Hi,

I am consuming the back end (target) API which implement JWT security mechanism. Every time when I call back end API, have to pass JWT Token or other parameters to access the back end API..

My approach :

step 1. Use the Service Callout policy and call the back end API which in response return Access token.

Step2. Store the obtained token in Step1 in a variable.

Step3. Call the back end API with setting or passing the parameters obtained in the Step2.

Is this approach right?

I have seen many place it is mention to use Java Callout policy.

Can you please share any sample related to mu use case?

Your comments is very valuable, please provide your suggestion.