[英]need access token to authorization and access token is provided with another service with Basic Auth. Does WSO2 have this feature?
I need this feature in WSO2 Publisher or Devportal: I have one api that need dynamic access token and Also I have another api with static Basic Authentication to provide that dynamic Access Token. I need this feature in WSO2 Publisher or Devportal: I have one api that need dynamic access token and Also I have another api with static Basic Authentication to provide that dynamic Access Token. Unfortunately I could not solve this with mediation.不幸的是,我无法通过调解解决这个问题。 The policy is simple But I don't know whether WSO2 has this simple feature or not?策略很简单但是不知道WSO2有没有这个简单的功能?
process: token api with basic Auth ==> provide dynamic access token ==> use access token in main api body and send.过程:令牌 api 与基本身份验证 ==> 提供动态访问令牌 ==> 在主 api 正文中使用访问令牌并发送。 Main API is our Endpoint in WSO2 API.主要的 API 是我们在 WSO2 API 中的端点。 I could not solve this with Endpoint Security(Oauth2) and mediation(XML).我无法使用 Endpoint Security(Oauth2)和中介(XML)解决这个问题。 Version of WSO2-AM is 4.1.0 and this version is latest now. WSO2-AM 的版本是 4.1.0,这个版本是最新的。
Have you thought about using a vault, such as Hashicorp Vault, to fetch the the basic auth credentials.您是否考虑过使用诸如 Hashicorp Vault 之类的保险库来获取基本身份验证凭据。
From there use a custom sequence [2] that gets the token (step 1 in your diagram) and then get the token check results you need (step 2).从那里使用自定义序列 [2] 获取令牌(图中的步骤 1),然后获取您需要的令牌检查结果(步骤 2)。
[1] https://apim.docs.wso2.com/en/latest/install-and-setup/setup/mi-setup/security/using-hashicorp-secrets/ [1] https://apim.docs.wso2.com/en/latest/install-and-setup/setup/mi-setup/security/using-hashicorp-secrets/
[2] https://apim.docs.wso2.com/en/latest/reference/mediators/sequence-mediator/ [2] https://apim.docs.wso2.com/en/latest/reference/mediators/sequence-mediator/
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.