1 ACCEPTED SOLUTION
Accepted Solutions
The reason you're getting a new JSESSIONID each time you call the service is you're passing your username and password with each call. There are a couple of sessions at play - one is the session your browser creates when you authenticate to the Platform. The one that keeps changing is a session that's created inside the service every time the service uses your credentials to authenticate to the platform again.
Now, the next part is going to be frustrating to you, because I will explain what's happening, but I'm unable to offer you a solution. Here is a minimal call where I pass my username and password:
var params = {
ignoreSSLErrors: true,
url: 'http://192.168.99.100:8080/Thingworx/Subsystems/PlatformSubsystem/Services/GetAllStyleDefinitions',
timeout: 500,
password: 'mypassword',
username: 'myusername'
};
// result: STRING
var result = Resources["ContentLoaderFunctions"].GetCookies(params);
Here are my results. Notice there are two JSESSIONIDs, one that comes back in the result, and one that you can see in the request headers:
The JSESSIONID in the Developer Tools was created by ThingWorx when you logged into the platform. It authenticates you for your service call. The JSESSIONID in the result is created by your service. The JSESSIONID in the service is created anew, every time you run it:
Note that we have a new JSESSIONID in the result, but the one for your ThingWorx session stays the same.
Here's where I'm going to disappoint you. When I run my service without passing my credentials, the ThingWorx session JSESSIONID stays the same. I get nothing back in my result, though:
var params = {
ignoreSSLErrors: true,
url: 'http://192.168.99.100:8080/Thingworx/Subsystems/PlatformSubsystem/Services/GetAllStyleDefinitions',
timeout: 500
};
// result: STRING
var result = Resources["ContentLoaderFunctions"].GetCookies(params);
Results:
I do not think there is an out-of-the-box way to reach up and get the cookies for the ThingWorx session, unfortunately. There are probably some good security-related reasons behind that decision. Perhaps someone will jump on the thread with a workaround.
The reason you're getting a new JSESSIONID each time you call the service is you're passing your username and password with each call. There are a couple of sessions at play - one is the session your browser creates when you authenticate to the Platform. The one that keeps changing is a session that's created inside the service every time the service uses your credentials to authenticate to the platform again.
Now, the next part is going to be frustrating to you, because I will explain what's happening, but I'm unable to offer you a solution. Here is a minimal call where I pass my username and password:
var params = {
ignoreSSLErrors: true,
url: 'http://192.168.99.100:8080/Thingworx/Subsystems/PlatformSubsystem/Services/GetAllStyleDefinitions',
timeout: 500,
password: 'mypassword',
username: 'myusername'
};
// result: STRING
var result = Resources["ContentLoaderFunctions"].GetCookies(params);
Here are my results. Notice there are two JSESSIONIDs, one that comes back in the result, and one that you can see in the request headers:
The JSESSIONID in the Developer Tools was created by ThingWorx when you logged into the platform. It authenticates you for your service call. The JSESSIONID in the result is created by your service. The JSESSIONID in the service is created anew, every time you run it:
Note that we have a new JSESSIONID in the result, but the one for your ThingWorx session stays the same.
Here's where I'm going to disappoint you. When I run my service without passing my credentials, the ThingWorx session JSESSIONID stays the same. I get nothing back in my result, though:
var params = {
ignoreSSLErrors: true,
url: 'http://192.168.99.100:8080/Thingworx/Subsystems/PlatformSubsystem/Services/GetAllStyleDefinitions',
timeout: 500
};
// result: STRING
var result = Resources["ContentLoaderFunctions"].GetCookies(params);
Results:
I do not think there is an out-of-the-box way to reach up and get the cookies for the ThingWorx session, unfortunately. There are probably some good security-related reasons behind that decision. Perhaps someone will jump on the thread with a workaround.
