Sharadha Venketasubramanian
Reputation: 1
Creating a https apigee api-proxy
We are evaluating Apigee to secure our APIs. The default api-proxy is http, and I dont see a way to make it secure. What we are trying to avoid is someone sniffing the network and getting a handle of the apikey and abusing access to our APIs.
Please advise.
Thanks!
Sharadha
Upvotes: 0
Views: 239
Answers (2)
ap-andrew
Reputation: 131
Specifically, in the file /proxies/default.xml, change the following:
<HTTPProxyConnection>
<!-- API façade URL -->
<BasePath>/myAPI</BasePath>
<VirtualHost>default</VirtualHost>
</HTTPProxyConnection>
to
<HTTPProxyConnection>
<!-- API façade URL -->
<BasePath>/myAPI</BasePath>
<VirtualHost>secure</VirtualHost>
</HTTPProxyConnection>
Upvotes: 0
Randy Solton
Reputation: 364
There are two hosts configured for every new organization. default (http) and secure (https). Both can be used. If you want to disable http access from your API proxy, you can remove the Default VirtualHost from the HTTPProxyConnection section your API Proxy endpoint.
Upvotes: 1
Related Questions
- How to access apigee endpoint?
- WebApp Proxy to APIGEE
- Apigee pass Authorization header
- Apigee API Platform: INVALID_PROXY Error
- Is it possible to proxy a web socket service through Apigee?
- How to use the same Flow for request and response for Apigee proxy?
- How to get the correct proxy URL in Apigee?
- apigee edge platform: two way ssl
- Apigee Proxy Seems to "Redirect" to my Underlying API
- API Proxy SSL Assistance