How Do I Throw An Error In Azure API Management Policy?

Question

In my Azure API Management Policy I am checking for some headers and do certain actions depending on what is found.

How do I throw an error when none of the conditions are matched (i.e. in the otherwise block)

<policies>
  <inbound>
    <choose>
      <when condition="">

      </when>
      <when condition="">

      </when>
      <otherwise>

      </otherwise>
    </choose>
    <base/>
  </inbound>

  <backend>
    <base/>
  </backend>
  <outbound>
    <base/>
  </outbound>
  <on-error>
    <base/>
  </on-error>
</policies>

I probably want to return a 401 since I am checking groups in the headers.

score 6 · Accepted Answer · edited Aug 15 '19 at 15:26

6

You can use a <choose> policy to detect and report failure, return a 401 response.

<otherwise>
    <return-response >
        <set-status code="401" reason="Unauthorized" />
        <set-header name="WWW-Authenticate" exists-action="override">
            <value>Bearer error="invalid_token"</value>
        </set-header>
    </return-response>
</otherwise>

Here is also a similar SO thread you could refer to.

edited Aug 15 '19 at 15:26

opticyclic

7,412
12
81
155

answered Aug 14 '19 at 09:49

Joey Cai

18,968
1
20
30

It took me a while to be able to test it. I rolled back to the original answer as setting the header is a useful addition as well as the status code. – opticyclic Aug 15 '19 at 15:28
Glad to see that. – Joey Cai Aug 16 '19 at 01:39

How Do I Throw An Error In Azure API Management Policy?

1 Answers1