Git Product home page Git Product logo

preserve-auth-header-handler's Introduction

Preserve-Auth-Header-Handler

A custom handler implementation to preserve and pass the Authorization header to the backend server per API level in WSO2 APIM.

The main branch contains the source code of the handler implemented for APIM v3.1.0. Please make a clone of this repo and update the dependencies and build the handler to support in other versions of the WSO2 API Manager.

Build

Execute the following command from the root directory of the project to build

mvn clean package

Usage

Copy the built JAR artifact and place it inside the <gateway>/repository/components/lib directory and start the server to load the required classes.

Please follow the Configure Velocity Template instructions to configure velocity template of the API Manager server to generate the API Synapse artifact with required handler definitions.

Instructions given below (in this section) can be used to test the handler, becuase if the API is re-deployed or published from the Publisher portal, the made changes will be overriden.

After a successful server start, navigate to the <apim>/repository/deployment/server/syanpse-configs/default/api directory and open the respective API synapse artifact and add the PreserveAuthHeaderHandler definition after the CORSRequestHandler to extract the Authorization Header.

<handler class="com.sample.handlers.PreserveAuthHeaderHandler">
    <property name="AuthorizationHeader" value="Authorization"/>
</handler>

Furthermore, add a global-in mediation sequence as provided in the ./examples/global--in.xml directory to append the Authorization header again and to send it.

Configure Velocity Template

We will be introducing an API Property to preserve of Authorization header per API level. Please follow the given instructions to make the required changes in the API Manager server

Please note that the built JAR artifact has to be placed inside the <apim>/repository/components/lib directory prior to applying the following changes

A complete velocity_template.xml can be found under here. Please comapre and merge the required changes to the velocity_template.xml in your environment.

  • Navigate and open the <apim-publisher>/repository/resources/api_templates/velocity_template.xml and add the following changes

    ...
<handlers xmlns="http://ws.apache.org/ns/synapse">
#foreach($handler in $handlers)

    #if($handler.className == 'org.wso2.carbon.apimgt.gateway.handlers.security.APIAuthenticationHandler')
        #if($apiObj.additionalProperties.get('PreserveAuthHeader') == true)
            <handler class="com.sample.handlers.PreserveAuthHeaderHandler">
            #if($handler.hasProperties())
                #set ($tempMap = $handler.getProperties() )
                #foreach($property in $tempMap.entrySet())
                #if($property.key == 'AuthorizationHeader')
                <property name="$!property.key" value="$!property.value" />
                #end
                #end
            #end
            </handler>
        #end
    #end

    <handler xmlns="http://ws.apache.org/ns/synapse" class="$handler.className">
...

  • Save the velocity_template.xml

  • Once the configurations are merged and saved, log-in to the Publisher portal and open the specific API that requires to pass the Authorization header to the backend

  • Go to Properties section and add the following property

    • Property Name: PreserveAuthHeader
    • Property Value: true

  • Click on Add and then click on Save to publish the API with the changes. Above introduced property (PreserveAuthHeader) is used to specify whether the Authorization header of that particular API needs to be preserved and sent back to the Backend service or not.

  • Then, add a global-in mediation sequence as provided in the ./examples/global--in.xml directory to append the Authorization header again and to send it

preserve-auth-header-handler's People

Contributors

athiththan11 avatar

Watchers

avatar avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.