template?