In the WSO2 Open Banking solution, Mutual Transport Layer Security (MTLS) is enforced by using handlers in order to ensure that the authenticated client uses the pre-registered transport certificate to communicate with APIs.
Table of Contents |
---|
Token endpoint security
To enable MTLS validation in the access token requests, add the following entries to the start of the <handlers>
property in the <WSO2_OB_APIM_HOME>/repository/deployment/server/synapse-configs/default/api/_TokenAPI_.xml
file.
Code Block |
---|
<handler class="com.wso2.finance.open.banking.mtls.validator.handler.GatewayClientAuthenticationHandler"/> <handler class="com.wso2.finance.open.banking.mtls.validator.handler.MTLSValidationHandler"/> |
API resource security
The following configuration should be added to the <handlers>
section of the velocity template located in the <WSO2_OB_APIM_HOME>/repository/resources/api_templates/velocity_template.xml
file.
...