OverviewWe have an internal resource that uses an outdated method for authentication, which involves including the username/password into the body of the request as part of a JSON string. I want to replace that, having IAG inject the credentials into the body of the request before forwarding the request to the backend web service. The idea is that the requestor never needs to know the credentials because IAG will automatically inject them into the request.
Question(s)
- Is it possible to have IAG manipulate the body of the incoming request?
- Can we get IAG to read the body of the incoming request?
- If not with IAG, how else could we accomplish what we're trying to do vis-a-vis injecting the credentials?
------------------------------
Timothy
------------------------------