Integrating Front Systems with your existing retail systems can begin as soon as your Front Systems Company has been setup by a Front Systems specialist and you have received an email inviting you to register your Front Systems user account.
Obtain your API keys so you can authenticate with the APIs
Make your first API call to test that everything is up and running
Front Systems authenticates your requests with two API-keys.
A subscription key and an x-api-key.
You should have one subscription key shared for all integrations you build toward Front Systems API.
In case you are developing integrations which will not be running in the retailers environment, but in your own hosting environment, then you should have one subscription key used for all your retailers.
When it comes to the x-api-key, you can have as many as you want, but a good practise is to have one per integration so you easily can revoke/renew the apikeys per integration.
Choose the desired subscription type in Subscription. If you choose 'Integration partner' inform your Front Systems contact person so you may be granted access to this subscription.
As soon as you get green light that your subscription is ready, you can obtain it by login into the Front Systems Developer Portal and navigating to your profile.
Use this key as a header in all request like this:
Ocp-Apim-Subscription-Key : <yourKey>
Make sure you have a Front Systems user account which has company admin role.
In case you are not supposed to get this kind of elevated privledges, then just ask the company admin to read the below steps 2-6.
Login to the Front Systems Backoffice Portal here https://portal.frontsystems.no.
Note: The Backoffice Portal is not the same as the Developer Portal. I know it can be abit consusing, but now that you have read this sentance, its not anymore. ;)
Navigate to Admin > Integration users
Click Create new
Choose scope. (normally use Company as scope if the integration need access to all stores within the company. If you choose a store scope, then there are some restrictions. Eg you will only get stock movements/sales etc for the selected stores.)
Take a really good look at the ApiKey and copy it to a safe place because you won't see it again.
Use this as a header in all requests like x-api-key : <yourkey>
All API requests must be made over HTTPS. Calls made over plain HTTP will fail. API requests without authentication will also fail.
Now that you have already the API tokens ready, you can try the api in you browser to test that you can successfully get into the APIs.