Authentication for RESTlets

RESTlets must use REST URLs to connect to NetSuite. If the RESTlet call comes from an external client, the URL must include a domain specific to your NetSuite account. To handle this task, you can also use the roles service, as described in The REST Roles Service.


RESTlet authentication can use either the HTTP Authorization header or all session cookies, but not both. Ensure that your script uses only one form of authentication.

Related Topics

RESTlet Authentication
Setting up Token-based Authentication for a RESTlet integration
Setting up OAuth 2.0 for a RESTlet Integration
Using User Credentials for RESTlet Authentication

General Notices