I need to verify incoming apikey( in header) with the key that is generated in the portal while registering and App creation.
Following is the policy fragment that I have developed, In this the apikey field in lookupApikey assertion is hardcoded to what i got from portal and i think this assertion sets the {apikeyRecord.key} variable to this value.
But I don't want that, it has to be a context variable which should pick apikey that is generated from portal(so that if another App wants to use same API it can using different Apikey)
Is there something that I am missing. Please help.
L7_APIM
Regards,
Alok