This code example illustrates the use of the AdobeSign API by implementing a simple Flask web application that:
- prepares a Document,
- shows that Document in an IFrame (AdobeSign Widget), and
- prompts the user to sign that Document.
I found that the API calls are well documented, but being new to this API, I struggled trying to figure out which API calls to make and in what sequence. I'm sharing this code example to provide a code illustration to other developers.
Though this code example is in Python (using the Flask application framework), it illustrates the API for developers using other programming languages.
adobe_sign_api/
contains a simple wrapper for the AdobeSign API.example_app/
contains a simple Flask application that calls the wrapper.runserver.py
starts a development web server that serves the Flask application.
I wanted to use Adobe Sign widgets to offer a generic document to each user, but with pre-filled form fields, customized to each individual user, before displaying the document and prompting the user to sign the document (I don't think that is too much to ask, right?).
Unfortunately, as of December 2016, the Adobe Sign API was unable to offer this functionality. Please email me when this changes.
Although a Widget can be created, and although at creation time, form fields can be pre-filled (once), the API does NOT allow the developer to re-use this one widget and pre-fill form fields before offering it to the user through an IFrame (many times).
The only way to pre-fill form fields is to create a Widget for each user. This is a slow process (because the Widget API also does NOT allow the use of Library Templates), and the API is further unable to delete the Widget once it's no longer in use (and there is no manual bulk-delete ability either).
The provided example.pdf
, also does not include the right form field names
and form field types for the required email and signature form fields,
so Adobe Sign appends an email and signature field at the bottom of example.pdf
.
I think you might be able to remedy this by adding the proper form fields
to this document.
It is assumed that you have virtualenv and virtualenvwrapper installed and configured:
# Clone this repository mkdir ~/dev git clone git@github.com:lingthio/adobe_sign_api.git adobe_sign_api # Create a virtualenv mkvirtualenv adobe_sign_api -p /full/path/to/python # Install required python packages (Flask and requests) cd ~/dev/adobe_sign_api pip install -r requirements.txt
Create an account at Adobe Sign Development at https://secure.echosign.com/
Navigate to
API
>Adobe Sign API
>API Applications
.Add a new API Application (plus sign icon).
Select this API Application
Click on
Configure OAuth for Application
.Take note of
Client ID
andClient Secret
.Redirect URI
:https://localhost:5000/adobe_sign/oauth_redirect
- This must start with
https
and must be served by our web application.
- This must start with
Enable the appropriate
Enabled Scopes
:- Enable
user_login
with modfierself
. - Enable
widget_write
with modifieraccount
. - Enable
library_read
with modifieraccount
.
- Enable
Click
Save
.
Copy the example settings to a local file:
cd ~/dev/adobe_sign_api/example_app cp local_settings_example.py local_settings.py
Edit local_settings.py
to reflect your Adobe Sign settings:
ADOBE_SIGN_CLIENT_ID
must reflect the Adobe Sign CLIENT_IDADOBE_SIGN_CLIENT_SECRET
must reflect the Adobe Sign CLIENT_SECRET
The Adobe Sign API requires that the authentication code request redirects to a secure URL (HTTPS instead of HTTP). To avoid conflicts with existing ports, we configured this HTTPS web application to run on port 5443.
workon adobe_sign_api cd ~/dev/adobe_sign_api python runserver.py
You can now point your browser to: https://localhost:5433/
Access Tokens are temporary tokens that are required to call the Adobe Sign API.
API calls are made in three steps:
- Request an Authentication Code
- Request an Access Token (using the Authentication Code)
- Call the Adobe Sign API (using the Access Token)
An Authentication Code request is made with an HTTPS call to:
GET https://secure.na1.echosign.com/public/oauth ?response_type=code &client_id=... &redirect_uri=... # make sure to url-encode this &scope=... &state=... # any developer-supplied value
Adobe Sign authenticates the web application by offering the code through a redirect to the pre-defined URL that points to your web server. In our case:
https://localhost:5443/adobe_sign/oauth_redirect ?code=... &api_access_point=https://.../ # make sure to url-encode this &state=... # any developer-supplied value
The Authentication Code is returned in the query parameter code
Note: Adobe Sign uses dynamic servers to process API requests from certain users.
The user assigned 'Access Point' is returned in the api_access_point
query parameter
and must be used the base for this user's API calls.
In our example, the oauth url is constructed in adobe_sign/adobe_sign.py; make_oauth_url().
The request is initiated in example_app/templates/home.html; first <a ...>...</a>
link.
The processing of the redirect response is done in example_app/example_app.py; oauth_redirect().
See https://secure.na1.echosign.com/public/static/oauthDoc.jsp
An Access Token request is made with an HTTPS call to:
GET {api_access_point}oauth/token ?grant_type=authorization_code &client_id=... &client_secret=... &redirect_uri=... # make sure to url-encode this &code=... # Authentication code from previous step
The temporary Access Token is returned in the JSON response:
{ "token_type": "Bearer", "access_token": "...", ... }
In our example, this is done in adobe_sign/adobe_sign.py; get_access_token().
See https://secure.na1.echosign.com/public/static/oauthDoc.jsp
Since Adobe Sign uses dynamic servers to serve their users, the Access Token must first be used to retrieve the API Access Point of a specific user.
Call a fixed URL to get the dynamic API Access Point with Access-Token in the header:
# with Access-Token: ... in the header: GET https://api.echosign.com/api/rest/v5/base_uris
The dynamic Access Point is returned in as a JSON object:
{ "api_access_point": "...", ... }
Call the desired API with Access-Token in the header:
# with Access-Token: ... in the header: GET {api_access_point}api/rest/v5/libraryDocuments
In our example, this is done in adobe_sign/adobe_sign.py; get_api_access_point().
See https://secure.na1.echosign.com/public/docs/restapi/v5
If the Request new Access Token
link displays this error message:
Unable to authorize access because the client configuration is invalid: invalid_request
You need to check the following:
- example_app/local_settings.py: ADOBE_SIGN_CLIENT_ID is properly set
- example_app/local_settings.py: ADOBE_SIGN_CLIENT_SECRET is properly set
- Your
Redirect URI
in API Application configuration in Adobe Sign includeshttps://localhost:5443/adobe_sign/oauth_redirect
.
- hellosign_api: https://github.com/lingthio/hellosign_api
- signinghub_api: https://github.com/lingthio/signinghub_api
Ling Thio - ling.thio AT gmail.com
Did you find this useful? Consider tipping me or sending me a thank you email!