Reputation: 2148
WSO2 API Manager: Hiding API to specific customers?
I am creating a library of APIs (let say API A, B and C), and I want to deploy differently for different customers.
Let's say, the customer 1 is able to browse, subscribe and use A and B, and the customer 2 is able to use B and C. But, the most important, I don't want that customer 1 knows about API C, and also, the customer 2 has to ignore API A.
I'm trying 2 methods:
a) Multitenant configuration: This has several issues (see this question), but, even I'm not able to hide the API C (when the customer/tenant 1 goes to subscribe to main store, it sees all APIs)
b) Roles and Scopes restriction (I'm following this post). This has some advantages (fine grained access per resource/operation), but, again, doesn't hide the APIs in store
Upvotes: 1
Views: 297
Answers (1)
Reputation: 12512
To control API permissions in publisher, you can use Access Control Support for API Publisher feature.
To control visibility in store, you can use Store Visibility and Subscription Availability feature.
Upvotes: 1
Related Questions
- WSO2 API Manager Mask a Service
- How can I control the access of an API at definition/operation level in WSO2 API store console?
- How can I apply a WSO2 custom handler only to some APIs?
- WSO2 API Manager: Restrict API Call based on Few Constraints
- Wso2 API Manager : Different API Endpoint port for each Tenant
- Restrict access for store urls in API Manager
- WSO2 API Manager 2.0.0: How to disable anonymous access to API store?
- WSO2 APIM security - separation of the publisher access
- Multi-tenancy within API Manager
- WSO2 API Manager - Visibility of APIs