Our CI/CD pipeline has been hard at work over the weekend to deliver Postman 7.24 to all of our users. If you haven’t already, you can update your app or download the latest version of Postman!
There’s a lot in this one so here’s the gist of it:
- Updates to generating and creating API elements in the API Builder
- Authenticate using your browser to generate OAuth2 tokens
- Real-time status for the GitHub sync of your schema
- Added security layer for the Interceptor extension
- Move an API or collection to another workspace directly
- Improvements to the code and description editors
- Additional import configurations for OpenAPI, RAML, and GraphQL
Updates to generating and creating API elements in the API Builder
As you may know, you can use the API Builder to generate different type of elements (Documentation, Test suites…) from your API schemas, either through the Generate Collection button or from the Develop, Test, or Observe tabs.
These different flows were missing a few options so in that release we made sure to cover all of them, therefore you can now:
Create a Mock or a Monitor from an empty collection, instead of generating from a schema or using an existing one
Generate collections for documentation and test suites from the “Develop” and “Test” tabs that are automatically linked to your API
More about this in our Learning Center - The API Workflow.
Authenticate using your browser to generate OAuth2 tokens
In our previous released, we announced support for PKCE in OAuth 2.0, we’ve kept on working on OAuth 2.0 and are happy to announce that you can now use your default web browser to generate tokens instead of the in-app browser! This mostly means no more getting blocked for security reasons when trying to generate a token.
See how to use that feature (courtesy of @premang.vikani)
To use this feature, select
OAuth 2.0 under
Authorization tab and open
Get New Access Token dialog box. You’ll see a new checkbox
Authorize using browser when
Authorization code or
Implicit grant type is selected. Selecting this option will allow you to use your external browser for authentication instead of using Postman’s built-in browser.
However, selecting this option will automatically use the callback URL
https://oauth.pstmn.io/v1/callback. You can’t change this callback URL. This is necessary to return the generated token information back to the Postman app on successful authentication. So you’ll have to whitelist this URL to be used as callback in your respective OAuth provider if required.
You can refer to this link in our learning center for more details about generating OAuth 2.0 token. Here is a screenshot showing off this new feature. Please update to the latest Postman app (v7.24.0) and check it out. Let us know if you are still facing any issues related to this. Any feedbacks are welcome
Real-time status for the GitHub sync of your schema
I think the title of that one says it all! If you’ve been syncing your API schemas with GitHub, you’ll now have a real-time status displayed in the UI letting you know when the schema is syncing, when it’s done updating, or the current status.
Added security layer for the Interceptor extension
Postman Interceptor is a Chrome extension that acts as a browser companion to Postman.
Interceptor enables you to sync cookies from your browser to Postman and capture network requests directly from Chrome, saving them to your history or Postman collection. (source)
While the communication between the Interceptor extension and the Postman app is encrypted by default, you can now set a custom encryption key for additional security. If you want to see how to, check our Learning Center!
Move an API or collection to another workspace directly
Learning about how our users are using the sharing feature, we realised that a common workflow was:
- share a collection/API to another workspace
- remove that collection/API from the current workspace
To simplify that, you can now select Share collection and remove from this workspace directly in the Share modal.
Improvements to the code and description editors
We’ve released a first set of improvements to the code and description editors, this means:
In pre-request and test scripts, Postman variable suggestions now show up within relevant Postman Sandbox methods
This is only the first set of updates to our editors, if you’re using pre-requests or tests scripts expect some cool stuff to drop over the next couple of releases!
Additional import configurations for OpenAPI, RAML, and GraphQL
You now have several configuration options when importing OpenAPI, RAML, or GraphQL schema file in Postman, specifically you can decide:
- What should be used to name the request (
URL, or one of
- Which indent character should be used between spaces and tabs (in the
request bodyfor example)
- What to use for request parameters generation (Example value or type)
- What to use for response parameters generation (Example value or type)
And that’s a wrap for the highlights of Postman 7.24! If you’d like to see the full lists of improvements and bug fixes that were also part of that release, you can find the full release notes here.
Don’t forget to download the latest app and let us know if you have any feedback!