I am using serverless framework to create apigateway and i have secured the api with a token. What I want to do is use serverless to create the apikey and set it to a known value that i will pull from parameter store.
I know in console you can add your own key as opposed to auto generating one.
Looking at the docs I cannot see how you get get the value from parameter store. Is this even possible?
Related
i want to list access that were provided on storage via ACL.
Is there a API solution for this?
I want to list all entities (AD group, Service Principal etc) (like one marked in green) that has access to storage via ACLs
Idea is to create audit platform which can list all access that are provided via ACL
I tried path, as suggested in one of the comment. "x-ms-acl" is missing in response. (refer screenshot)
after changing blob to "dfs" in blob, it worked.
The API you would want to use is Path - Get Properties with action query parameter as getAccessControl. This should return you ACL in x-ms-acl response header.
You will need to use DFS endpoint (instead of blob endpoint).
If you are using Azure.Storage.Files.DataLake (.Net SDK for Azure DataLake), the method you would want to use is DataLakeDirectoryClient.GetAccessControlAsync.
I am trying to use the ipapi API (https://ipapi.com/documentation) to get the geolocation data of users and I have an API key which I will need to use to make the API call to get the JSON results.
In nodejs, we can use .env to store secret keys and access them with process.env.KEY_NAME. The same goes for servers such as Heroku and AWS, where we can store an API keys as config vars.
But for shopify, I can't seem to find out where to store secret API keys.
I have read some examples:
How to define global variables in Liquid? (this doesn't seem like the right thing to do as I want to store it as a secret and access it from another file).
https://devcenter.heroku.com/articles/config-vars (only for themekit/slate development).
Is it safe to just create another .liquid file and place all my secret keys there and just call it from another file?
Would appreciate if someone could point me the right direction.
Thank you!
You cannot hide secret API keys in Shopify. Instead, if you want to use a service that is secret, you can install your own custom App in the store, and use the App Proxy callback to call your App. Your App can then use secrets to make secret key API calls, and then that data is returned to the store front for use.
On the other hand, for something trivial like calling a geolocation service, you probably have the option to just call them with a public token assigned to your account, no secret. So you'd just use that, and not worry.
I manage to create so many API Definition that always using oauth 2 or Api Key, but how to create a definition without any authorization (just link as is) ? like a deeplink or shortened url that no need any authorization.
I see custom options but don'e know how to use it.
Any advise welcome,
thank you
Regards,
Sigit
In Mashery, open endpoints are created using a workaround method.
Keep the request authentication method as 'API Key'
Using a common(or a default) account, create a custom key with value noapikey for the package-plan under with the endpoint will be exposed
In the endpoint level setting, the is a setting called 'Allow calls having no API Key`. Set that value to true.
Now the endpoint will be accessible with out any authentication
The logic is that all the calls without an Api Key is mapped to this default noapikey, which means we need to take care of the throttle and call limits for the default key.
I am using soapUI open source version to test an API. am using a token to access the test step.
I need to send the token with the API request.I have transferred the token value to the test step using property transfer but the transferred value is embedded in the body of the next request.
I want to send the value as a query parameter along with API request/
API Structure : Post method
api/v1/delete/token
the transferred value should be sent in place of token.
Kindly assist me.
You need to set up your second request as a correct resource, and parametrize the token variable. Official documentation is available.
After that, you do not need to use a transfer step for something this simple. You can just use property expansion, as per official documentation. Something like: ${previous_step_name#ResponseAsXml#//*:token}
I am trying to add an api key from my bigcommerce store to my developer account. I go in and add a user that has access to api, and this generates a key, and I click save. I then registered as developer at developer.bigcommerce.com and tried to add the key, but it gave me an invalid credentials message. What am I doing wrong?
I tried recreating this and it seems to be working fine. Did you make sure you added the store url too for the new api key.
Look at the attached screenshot.
Assuming you've inputed the user name and key correctly, you also want to be sure the store url matches the API URL given when you created the new user BUT without the /api/v2 at the end.
So if your API URL happened to be https://store-bwvr466.mybigcommerce.com/api/v2
Just input https://store-bwvr466.mybigcommerce.com for the store url