This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Restricting payload content based upon consumer

Posted on 03-04-2016 09:12 AM
Not applicable
Reply posted on --/--/---- --:-- AM

What is the best approach to restrict payload content based upon consumer ,in APIGEE?

1 3 115
Topic Labels
3 REPLIES 3

Posted on --/--/---- --:-- AM
DChiesa
Staff
Reply posted on --/--/---- --:-- AM

Can you elaborate on what you mean by "restrict payload content" ?

Do you mean, restrict the payload size?

the format?

the content-type?

Please provide more details.

0 Likes

Posted on --/--/---- --:-- AM
Not applicable
In response to DChiesa
Reply posted on --/--/---- --:-- AM

@Dino ,I meant based upon payload size...

0 Likes

Posted on --/--/---- --:-- AM
DChiesa
Staff
Reply posted on --/--/---- --:-- AM

A really easy way is to attach a custom attribute to the developer app (== consumer). That attribute might be max-payload-size, and might hold values like 20kb or 10mb.

A runtime, check the actual content-length against the attribute value. Reject the request (maybe via RaiseFault) if the threshold is exceeded.

For chunked-encoding content, you have a different problem. There is no content-length header.

Let me research that scenario further.

At the moment, the one way I can see doing it, is to pipe the request through a nodejs endpoint which acts as a "filter". The nodejs endpoint can keep count of the data that has been streamed and if the bytecount exceeds the threshold, then the nodejs endpoint throws an exception.

That seems pretty clean.