CiviCRM Community Forums (archive)

Hi guys,

is it possible to use the ajax api on an external website? The wiki (http://wiki.civicrm.org/confluence/display/CRMDOC43/API+Reference#APIReference-AJAX) says

The AJAX interface may be adaptable to use with [...] web-pages hosted on the same domain

What about websites on different domain from the crm? I've tried the following script within a website on an external website (e.g. on http://www.notthecrmdomain.com/crmajaxtest.html)

<script src="//ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js"></script>
<script type="text/javascript" src="http://www.mycrmdomain.com/sites/all/modules/civicrm/js/rest.js?r=RPmIS"></script>
<script type="text/javascript">
CRM.api('Event','get',
  {
   
  },
  {
    success: function(data) {
      window.alert('Found ' + data.count + ' item(s)');
    }
  }
);
</script>

No data is returned because of an 404 server error. The script sends the request to "http://www.notthecrmdomain.com/civicrm/ajax/rest?entity=Event&action=get&json=1" instead of "http://www.mycrmdomain.com/civicrm/ajax/rest?entity=Event&action=get&json=1". Is it possible to specify the target crm url?

Philipp

I know about this restriction. I've ended up with a php "proxy" file (http://benalman.com/projects/php-simple-proxy/, slightly modded), which makes a curl request to the rest api and returns the json result as jsonp. Additionally I had to change the ajax-url in rest.js:

ajaxURL: 'path/to/simple-proxy.php?url=http://demo.civicrm.org/sites/all/modules/civicrm/extern/rest.php'
Now I can make cross-domain requests to the civiCRM api.

Thank you for your tip. Of course you have to pass the key and api_key to get some data. And there is only one user, who has access to CiviCRM via the api. Additionally this user just has permissions to read event information. So you can not access any data, which isn't public anyways. I guess this is kinda secure, right?