I want to send Apigee a request with a consumer key, along with an HMAC generated with the consumer secret. I will then generate an HMAC with the consumer secret and necessary values and compare the incoming HMAC with the generated one.
Is there a policy in Apigee that will allow me to access the consumer secret based on the incoming consumer key?
Side note: I am already using the VerifyApiKey policy, however, I want to take the validation further via the HMAC with the consumer secret.
Solved! Go to Solution.
Verify API Key will populate a context variable with the consumer secret.
It will be:
verifyapikey.{Verify API Key Policy Name}.client_secret
You can see it in trace. Hope this helps!
Verify API Key will populate a context variable with the consumer secret.
It will be:
verifyapikey.{Verify API Key Policy Name}.client_secret
You can see it in trace. Hope this helps!
That worked, thank you very much!
User | Count |
---|---|
1 | |
1 | |
1 | |
1 | |
1 |