menu
arrow_back

Security Mediation with IAM Service Accounts and OAuth

—/100

Checkpoints

arrow_forward

Creating service account and service key

Export and upload OAuth API proxy

Export and upload hipster-products API Proxy

Security Mediation with IAM Service Accounts and OAuth

1 个小时 30 分钟 7 个积分

GSP673

Google Cloud Self-Paced Labs

Overview

API proxies give you the full power of Apigee's API platform. Examples of what you can do with API proxies:

  • Secure API calls
  • Throttle traffic
  • Mediate messages
  • Control error handling
  • Cache things
  • Build developer portals
  • Document APIs
  • Analyze API traffic data
  • Make money on the use of your APIs
  • Protect against bad bots

In this lab you learn how to leverage Apigee policies that generate JSON Web Tokens (JWT) to securely generate Google OAuth tokens using an application's GCP service account for use in API proxies. The application can then supply the token to an API proxy running on Apigee to integrate with other Google APIs.

What you'll do

  • Create and deploy the Google Authentication Extension

  • Develop an API proxy to POST a request to generate an Apigee access token and a Google OAuth token

  • Develop an API proxy that authorizes a request to fetch a resource (product) from the backend via an OAuth access token

  • Mediate a request to a Google Cloud service (translate) via the API proxy, enforcing and providing the required authorization using scope

加入 Qwiklabs 即可阅读本实验的剩余内容…以及更多精彩内容!

  • 获取对“Google Cloud Console”的临时访问权限。
  • 200 多项实验,从入门级实验到高级实验,应有尽有。
  • 内容短小精悍,便于您按照自己的节奏进行学习。
加入以开始此实验