HTTP Request

turbine allows you to use the native http request action to get data from/send data to a particular api endpoint, regardless of whether a connector exists for the api service this allows you to build a more comprehensive playbook with better performance and outputs capabilities configure the authentication type, parameters, and body from the native actions add the action to configure the http request, while creating an action, select an http request action and click configure read the following sections for information about the http request configuration tabs request method in the request method drop down, select the request method get is the default request method here are the available methods method information get retrieve data post get, add, or modify data put add or replace data patch partially update existing data delete delete existing data options request information about the actions available for interacting with the target resource head retrieve response headers trace perform a message loopback test on the path to the target resource authentication tab this tab contains the http authentication types type information no auth does not require any authentication api key requires key, value, and location bearer token requires a security token basic auth requires a username and password oauth 2 0 requirements are based on the oauth flow updates to the request occur at run time parameters tab this tab allows you to add query parameters to the request to add a query parameter click add parameter , and then enter key value pairs headers tab this tab is largely informational the auto generated headers table shows a list of the common request headers that will be automatically generated and added to the request at run time the custom headers table allows you to add any headers that are needed by the api endpoint, a proxy, etc you can also use this table to override any of the auto generated headers (e g , content type) body tab this tab allows you to specify the data to send in the request body you will need to select the body type that the api service is expecting options include none , json , x www form url encoded , attachment , and form data most of the time you will select none or json the default option is none when using the attachment body type, if you click select an attachment and select playbook property that is composed of an array of files, only the first file in the array will be sent in the request if you need to send a specific file from a playbook property that is comprised of a list of files, use an expression to reference the files individually (e g $inputs files to scan\[0] ) settings tab this tab is where you can configure a proxy and other request settings like ssl/tls certificate verification to configure a proxy, select the proxy drop down and select either create new asset to create a new proxy asset or an existing asset from the list to disable ssl/tls certificate verification, click enable ssl certificate verification to toggle off the setting outputs tab outputs tab allows you to select all outputs provided by the action and you can promote them the output tab also allows you to mark the data as sensitive you can promote the action output by clicking promote button next to the action type from the action outputs list the promoted output action is displayed in the promoted playbook outputs section you can remove the promoted output by clicking the remove button next to the promoted output marking data as sensitive you can mark the promoted data as sensitive so that it is encrypted or it is not visible to mark the data as sensitive, click mark as sensitive option next to the promote button in the action output list you can remove data as sensitive by clicking marked as sensitive use cases see # for examples