This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Migrating my systems user roles/permissions to Apigee

Posted on 06-21-2018 03:33 PM
Not applicable
Reply posted on --/--/---- --:-- AM

I'm investigating the use of Apigee Gateway to manage and enforce permission/roles for literally millions of users to access to REST APIS.

Today user role/permissions are stored in a database and we're using OAuth to generate JWTs that contains the role/permissions embedded in the JWT.

What is best practice for migrating the user roles/permissions into Apigee? Do we need to create an 'Apigee user' for every user in our database?

0 1 88
Topic Labels
0 Likes
1 REPLY 1

Posted on --/--/---- --:-- AM
robert
Silver 2
Silver 2
Reply posted on --/--/---- --:-- AM

no, you don't need to migrate the db users to Apigee. The users residing in Apigee are for administrating Apigee. So that's not what you want.

Keep your users in the db, create a login page to connect to the db and grab roles, etc.., and spin up oAuth Auth Grant with OpenID connect. It sounds like you might be already doing part of this as you mentioned JWT. Apigee Edge can validate the JWT on the requests proxied to your API targets.

0 Likes