使用“客户端证书请求”配置IBM Cloud Application
[英]Configure IBM Cloud Application with “request of client certificate”
问题描述
I need to configure an application to accept connection only from client with a certificate, the client should be ApiGateway. 
我需要将应用程序配置为仅接受来自客户端的证书连接,客户端应为ApiGateway。
I followed this step by step tutorial. 我按照本教程逐步进行。 But when I should upload a certificate and enable a checkbox called " Enable request of client certificate " in upload dialog box it disappear. 但是,当我应该上载证书并在上载对话框中启用一个名为“ 启用客户端证书请求 ”的复选框时,它会消失。
I tried with many browser (Chrome, Firefox, Safari) on a Mac. 我在Mac上尝试了许多浏览器(Chrome,Firefox,Safari)。 I'm quite that this not depend on browser, so now how can do the same thing? 我很确定这不取决于浏览器,所以现在该怎么做?
Thanks for every answer. 谢谢你的回答。
1 个解决方案
解决方案1
0 2018-10-15 06:31:49
From my understanding, the given task needs to be separated into two activities. 据我了解,给定的任务需要分为两个活动。
- Client with certificate 有证书的客户
- A client with DNS APIgateway 具有DNS APIgateway的客户端
Client with Certificate 有证书的客户
In general, when we create an API, we expose with a gateway via HTTP protocol which has some signed certificate (Production). 通常,当我们创建API时,我们会通过具有某些签名证书(生产)的HTTP协议向网关公开。 Please provide that public certificate to the consumer of your API. 请将该公共证书提供给您的API使用者。 And you can test this using postman, we have an option of SSL certificate upload in Postman, make a use of it for testing. 您可以使用邮递员对此进行测试,我们在邮递员中提供了SSL证书上传选项,可以将其用于测试。
Client with DNS Name 具有DNS名称的客户端
For this, in Datapower (API Gateway), you can create an Access control list following this IBM documentation . 为此,您可以在Datapower(API网关)中按照此IBM文档创建访问控制列表。 Access control list is something, we allow or restrict the host that we consume the services exposed using Datapower. 访问控制列表是一种东西,我们允许或限制使用我们使用Datapower公开的服务的主机。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.