I am developing an ESB & DSS services and I would like to set the "response caching parameter" to true when deploy. How can I enable this in the proxy and dss xml descriptor?
Thanks
To add response caching to ESB proxy service please read this
tutorial. To enable that for a Data service in DSS please read this tutorial
Related
I am building Web API with ASP.NET Core hosted on IIS that will act as proxy integrating a few services.
I need to forward user credentials/identity to specific services managed by my API and to do so i want to enable ticket forwarding in Kerberos.
What steps i need to take to make it work?
First of all I need to setup my service as trusted in KDC and after that should it will received forwardable tickets instead of regular ones (i need to specific services that my API can forwards tickets to), am i right?
How do i then forward that ticket to other service using HttpClient?
Does attaching received token to request will be enough?
Am i correct about listed by me steps and is there any thing more to do?
Thank you all for help.
I have deployed my SOAP Web Service in API Manager of WSO2 and I'm stuck in what URLs should I give to clients so that clients can generate, see the WSDLs and use it.
API Manager: http://127.0.0.1:8280/addssubs/v1.0.0
XML generated:
I always download WSDL and add it an example in SOAPUI
Currently we have enabled ws-security in wso2 esb using policy file and role based authorization using Active Directory.
We would like to transition some of these services to wso2 api manager and implement the same security model.
How do we secure these APIs (that are facing web service client and not the backend web service) using ws-security on api manager?
To secure the APIs on API manager you can follow this guide. It provides various methods that can secure the APIs. Further if you need to implement role based authorization to the APIs in API manager you can refer to this tutorial.
Hope this helps.
I'd like to capture custom request headers in my Azure websites but I don't have access to the website's source code (ASP.NET). I do of course have access to the web.config.
Can I capture custom request headers via a configuration change? I see that IIS allows enabling of advanced logging (https://www.iis.net/learn/extensions/advanced-logging-module/advanced-logging-for-iis-custom-logging#server_logging) which can capture custom request headers but I don't see how to do it on Azure websites.
I don't think Azure Web Sites has enabled the Advanced Logging (or Enchanced Logging) so this doesn't seem to be possible using the standard Azure logging mechanism.
But to make sure, have you tried enabling the diagnostics for your site? Especially the Web Server Logs should be interesting for you. The following Azure documentation deals with logging on Azure Web Sites.
Enable diagnostics logging for web apps in Azure App Service
I have created data_service using WSO2DSS version 3.0.1.
Service works perfectly, but I have not found solution how to secure REST API
using HTTP Basic authentication.
Which is best way to secure REST messages using basic authentication?
I would like to use users/roles from WSO2 "User management", but that is not mandatory.
You can achieve your requirement easiest way is to use fronted Wso2 ESB. Through esb you can secure your service.
Documentation on Securing REST APIs can be found at [1] .
[1] http://docs.wso2.org/wiki/display/ESB460/Securing+REST+APIs
Thank You,
Dharshana.