This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Policy Enforcement for all API

Posted on 01-25-2024 09:38 AM
leorajesh
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

How do I generate a report of all policies to know the policies enfornced?

1 1 71
Topic Labels
1 REPLY 1

Posted on --/--/---- --:-- AM
dchiesa1
Staff
Reply posted on --/--/---- --:-- AM

mmm

Can you elaborate more on what you're aiming at? What the goal is?

Apigee's Advanced API Security option (an add-on) will give you an assessment and report on the security of all of your APIs. Read about it here.

If you want to see the policies enforced for a specific API, that you can do by

  • examining the API proxy definition
  • combining those policies with any policies in the environment-scoped flowhooks

That is a "configuration" analysis.

At RUNTIME, you could create a debugsession, capture an API request, and then examine the debugsession data to see exactly which policies ACTUALLY executed. This is important because the configuration can include conditional flows and conditions around policy steps. So the debugsession will tell you the result of evaluating those conditions at the time the inbound request was handled .

Top Solution Authors
View all