Epicor Functions: Hello World

I’ve been recommending Epicor Functions a lot so I wanted to demystify it a bit so people see the value. While you can call Epicor Functions from BPMs, etc. - I’m more interested in how you can define your own API into Epicor. At the core of functions is the Library and your functions live there. You can then call your functions from REST v2. Here’s a little Hello World example for functions.

First, you need to give yourself security to do functions. This is done through Groups and not the Options tab of User Account Maintenance. I’m not going to explain this here but this makes me a super-user for Functions.

image1043×345 52.5 KB

Next, open up the Epicor Function app and create a library:

image928×565 56.1 KB

Next, add references to the Business Objects that you will use. Here I’m choosing Tip of the Day.

image1330×382 46.9 KB

Authorize the Companies that can use the library:

image1152×642 77.1 KB

Next create the name of your function:

image1328×512 66.3 KB

Define your inbound and outbound parameters. To keep it simple, I’m just returning a tip as a string.

image1322×692 79.3 KB

Design the function JUST LIKE A BPM! I’m calling the BO and assigning the TipText to my return variable.

image1267×935 104 KB

OK, that’s it for the library. Now the REST part. One big difference is that security is better in REST V2 so you need to define an Application Key. Click New, fill out the Name, Description, and Expiration date.

image1061×700 74.1 KB

When you save, it will generate a key for you. SAVE IT. This is the last time you will see it.

You can add Access Scope where you define what this application key has access to. This makes external REST calls FAR MORE secure than using REST v1. In this case, I don’t care and left it blank.

image1066×708 81.1 KB

OK, now we’re ready to test our API. Get your API KEY. I’m going to use Insomnia but you can use Postman or Postwoman too. Here’s the URL format:

image794×133 4.27 KB

Note the “staging” in the URL. This means the library has not been released to production yet. We’re just testing now. Make sure you add the x-api-key to your header:

image788×106 3.38 KB

Execute the call with a POST:

image775×151 3.83 KB

Yay! All that’s left is to promote the library to production:

Now remove “staging” from the URL:

image796×49 2.01 KB

And execute it:

image783×98 3.32 KB

I hope that gets everyone thinking about what you can now do with Epicor Functions. Remember, you need to be on 10.2.500+.

@Mark_Wonsil - Fantastic tutorial! Thanks.

What happens after the expire date? Is there any point to having a shorter or longer expire date? And then tracking it so you know to extend it periodically?

I have not tested the expiry functionality but I would assume it would stop working. Note, this is not security by obscurity since you have to authenticate first. Since REST is ALWAYS encrypted, the API-KEY should not be visible over the wire but like any “secret”, it may get out. If that happens, then you can regenerate the key as well. This if very similar to Azure Application IDs, which I believe have a limit of three years.

As for managing the key for your client apps, that’s a different conversation. There’s a whole ecosystem around secrets management: GitHub, Azure Key Vault, Hashi Corp’s Vault, …

i’m getting this error.

Need more info @BlakeW. Where are you in the process from above? You gave yourself the privileges and logged out and back in?

You clicked New Library? (I don’t recall if it prompts you to add one if it doesn’t exist.)

Yes I gave myself the group permissions and I closed epicor and reopened. When I type a library name and hit tab instead of it saying doesn’t exist would you like to create one it comes up with this error.

They may have changed the behavior. Have you tried New Library? (Button or Menu)

yes it is grayed out

and doesn’t let me click it.

I’m an idiot please forget about this lol I didn’t update epicor’s account only mine.