This documentation is for WSO2 API Manager 1.9.0. View documentation for the latest release.
Skip to end of metadata
Go to start of metadata

You can use any SOAP client to invoke an API. We use the SOAP UI in this example. 

See the following topics for a description of the concepts that you need to know when invoking an API:

The examples here use the PhoneVerification API, which is created in section Create and Publish an API

Let's invoke the PhoneVerification API using a SOAP client. 

  1. Log in to the API Store and click an API that you want to invoke (e.g., PhoneVerification).
  2. The API's Overview page opens. Select an application, the Bronze tier and subscribe to the API.
  3. Go to the My Subscriptions page and generate a production key to the default application using which you subscribed to the API.
  4. Copy the access token to the clipboard as you need it later to invoke the API.
  5. Download the SOAP UI installation that suits your operating system from and open its console. 
  6. In the SOAP UI, right click on the Projects menu and create a new SOAP project. 
  7. Give your API's WSDL and click OK. In this case, the WSDL is
  8. The WSDL defines two operations. Let's work with CheckPhoneNumber. Double click on Request 1. Then, add an authorization header to your request by clicking the add sign on the Header tab of the console.
  9. Give the value of the Authorization header as 'Bearer <the access token you copied in step 5>.

  10. Add the following values and submit the request:

    1. Change the endpoint with the production URL of the API. You can copy the production URL from the API's Overview tab in the API Store. Append the resources to the end of the URL, if any. The resource is /CheckPhoneNumber for the PhoneVerification API that we use here.

    2. In the SOAP request, change the parameters, which are PhoneNumber and LicenseKey. Let's give any dummy phone number and 0 as the license key


  11. Note the result on the right-hand side panel. As you gave a dummy phone number in this example, you get the result as invalid.

You have invoked an API using a SOAP client.

You can treat the Admin Services APIs as if they were back-end server APIs, and get all the benefits of API management for the admin services.

Do the following WSO2 API Manager to expose SOAP APIs with OAUTH2.0.

  1. Create a SOAP API for an admin service in the publisher.
  2. Add backend admin credentials for basic auth in the 'implement' page.
  3. Then, publish the app with a scope protecting access - use the the admin role for your scope.

Admins can then subscribe to the app and invoke it using OAUTH2.0 security.

  • No labels