This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Download CA certificate from truststore within API Proxy

Posted on 02-03-2023 08:16 AM
navaarul
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

When my API proxy receive a MTLS request that contains only the leaf certificate, and not the full certificate chain, I need to get Issuer certificate from the apigee truststore for the client cert in the request.

Is there any way I can access the Apigee keystore within the API proxy and export the certificate from it.

I dont want to use the ServiceCallout policy and call the management API to export the cert as this is documented as an Anti Pattern.

 

0 1 149
Topic Labels
0 Likes
1 REPLY 1

Posted on --/--/---- --:-- AM
apickelsimer
Staff
Reply posted on --/--/---- --:-- AM

What information are you looking for? How do you plan to use the certificate in the keystore in your API proxy flow?

Have you explored the available TLS variables that are made available with mTLS? https://docs.apigee.com/api-platform/system-administration/tls-vars#capturing-information-for-both-o...

0 Likes