Allow API access only to Tyk Middleware

Amanjeev_Sethi · July 7, 2020, 9:19pm

Hello there,

Is there a way to restrict the access to an API so it is only accessible via internal Tyk plugin?

Thank you.

Shreyas · July 8, 2020, 11:00am

Hi Amanjeev,
We have this option, let me know if that helps.

Amanjeev_Sethi · July 8, 2020, 2:20pm

Thank you, @Shreyas ! Which part of the JSON config does this correspond to? We do not use Dashboard.

Is that "active": true?

Shreyas · July 9, 2020, 7:14am

In that case, the field would be “internal”: false.

Amanjeev_Sethi · July 9, 2020, 2:29pm

Thank you! Maybe I missed the API config properties documentation. Is there a place where they are all listed?

PS: I really appreciate your help. You’ve been kind and patient.

Shreyas · July 10, 2020, 11:42am

Just did some digging around and this is what I could find: API Definition Objects

They could use some improvement, I suppose. But it’s what we have.

Amanjeev_Sethi · July 10, 2020, 2:16pm

Thank you. I guess we can add to that list. lol

Amanjeev_Sethi · July 10, 2020, 8:30pm

Last question for now: Do I have to use TykMakeHttpRequest for API access from within the middleware plugin for an API that is internal only? If yes, then can I skip Domain part of the request object?

Amanjeev_Sethi · July 13, 2020, 9:21pm

Hi Shreyas,

"internal": true,

this still keeps the api accessible for me.