This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

AccessToken header automatically gets changed to *****

Posted on 11-09-2016 07:33 AM
Not applicable
Reply posted on --/--/---- --:-- AM

We are trying to make an apiproxy, where most calls need a header called AccessToken. This header is just supposed to pass through to the backend system, which needs it for authorization, but for some reason apigee changes the value to ***** (5 stars). We tried using another header and copying the value, since it only changes the header called "AccessToken", but it immediately reverts to *****.

Unfortunately we do not have the option of renaming the header in the backend system.

Why is this exact header changed and how do we avoid it.

Note that we are not using any OAuth and the api is protected with another header called apikey.

Solved Solved
3 2 1,189
Topic Labels
Jump to Solution
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
anilsr
Staff
Reply posted on --/--/---- --:-- AM

@Alexander Bang Welcome to Apigee Community,

I am sure you are referring to trace tool & Authorization header displayed in trace tool. It's by design. The Authorization header value is masked in the Edge trace UI since it contains sensitive data. The actual header value is sent to target server. Apigee Edge doesn't change any request / response until or unless you configure it to do so in the API Proxy. Apigee Edge works as a passthrough by default.

Hope it helps. Keep us posted if any further questions.

View solution in original post

Jump to Solution
2 REPLIES 2
Top Solution Authors
View all