This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Announcements
This site is in read only until July 22 as we migrate to a new platform; refer to this community post for more details.
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

Security options to protect callback

Posted on 11-17-2016 02:43 AM
madhans
Staff
Reply posted on --/--/---- --:-- AM

Apigee proxy forwards event updates to a previously registered callback endpoint. The callback endpoint is stood up by the app developer. As a service provider what options are available to secure such a callback.

Can an app credentials (apigee issued) be used to derive a token to secure such calls.

0 1 175
Topic Labels
0 Likes
Reply
1 REPLY 1

Posted on --/--/---- --:-- AM
Not applicable
Reply posted on --/--/---- --:-- AM

I dont think using app credentials would be a good idea, I doubt it would be applicable.

If I understand correctly, to make it secure you may insist to communicate over HTTP(s) only for all call backs to all the client systems.

0 Likes
Reply
Top Solution Authors
View all