How to protect REST API with wso2 IS?

Question

I now have a NodeJS REST API. It is CRUD service. Does anyone know how to secure/protect my APIs step by step with wso2 OAuth2?

you can use WSO2 API Manager. – Jorge Infante Osorio Mar 03 '17 at 02:54 — Jorge Infante Osorio, Mar 03 '17 at 02:54

score 1 · Accepted Answer · answered Mar 03 '17 at 06:05

1

If you simply want to protect your REST API with OAuth2 use the WSO2 API Manager.

You can follow the quick start guide to get started. Details related to adding your API and enabling OAuth2 protection is mentioned here in the quick start guide.

answered Mar 03 '17 at 06:05

farasath

2,961
2
15
16

But it seems like if someone know the actual CRUD endpoints, they can access & make changes directly instead of going through WSO2 API Manager. Am I right? – Tran M. Duc Mar 03 '17 at 08:07
the basic idea is that you host the API in an internal environment and expose it to outside(internet) through the API manager. – farasath Mar 03 '17 at 12:57
Oh I see. Thank you! – Tran M. Duc Mar 04 '17 at 07:41

How to protect REST API with wso2 IS?

1 Answers1

Linked