Signature Keys
Signature keys are used by backend services to verify the identity of APIG.
A signature key consists of a key and secret, and can be used only after being bound to an API. When an API bound with a signature key is called, APIG adds signature details to the API request. The backend service of the API signs the request in the same way, and verifies the identity of APIG by checking whether the signature is consistent with that in the Authorization header sent by APIG.
Usage Guidelines
- You have understood the guidelines for policy creation and API binding.
- An API can only be bound with one signature key in a given environment, but each signature key can be bound to multiple APIs.
Procedure
- Create a signature key on the APIG console.
- Bind the signature key to an API.
- APIG sends signed requests containing a signature in the Authorization header to the backend service. The backend service can use different programming languages (Java, Go, Python, JavaScript, C#, PHP, C++, and C) to sign each request, and check whether the two signatures are consistent.
Configuration Parameters
Parameter |
Description |
---|---|
Name |
Signature key name. |
Type |
Authentication type. Options: HMAC, Basic auth, AES, and Public key. Public key is available only if public_key_enable has been turned on on the Parameters page of the gateway. |
Signature Algorithm |
Select an AES signature algorithm. Options:
|
Key |
Set the key based on the signature key type you have selected.
|
Secret |
Enter the secret information based on the key type you have selected.
|
Confirm Secret |
Enter the secret again. |
Verifying the Signing Result
Sign each backend request by following the instructions in Signature Algorithm, and check whether the backend signature is consistent with the signature in the Authorization header of the API request.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot