In the WSO2 Open Banking solution, Mutual Transport Layer Security (MTLS) is enforced by using handlers in order to ensure that the authenticated client uses the pre-registered transport certificate to communicate with APIs.
| Table of Contents |
|---|
Token endpoint security
To enable MTLS validation in the access token requests, add the following entries to the start of the <handlers> property in the <WSO2_OB_APIM_HOME>/repository/deployment/server/synapse-configs/default/api/_TokenAPI_.xml file.
| Code Block |
|---|
<handler class="com.wso2.finance.open.banking.mtls.validator.handler.GatewayClientAuthenticationHandler"/> <handler class="com.wso2.finance.open.banking.mtls.validator.handler.MTLSValidationHandler"/> |
API resource security
The following configuration should be added to the <handlers> section of the velocity template located in the <WSO2_OB_APIM_HOME>/repository/resources/api_templates/velocity_template.xml file.
...