Hi, I'm Ask INFA!
What would you like to know?
ASK INFAPreview
Please to access Ask INFA.
Communities
A collaborative platform to connect and grow with like-minded Informaticans across the globe
Product Communities
Connect and collaborate with Informatica experts and champions
Discussions
Have a question? Start a Discussion and get immediate answers you are looking for
User Groups
Customer-organized groups that meet online and in-person. Join today to network, share ideas, and get tips on how to get the most out of Informatica
Get Started
Community Guidelines
Knowledge Center
Troubleshooting documents, product guides, how to videos, best practices, and more
Knowledge Base
One-stop self-service portal for solutions, FAQs, Whitepapers, How Tos, Videos, and more
Support TV
Video channel for step-by-step instructions to use our products, best practices, troubleshooting tips, and much more
Documentation
Information library of the latest product documents
Velocity (Best Practices)
Best practices and use cases from the Implementation team
Learn
Rich resources to help you leverage full capabilities of our products
Trainings
Role-based training programs for the best ROI
Certifications
Get certified on Informatica products. Free, Foundation, or Professional
Product Learning Paths
Free and unlimited modules based on your expertise level and journey
Resources
Library of content to help you leverage the best of Informatica products
Tech Tuesdays Webinars
Most popular webinars on product architecture, best practices, and more
Product Availability Matrix
Product Availability Matrix statements of Informatica products
SupportFlash
Monthly support newsletter
Support Documents
Informatica Support Guide and Statements, Quick Start Guides, and Cloud Product Description Schedule
Product Lifecycle
End of Life statements of Informatica products
Ideas
Events
Change Request Tracking
Marketplace
English
  • API Center
  • All Products

Table of Contents

Search

  1. Preface
  2. API Console
  3. Published APIs
  4. Custom APIs
  5. Managed APIs
  6. API Groups
  7. Managed API Groups

Manage APIs

Manage APIs

Back Next

Configuring API policies for an API group

Configuring API policies for an API group

You can configure and assign rate limit policy, JSON web token authentication, and IP filtering policy to API groups.

Rate limit configuration for API groups

You can associate a rate limit policy with any operation in an API group.
  1. On the
    API Groups
     page, select the
    API Groups
     tab.
  2. Click the
    Actions
     menu on the row of the API group and select
    Edit API Group
    .
  3. On the
    Policies
     tab, click
    Rate Limit
    .
  4. Select a rate limit for the managed API group. The organization level rate limit policy is applied to the managed API group by default.
  5. Optionally, add user-level rate limit.
  6. Click
    Save
    .

IP filtering rules configuration for API groups

Create an IP filtering policy at the managed API group level.
  1. On the
    API Groups
     page, select the
    API Groups
     tab.
  2. Click the
    Actions
     menu on the row of the API group and select
    Edit API Group
    .
  3. On the
    Policies
     tab, click
    IP Filtering Rules
    Add IP Filtering Rule.
    .
  4. Select to allow or deny a range of addresses, and then fill in the IP range.
  5. Optionally, enter a description of the rule. Add additional rules as required to define the policy.
  6. Click
    Save
    .

JWT access token configuration for API groups

Enabling the API-level JSON web token authentication while creating an API group overrides all the operation-level authentications. You can't change the authentication type while creating a managed API group. After you activate the managed API with API-level JSON web token authentication, you can't remove the JSON web token authentication from that particular API group.

OAuth 2.0 security authentication for API groups

When you create or edit an API group or managed API group, you can enable OAuth 2.0 authentication at the API group level. You can then invoke the APIs in the managed API group with OAuth 2.0 or third-party authorization access tokens. When you enable API-level authentication for an API group, all the operation-level authentications are overridden. However, this behavior doesn't apply to custom API operations.
For more information about API policies, see
API Policies
.
0 COMMENTS
We’d like to hear from you!