Hi Ushani,
On 27 May 2015 at 13:57, Ushani Balasooriya <[email protected]> wrote: > Hi APIM Team, > > During external API store testing, when creating the APIs, I have defined > the visibility of APIs as, > > 1. Public > 2. Visible to my domain > 3. Restricted By Roles > > > *When visibility is Public,* > APIS will be visible in the store according to the store configurations > defined in the registry. Which the functionality is clear. > > <ExternalAPIStores> > > <StoreURL>http://localhost:9763/store</StoreURL> > > <ExternalAPIStore id="Store2" type="wso2" > className="org.wso2.carbon.apimgt.impl.publishers.WSO2APIPublisher"> > <DisplayName>Store1</DisplayName> > <Endpoint>http://localhost:9773/store</Endpoint> > <Username>admin</Username> > <Password>admin</Password> > </ExternalAPIStore> > > > </ExternalAPIStores> > > > *When visibility is Visible to My Domain,* > > A tenant is created in the external store via admin console. > Then define that tenant's configuration in registry in tenant mode via the > publisher's admin console. > > E.g., > > <ExternalAPIStores> > > <StoreURL>http://localhost:9763/store</StoreURL> > > <ExternalAPIStore id="Store2" type="wso2" > className="org.wso2.carbon.apimgt.impl.publishers.WSO2APIPublisher"> > <DisplayName>TenantStore</DisplayName> > <Endpoint>http://localhost:9773/store</Endpoint> > <Username>[email protected]</Username> > <Password>password</Password> > </ExternalAPIStore> > > </ExternalAPIStores> > > Then the APIs will be published to the particular domain and when I select > the visibility of APIs as Visible to My Domain, it will display only when > the tenant user is logged in to the store. Function is clear. > > > *Restricted By Roles* > > During this, when I try to create an API, in publisher, it will validate > with the roles created in publisher user store. Therefore should I create > the same role in publisher's side even if I want to restrict to a role > defined in External store side. > > How can I achieve this function? > The idea of publishing to external store means, you have an API which you would like to advertise in another external store as well. What's appearing in the external store is just an advertisement only. The original API appears in the Publisher's store. So we can't just restrict the API to a role which is only in the external store. Because when someone tries to consume the API, he will be redirected to original store. So if the API is restricted by a role, then the role must be in both API stores. Thanks, Lakmali > Pls advice. > > Thanks and Regards, > > -- > *Ushani Balasooriya* > Senior Software Engineer - QA; > WSO2 Inc; http://www.wso2.com/. > > > -- Lakmali Baminiwatta Senior Software Engineer WSO2, Inc.: http://wso2.com lean.enterprise.middleware mobile: +94 71 2335936 blog : lakmali.com
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
