Creating service account and service key
Export and upload OAuth API proxy
Export and upload hipster-products API Proxy
Security Mediation with IAM Service Accounts and OAuth
API proxies give you the full power of Apigee's API platform. Examples of what you can do with API proxies:
- Secure API calls
- Throttle traffic
- Mediate messages
- Control error handling
- Cache things
- Build developer portals
- Document APIs
- Analyze API traffic data
- Make money on the use of your APIs
- Protect against bad bots
In this lab you learn how to leverage Apigee policies that generate JSON Web Tokens (JWT) to securely generate Google OAuth tokens using an application's GCP service account for use in API proxies. The application can then supply the token to an API proxy running on Apigee to integrate with other Google APIs.
What you'll do
Create and deploy the Google Authentication Extension
Develop an API proxy to POST a request to generate an Apigee access token and a Google OAuth token
Develop an API proxy that authorizes a request to fetch a resource (product) from the backend via an OAuth access token
Mediate a request to a Google Cloud service (translate) via the API proxy, enforcing and providing the required authorization using scope
Join Qwiklabs to read the rest of this lab...and more!
- Get temporary access to the Google Cloud Console.
- Over 200 labs from beginner to advanced levels.
- Bite-sized so you can learn at your own pace.