We are starting our apigee implementation and one of the questions we are trying to answer is how do we handle the expiration of API keys. We will have external applications using our APIs and we would be providing them with API keys to consume our APIs. As par security mandate we need to have an expiration schedule of 1 year. We are trying to understand how we can automatically notify the consumer/admin 90 days before the key expires so that we can provision new key and ensure business continuity.
Ahh, yes.
In Apigee Edge it is possible to set an expiry on each key (or credential), to support rotation. But Apigee Edge does not include a facility for automatically notifying a developer that the key will expire "soon".
I have seen customers build their own tools or systems for this purpose.
Basically a cron job that runs once per week, and does this:
User | Count |
---|---|
2 | |
1 | |
1 | |
1 | |
1 |