BMS API is a set of RESTful web services that allow access to data in the BMS database.
- BrAPI: https://brapi.org/
- BMSAPI Swaggerhub: https://app.swaggerhub.com/apis/ibp_bms/BMSAPI/
If you plan to use BMSAPI in your dev project, please sign up here for updates: https://forms.gle/DezGg3K3iQ56fRsG6
All BMS API calls require authentication and valid access token provided. Please refer to the public Wiki documentation: BMSAPI - Authentication for details.
In exchange of valid users credentials (Workbench user name and password) BMS API issues a fixed time window (configurable per deployment) token which is then required to be provided for each and every BMS API service invocation as part of Authorization key in the request header Authenticate with credentials of a registered Workbench user: Call POST /bmsapi/brapi/v1/token/
{
Request
POST /bmsapi/brapi/v1/token/ HTTP/1.1 Host: 34.231.120.172:48080
Content-Type: application/json Cache-Control: no-cache
{ "username": "username",
"password": "user_password",
"grant_type": "password",
"client_id": ""
}
Response
{
"metadata":{
"pagination":null,
"status":null,
"datafiles":[
]
},
"userDisplayName":"username",
"access_token":"username:1522184720103:1c9293bcf819a05309c82d769d51b59f",
"expires_in":1522184720103
}
}
From now on the token must be included in the header of all further calls to the system to allow verification. Unfortunately there is a discrepancy in the type of authorization header needed for BrAPI and non-BrAPI standard calls:
Header (for BrAPI Standarized calls):
GET /bmsapi/v1/crops HTTP/1.1
Host: xx.xx.xx.xx:48080
Authorization: bearer:username:1522184720103:1c9293bcf819a05309c82d769d51b59f
Cache-Control: no-cache
Header for non BrAPI BMSAPI calls:
GET /bmsapi/v1/crops HTTP/1.1
Host: xx.xx.xx.xx:48080
X-Auth-Token: username:1522184720103:1c9293bcf819a05309c82d769d51b59f
Cache-Control: no-cache
Note that these headers are discrepant in both the name and value of the authentication header.
Additionaly there are some nomenclature differences in BrAPI that must be noted when refering to studies entities. The mapping between the BrAPI entity names and the BMS equivalent is offered below:
| BrAPI | BMS |
|---|---|
| Trial | Study |
| Study | Instance |
BMSAPI ships with a user interface that allows easy exploration and interaction with various API resources/entities and operations that are exposed. It can be accessed at following URL in any BMS v4.x deployment: http://<server.host>:<server.port>/bmsapi/. This user interface also acts as live documentation of the API resources, methods, and parameters etc. It is built using Swagger which is a standard in REST API live documentation.
Like in the case of direct access (e.g. the cURL examples in previous section) access to BMSAPI methods using this Swagger UI requires the user to first authenticate by logging into the BMS deployed on the same server and in the same browser window/tab.
If you access the Swagger UI without login, an alert message will be shown saying that the authentication has expired. Upon "OK"ing this alert message you will notice that you can still see the API listings and "Try it out!" button etc. under each resource, but upon invoking any API method by clocking the "Try it out!" button, authentication error response will be returned which looks like:
{
"timestamp": 1459727366021,
"status": 401,
"error": "Unauthorized",
"message": "Access Denied"
}
So, go to the usual BMS login page of the same server deployment at http://<server.host>:<server.port>/ibpworkbench/controller/auth/login/ in the same browser window/tab and login as a valid BMS user first. Once successfully logged into BMS, reload the Swagger UI home page http://<server.host>:<server.port>/bmsapi/ in the same browser window (different tab is fine, but must be same browser window). You should then no longer see the alert message regarding authentication. The Swagger UI now detects that you are authenticated on same server as a valid user. Now invoking the API methods using the "Try it out!" button, you should expect to see appropriate data response.
Setup, build from source, install and deploy.
See BMS Manual setup
- Get the source code (See Pre Requisites)
- Create and configure your environment specific folder under BMSConfig folder and set values as per your environment such as for MySQL database parameters, tomcat server port etc.
- The main properties that BMSAPI rely on can be seen in
src/main/resources/application.propertiesand in Middleware project atsrc/main/resources/database.properties. The values are substituted by Maven build from your environment specific configuration folder in BMSConfig. - First run
mvn clean installon Middleware. - Then run
mvn clean installon BMSAPI.
In standalone mode, application uses the embeded Tomcat from Spring-Boot and automatically deploys to it.
- At the root of the checkout directory run
mvn clean install -DenvConfig={yourConfigFolderName}. - This will create
bmsapi.warunder Maventargetfolder. - Note that this is an executable war file and can be run using
java -jar bmsapi.warcommand which launches BMS API standlone with embedded tomcat provided by Sprint-Boot. - Alternatively, copy bmsapi.war file to the
webappsdirectory of your Tomcat installation, in this case the embedded tomcat will automatically be disabled and BMS API will be deployed as a web application within external Tomcat under context path equal to the name of the war file (without the .war extension) as usual.
- Import the BMSAPI Maven project from the checkout.
- Run
mvn clean installvia command line on BMSAPI project so thatapplication.propertiesare set and configured in build folder from your BMSConfig folder. - Run
org.ibp.Mainas a java application.
The default database connection parameters BMS API uses are the same as the default BMS MySQL database parameters (localhost, port 43306 with user name root and no password). If you are running BMS API alongside your BMS installation, make sure that BMS is started first (mainly so that the BMS MySQL database is up).