I generated an API Key for an application, now how can I use, which assertions I must include in my service definition in the api Gateway, and how I include in my code as a header, cookie, parameter and which is the name?
The API key and it's corresponding secret can be used in many ways such as just passing the key in a parameter or header or hmac signatures. The most common way of passing the key is as an http paremeter or header. On the gateway side, there is an assertion named "Look up API Key" which allows the policy to compare an incoming API key value with known API keys and retrieve all properties of the API key including its secret. As part on setting up a gateway and portal pair, you define fragments that will validate an api key as well as control the API plan and Account plans limits defined in the portal. There are sample of such fragments in the portal release and in the API Management evaluation image. Such fragments are added to your runtime API.
Thanks for your help, I made this configuration but I still have not access to the key