The Create Access Token (TokenCreateRQ) is utilized to request a SOAP API access token.
Security credentials, consisting of a username, password, organization, domain, ClientId and ClientSecret are required to connect. If you don't have a ClientId or a ClientSecret use version 1.0.0 or contact your account manager to acquire these credentials. When a client sends a correctly-formatted TokenCreateRQ message with valid security credentials to any of the designated endpoints (PROD or CERT), the Sabre gateway does the following:
- Authenticates the request
- Authorizes the client to access the specific service being called
- Returns a unique, encrypted security token to the client via the TokenCreateRS response message (wsse:BinarySecurityToken, a child of wsse:Security)
- Returns the same conversation ID via eb:ConversationId, from the TokenCreateRQ message
- Returns a reference to the message ID of the corresponding request in eb:RefToMessageId
The conversation ID and security access token are referred to as the connection ID. Their return means the connection to the Sabre gateway has been established and a Sabre Access Token is allocated. The client must extract and store the returned values for eb:CPAId, eb:ConversationId, and the entire wsse:security@wsse:BinarySecurityToken node for inclusion in subsequent requests and workflows that use this particular connection.
<SOAP-ENV:Header>
<eb:MessageHeader xmlns:eb="http://www.ebxml.org/namespaces/messageHeader" eb:version="1">
<eb:From>
<eb:PartyId>Client</eb:PartyId>
</eb:From>
<eb:To>
<eb:PartyId>SWS</eb:PartyId>
</eb:To>
<eb:CPAId>PCC</eb:CPAId>
<eb:ConversationId>1234</eb:ConversationId>
<eb:Service>Session</eb:Service>
<eb:Action>TokenCreateRQ</eb:Action>
<eb:MessageData>
<eb:MessageId>1234</eb:MessageId>
<eb:Timestamp>2015-01-01T00:00:00</eb:Timestamp>
</eb:MessageData>
</eb:MessageHeader>
<wsse:Security xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/12/secext">
<wsse:UsernameToken>
<wsse:Username>USER</wsse:Username>
<wsse:Password>PASSWORD</wsse:Password>
<Organization>PCC</Organization>
<Domain>DOMAIN</Domain>
<ClientId>YOUR_CLIENT_ID_HERE</ClientId>
<ClientSecret>YOUR_CLIENT_SECRET_HERE</ClientSecret>
</wsse:UsernameToken>
</wsse:Security>
</SOAP-ENV:Header>
<SOAP-ENV:Body>
<TokenCreateRQ Version="2.0.0"/>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>
<SOAP-ENV:Header>
<eb:MessageHeader eb:version="1">
<eb:From>
<eb:PartyId>Client</eb:PartyId>
</eb:From>
<eb:To>
<eb:PartyId>SWS</eb:PartyId>
</eb:To>
<eb:CPAId>PCC</eb:CPAId>
<eb:ConversationId>1234</eb:ConversationId>
<eb:Service>Session</eb:Service>
<eb:Action>TokenCreateRS</eb:Action>
<eb:MessageData>
<eb:MessageId>1234</eb:MessageId>
<eb:Timestamp>2015-01-01T00:00:00</eb:Timestamp>
</eb:MessageData>
</eb:MessageHeader>
<wsse:Security>
<wsse:BinarySecurityToken valueType="String" EncodingType="wsse:Base64Binary">T1RLAQKvhOegyUujiZpE+uDAjHHmRfRmxRDDuJCPlszyUSmyhKGXWR0JAACgeveXEFWUPWzsmw9+Ihd9BSDYEtpikXHi8yJ9iW7vXgJpDNqnktLD4W8P7UP3zdra5szeuNXQB3yNbkjcK+3Vl1Gr/f8g00qU8ZhtzIBVz/PoD48GuaxNH7/Uq7ZztI1bXu7ve9NEW6tVsp6qxbt9Jatn/B5IXf2t+T7S2l5QJU46kNg3r1H0ndhCp/pDwVT3FIo8sVSnWNZbIvUhrH6gQg**</wsse:BinarySecurityToken>
</wsse:Security>
</SOAP-ENV:Header>
<SOAP-ENV:Body>
<sws:TokenCreateRS Version="1.0.0">
<sws:Success/>
</sws:TokenCreateRS>
</SOAP-ENV:Body>
</SOAP-ENV:Envelope>