Reputation: 82341
Expose unsecured url via WSO2 API Manager
I have an API that I have setup in WSO2's API Manager Publisher tool. All the calls work fine when called correctly with an Access Token.
But I have one url that I want anyone to be able to call. (It is a customized Swagger UI page (different from the one built into the WSO2 tooling).)
To do this I add the Swagger UI url as a resource. But when I go there it says:
Required OAuth credentials not provided. Make sure your API invocation call has a header: 'Authorization : Bearer ACCESS_TOKEN'
Generally, I really like this default. (I want all my other API resources to require an Access Token.) But for this one I don't have an access token and don't expect to.)
Is it possible to publish one resource and not need any authentication?
Upvotes: 2
Views: 534
Answers (2)
Reputation: 321
Also it can be done in 2.x versions of API Manager through disabling for each endpoint the security in publisher tool. In manage tab, resources section, for each resource/endpoint set the value x-auth-type to "None". Default value is "Application & Application User". This disable security and then authentication required for accesing to the selected API resources.
Upvotes: 3
Reputation: 4001
This can be done as mentioned in https://stackoverflow.com/a/61133046/3176125
Basically you can turn off for one of the resources while you allow security for the rest of the resources.
Upvotes: 3
Related Questions
- WSO2 api manager and endpoint HTTPS
- wso2-am https API
- Publish Unprotected API on wso2 api manager 3.0.0
- wso2 apim 1.10.0 SSL communication
- WSO2 API manager to use (blocking) http/https
- SSL Configuration for WSO2
- Using external authentication server for WSO2 API Manager
- Anonymous access to APIs using WSO2 API Manager
- How to expose a SOAP web service with authentication in WSO2 API Manager
- Unable to publish service with https endpoint in WSO2 API Manager