This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Google Cloud
- Articles & Information
- Cloud Product Articles
- OAuth and Two-Factor Authentication for Maven. Par...
Topic Options
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
LinkedIn
Twitter
madhans
Staff
Topic Options
- Article History
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
0
0
1,950
This article describes how OAuth 2.0 security for Apigee management API can be used with apigee-deploy-maven-plugin
Refer to Part 2 of this article for information on Two-Factor Authentication and apigee-deploy-maven-plugin.
Maven deploy plugin
apigee-deploy-maven-plugin can be used to deploy APIs to Apigee Edge and uses Apigee's management APIs to perform its functions.
More reading to know how Maven plugin can help in API Team Development.
OAuth 2.0 for management API
OAuth 2.0 security is available for Apigee Edge management API. This improves on Basic Authentication available as the default option for accessing Apigee Edge management API.
Read more to understand OAuth2 security for Apigee Edge management API.
OAuth 2.0 for Maven
The plugin supports OAuth 2.0 in its 1.1.0 release. This article provides the steps to configure and enable the OAuth 2.0 support in the plugin.
Setup
To enable OAuth 2.0 update the corresponding pom.xml file with the information given below. You can refer to the shared-pom.xml in the samples folder in the plugin for reference.
Use plugin version 1.1.0.
<plugin>
<groupId>io.apigee.build-tools.enterprise4g</groupId>
<artifactId>apigee-edge-maven-plugin</artifactId>
<version>1.1.0</version>Add configuration parameters to all profiles you intend to enable OAuth. The configuration below allows the values to be provided through a command line parameter. The value can be hardcoded in the xml file if needed.
<apigee.tokenurl>${tokenurl}</apigee.tokenurl>
<apigee.authtype>${authtype}</apigee.authtype>- tokenurl - Optional: OAuth 2.0 compliant token endpoint. Defaults to Apigee cloud token endpoint.
- authtype - Enforces OAuth 2.0 for Apigee Edge management API access. An access token is first acquired from the tokenurl and then used as a Bearer token to access all subsequent Apigee Edge management API access.
Note: OAuth 2.0 interaction is seamless to the user and is completely managed by the plugin
Usage
To enable OAuth 2.0 set the authtype parameter when invoking the maven command.
mvn install -Ptest -Dusername=$ae_username -Dpassword=$ae_password -Dauthtype=oauth
You will see the following in the Maven logs.
[INFO]Acquiring mgmt API token from https://login.apigee.com/oauth/token [INFO]MFA token not provided. Skipping.
In each management API call performed by the Maven plugin you will see the following header.
authorization: Bearer [Not shown in log]
Continuous Integration tools
To support OAuth, other than the configuration discussed above no additional steps are required in Continuous Integration tools like Jenkins, Bamboo, Travis etc., that typically invoke Maven.
Private Cloud
The OAuth 2.0 security for Apigee Edge management API is unavailable to Apigee private cloud yet. Please check OAuth 2.0 information page for latest updates.
The 1.1.0 release of deploy plugin continues to support Basic Authentication security and is the default mode for this plugin.
More Reading
OAuth and Two-Factor Authentication for Maven. Part 2: Two-Factor Authentication
Topic Labels