Usage of API-Key for validation

Back to discussions

Expand all | Collapse all

Jump to Best Answer

1. Usage of API-Key for validation

0 Recommend
rdas4
Posted May 04, 2017 08:30 AM

Reply Reply Privately
Hi, i am looking for any document / guide which details the usage of API-Key. Following is the scenario:

An user will register itself using the API Gateway Portal. An API-Key will be generated for the user.
Same key will be send in the API request, which will be validated at the Gateway before accessing the back-end API.

Any specific assertion used to validate API-Key?

Regards.
2. Re: Usage of API-Key for validation

1 Recommend
didsi01
Posted May 07, 2017 11:20 PM

Reply Reply Privately
Is this what you are looking for Convert the Gateway Service - CA API Developer Portal - 3.5 - CA Technologies Documentation

Look for the section " Line 10: Look Up API Key" & "Lines 11-18: Check API key record found" in the documentation part.
3. Re: Usage of API-Key for validation
Best Answer

1 Recommend
Broadcom Employee

Alec Daniello
Posted May 09, 2017 08:34 AM

Reply Reply Privately
Just to add on to the comment above....

If you publish an API from the Portal first, this policy logic will get laid down automatically. So it's the policy for the API itself that will enforce the logic behind API Key validation. The Look Up API Key assertion within the logic we're talking about, collects the API Key, and continues through to verify the key it found actually has access to the API.

I hope this helps.

-Alec Daniello
APIM Support
4. Re: Usage of API-Key for validation

0 Recommend
rdas4
Posted May 15, 2017 06:16 AM

Reply Reply Privately
Thanks
5. RE: Re: Usage of API-Key for validation

0 Recommend
Shivashanthalatha Loganathan
Posted May 11, 2021 07:03 AM
Edited by Shivashanthalatha Loganathan May 11, 2021 08:38 AM

Reply Reply Privately
Hi All,

We are using Layer7 gateway version 10 and portal 4.5 version. We used Loopkup api key assertion and policy exactly as mentioned in the below URL ,
https://techdocs.broadcom.com/us/en/ca-enterprise-software/layer7-api-management/api-portal-legacy/3-5/set-up-the-api-portal/configure-service-policy-integration/convert-the-gateway-service.html

We are not able to get any context variables from that assertion .

<prefix>.found

<prefix>.key

<prefix>.plan

<prefix>.service

<prefix>.secret

<prefix>.status

<prefix>.xml
<prefix>.apiPlan
<prefix>.accountPlanMappingId

We verified the table Generi_entity and found value_xml is empty for that association.
Could you pls help us to know whether this is Portal issue or any steps are missing to get the data.

Thanks,
Latha Loganathan

Original Message

Layer7 API Management

Usage of API-Key for validation

rdas4May 04, 2017 08:30 AM

didsi01May 07, 2017 11:20 PM

Alec DanielloMay 09, 2017 08:34 AMBest Answer

rdas4May 15, 2017 06:16 AM

Shivashanthalatha LoganathanMay 11, 2021 07:03 AM

1. Usage of API-Key for validation

2. Re: Usage of API-Key for validation

3. Re: Usage of API-Key for validation Best Answer

4. Re: Usage of API-Key for validation

5. RE: Re: Usage of API-Key for validation

3. Re: Usage of API-Key for validation
Best Answer