REST API

Owned by David Millership (Unlicensed)
Last updated: Oct 02, 2023
3 min read

iCasework provides a range of powerful and extensible REST style web-services that allow both update and query operations such as case creation, case updates, adding case notes or retrieving case details to be invoked remotely. The APIs make integrating iCasework with other business critical systems simple and straightforward. ccc

The REST services are provided as HTTPS end-points that can be invoked with one or more parameters. Some services return an XML or JSON document whose contents vary depending on the operation performed.

 

Authentication

All APIs are authenticated using OAuth 2.0. Additional information on how to create JWTs can be found here.

Calling the API

After your application obtains an access token, you can use the token to make calls to the iCasework API. To do this, include the access token in a request to the API by including either an access_token query parameter or an Authorization: Bearer HTTP header. When possible, the HTTP header is preferable, because query strings tend to be visible in server logs.

When access tokens expire

Access tokens issued by iCasework expire one hour after they are issued. When an access token expires, the application should generate another JWT, sign it, and request another access token.

Access token format

If the JWT and access token request are properly formed and the service account has permission to perform the operation, then the JSON response from the Authorization Server includes an access token. 

{ "access_token" : "1/8xbJqaOZXSUZbHLl5EOtu1pxz3fmmetKx9W8CV4t79M", "token_type" : "Bearer", "expires_in" : 3600 }

Access restrictions

IP address

To enforce further security restrictions for REST web service calls, it is possible to limit the use of each allocated key pair to requests made from certain specified IP addresses. When allocating a new key pair, a list of allowed IP addresses can be set so that the given key and secret key can only be used to validate requests made from one of those IPs. Requests made from any other address using that key pair will be denied. Key pairs without IP restrictions will be accepted on requests made from any IP address.

User credentials

Additional security can be granted to API keys by associating them with a given user. The API will inherit that user's data visibility, filtering all data returned by any call to only what the associated user can access.

Responses to bad requests

When a bad request is made, the response will have a standard HTTP status code; also the response's header will include an X-Application-Error-Code and X-Application-Error-Info header that will provide more detail about the root cause of the issue.

     Response headers in internet browser's developer tools

Image of HTTP Headers in Postman response

Response headers in Postman

API List

API

Type

Description

API

Type

Description

createaccount

POST

Creates a new account against a given customer.

createaction

POST

Completes an action, also completing the relevant task if present on the case.

createauditentry

POST

Creates an entry in the audit trail for a specific case

createcase

POST

Creates a case.

createcasenotes

POST

Creates a case note against a given case.

createtask

POST

Creates an outstanding task.

getauditentries

GET

Gets a list of audit entries from a given case/date.

getcaseattribute

GET

Gets a given case attribute from a given case.

getcasecontactdetails

GET

Gets the details of case contacts on a given case.

getcasecorrespondence

GET

Gets a copy of a case correspondence in an html or pdf format.

getcasedetails

GET

Gets full details about a given case.

getcasedocuments

GET

Gets details about the documents on a given case.

getcaselist

GET

Gets the headline details for cases submitted in a set period.

getcases

GET

Gets the headline details for publicly available cases submitted in a set period.

getcustomercases

GET

Get a list of cases and some associated details for a given customer.

getcustomers

GET

Gets a list of customers and their details.

getrecentcaselist

GET

Gets a list of recent cases for a specific user

getlookuplist

GET

Returns a lookup list in the format required to populate a list in an iCasework form.

getreport

GET

Gets a preconfigured icasework report.

getvaluelist

GET

Gets the contents of an iCasework value list or classification list.

updateaccount

POST

Updates a given account.

updatecase

POST

Updates a given case.

updatecorrespondence

POST

Updates the metadata for a correspondence item present on a case.

updatecustomer

POST

Updates the details for a customer.

uploaddata

POST

Uploads various types of bulk data to iCasework.

uploaddocument

PUT

Uploads a single document to a specified case

uploaddocuments

POST

Uploads multiple documents to a specified case.





Civica 2020. All Rights Reserved