Join this online group to communicate across IBM product users and experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.
Hi everyone,
I am trying to configure a microgateway API to be called with OAuth 2 but i don’t know how to configure it. Here my case. I develop an API to be called by an OAuth 2 in the API Gateway cloud (10.15). i set my application correctly. I export this API on a MicroGateway including the application and i would like to call this API through API Gateway. My question is what are the steps to configure the API Gateway and the Microgateway to ensure the introspection token ? The documentation is not very clear for me.
Best regards
You can find the configuration of Microgateway introspection in: Administration - Security - Microgateway.
1. Introspection endpoint https://{apigw-host}:{https-port}/invoke/pub.oauth/introspectToken
2. Client Id and Client secret: is one of your APIGateway’s Application with Client credentials grant.
3. JWKS URI http://{apigw-host}:{http-port}/rest/pub/apigateway/jwt/certs