Layer7 API Management

  • 1.  Portal + Policy Template

    Posted Apr 28, 2015 11:37 AM

    Hello,

     

    Can someone describe the purpose of the policy template drop down in the portal?  The portal docs suggest that policy templates can be added by the gateway admin, but I'm not seeing the connection between the policy templates in the assertions area (in Policy Manager) and the portal's drop down list.  Can anyone clarify how this is used?

     

    Thanks,

    Alejandro



  • 2.  Re: Portal + Policy Template
    Best Answer

    Posted Apr 28, 2015 07:57 PM

    Alejandro,

     

    Please refer to CA API Developer Portal v3.0 Setup and Integration Guide, Appendix K: Policy Templates and Encapsulated Assertions (or here: https://wiki.ca.com/display/APIDP/Policy+Templates+and+Encapsulated+Assertions

     

    Basically, the idea is that you can allow your API Owners to publish their APIs using standard, approved security policy (for example), but still add in their API-specific information at publication time. For example, you might create a Policy Template that specifies the API will use OAuth2; implicit grant type, but allows the API Owner to specify whether the API requires HTTPs or not.

     

    To create a Policy Template on the Portal, you have to first create an Encapsulate Assertion on the Gateway, and then add the "Set as Portal Publishable Fragment" assertion to it. It will then show up in the Policy Template dropdown on the Portal. For more information on how to create an encapsulated assertion, refer to https://wiki.ca.com/display/GATEWAY83/Encapsulated+Assertions