Hello,

Need help to configure a secure validation between Google Apigee Edge and SonarQube endpoint. What policy do we need to set on the Apigee proxy endpoint and target endpoint to ensure sonarQube token is authenticated and validated before executing the sonar task? SonarQube application generates the token for scanning - https://docs.sonarsource.com/sonarqube/latest/extension-guide/web-api/

Passthrough from pipeline to google apigee to sonarQube works fine but is there any policy that we can set to ensure token is validated before invoking the target.