This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Security options to protect callback

Posted on 11-17-2016 02:43 AM
madhans
Staff
Reply posted on --/--/---- --:-- AM

Apigee proxy forwards event updates to a previously registered callback endpoint. The callback endpoint is stood up by the app developer. As a service provider what options are available to secure such a callback.

Can an app credentials (apigee issued) be used to derive a token to secure such calls.

0 1 151
Topic Labels
0 Likes
1 REPLY 1

Posted on --/--/---- --:-- AM
Not applicable
Reply posted on --/--/---- --:-- AM

I dont think using app credentials would be a good idea, I doubt it would be applicable.

If I understand correctly, to make it secure you may insist to communicate over HTTP(s) only for all call backs to all the client systems.

0 Likes