This documentation is for WSO2 Microgateway 3.0.0. View documentation for the latest release.

All docs This doc
||
Skip to end of metadata
Go to start of metadata

By default, the APIs and resources are protected via OAuth2 in the WSO2 API Microgateway.  You (API consumer) will need a valid OAuth2 access token (JWT or opaque) to invoke an API(s).  However, APIs can be exposed without any authentication using the OpenAPI extension x-wso2-disable-security. This extension is only supported at resource level. The following is an example of how you can disable security at the resource level of an API.

paths:
  "/pet/findByStatus":
    get:
      tags:
      - pet
      summary: Finds Pets by status
      description: Multiple status values can be provided with comma separated strings
      operationId: findPetsByStatus
      x-wso2-disable-security: true
  • No labels