Kinetic 2022.1 C# BPM SQL Call Stored Proc

Mark_Wonsil · August 2, 2022, 5:03pm

The next step is to make sure we secure these APIs through some type of authentication (token over basic preferred) and authorization once identified.

Security Level Up:
Add an endpoint to your API like “admin” that is never called by any of your in-house programs, but when it is called, it gathers as much information about the caller so you can see who’s snooping around your network.

josecgomez · August 2, 2022, 6:13pm

Also wrap the whole thing in a IP rate limiter that triggers based on 401 responses so that if someone tries to brute force they get put in time out. Exponential one too

utaylor · August 2, 2022, 7:48pm

Nice!

Doug.C · August 2, 2022, 7:49pm

Y’all take all the fun out of “playing” and learning

Mark_Wonsil · August 2, 2022, 7:57pm

Mark_Wonsil · August 3, 2022, 3:26pm

But learning security IS fun!!!

Just from Monday:
Why the future of APIs must include zero trust | VentureBeat

tkoch · November 9, 2022, 8:25pm

Looks like in 2022.2 you can no longer use System.Data.SqlClient

SteveFossey · November 15, 2022, 3:03am

what about Microsoft.Data.SQLClient?

I’ve got that working in 2022.1

tkoch · November 15, 2022, 3:15am

That’s what I ended up using, forgot to post back here. Have to add it to externals unfortunately

SteveFossey · November 15, 2022, 3:24am

during the long winter evenings, said Pa, I’m going get out that eFX from the woodshed and carve myself a generic CRUD function to use instead

tkoch · November 23, 2022, 7:02pm

Got around to trying this, doesn’t work either. Get this error

Microsoft.Data.SqlClient is not supported on this platform

SteveFossey · November 23, 2022, 7:11pm

whoa… you have all the dotnet stuff correct for the version? There’s a list of things we had to upgrade. We also went to Windows Server 2019. Is that the same?

tkoch · November 23, 2022, 7:14pm

Tried different version of Microsoft.Data.SqlClient still that error

tkoch · November 23, 2022, 7:23pm

Got it to work, moved the sql bit out of the bpm into a function passing the function a string for cmdText. Added an assembly for System.Data.SqClient and it worked… why BPMs no longer work I have no idea

SteveFossey · November 23, 2022, 9:12pm

because epicor…

klincecum · November 24, 2022, 2:24am

OK Bill…

Nice, some light reading for the holidays!

tanner · November 24, 2022, 6:50am

Lok

Thanks,
Tanner Post

fuji36 · August 8, 2023, 7:55pm

We are on 2022.1.27 I’m trying the same thing in a function.
I add the Assembly to the library , looks like it’s the correct version.

Still get that same error you did, when trying to create a SqlConnection object in the function code editor.

can you share how you got that to work?

bmanners · August 8, 2023, 11:55pm

This might be helpful.

fuji36 · August 9, 2023, 2:05pm

Thank you bmanners

Bill Jackson | Sr ERP Application Developer
O: 401-227-5557
1160 Cranston St | Cranston, RI 02920 | TacoComfort.com

View our current career opportunities