This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

"/" mandatory as a resouce path if api-key authentication is required

Posted on 09-07-2015 02:25 AM
Not applicable
Reply posted on --/--/---- --:-- AM

Hi,

I've created a proxy with a127 and added api-key security as described in https://github.com/apigee-127/a127-documentation/w... When I deploy this proxy on my edge-server and create a product including this proxy, registered developer apps get the following message when they try to call the proxy:

"com.apigee.rest.framework.ResourceNotFoundException{ code = keymanagement.service.apiresource_doesnot_exist, message = APIResource / does not exist, associated contexts = []}"

I can solve this issue by adding "/" as a Resource Path to the product. Is this the way to go or does it expose any security issues? A products with "/" as a Resource-Path and without any proxies attached to it allowes its users to call any proxy deployed on the edge server.

When I add a proxy, the clients are restricted to use only the proxies definined within the product. This is the desired behaviour.

Regards,

Frederik

Solved Solved
0 6 408
Topic Labels
Jump to Solution
0 Likes
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
anilsr
Staff
Reply posted on --/--/---- --:-- AM

Dear @Frederik Priede ,

When you create an API Product, You will choose API Proxies & resource paths. "/" always refers to that particular API Proxies you have selected in API Product. So it doesn't give access to any other proxies except the selected one in API Product. You can choose multiple proxies using + API Proxy button.

Below widget just helps you to select resource paths & API Proxies. You can add multiple API Proxies using + API Proxy button below the attached screenshot.

1096-screen-shot-2015-09-07-at-30017-pm.png

When you deploy Apigee-127 proxy to Apigee Edge, It deploys as an Node.JS application running on Apigee Edge. If you need more flexibility with flows, policies and conditional flows then try our Swagger2API command line tool which converts swagger spec to Apigee Edge API Proxies.

More details regarding swagger2api you can find in below articles, Hope it will be helpful.

https://community.apigee.com/articles/8796/swagger...

https://community.apigee.com/articles/9478/swagger...

Cheers,

Anil Sagar

View solution in original post

Jump to Solution
6 REPLIES 6
Top Solution Authors
View all