Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

If you do not want a role validation for a scope in an API's request, add the scope under the <ScopeWhitelist> <OAuthConfigurations> element in the <APIM_HOME>/repository/conf/api-manager.xml file and restart the server. It will be whitelisted. For example,

Code Block
^device<ScopeWhitelist>
    <Scope>^device_.*
some_random_scope</Scope>
    <Scope>somerandomscope</Scope>
</ScopeWhitelist>

Next, invoke the Token API to get a token for the scope that you just whitelisted. For example,

...