Unknown macro: {next_previous_links}
Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Next »

API Manager provides the capability to whitelist multiple host names if you use different host names to access API Store in your environment. 

To use this feature in the current version of WSO2 API-M, you need to get the latest product updates for your product. This feature is available as a product update from 2019-xx-xx onwards.

Note that you can deploy updates in a production environment only if you have a valid subscription with WSO2.  Read more about  WSO2 Updates

In this case, localhost is by default considered as a whitelisted host name.

Similarly you can whitelist multiple host names for store as follows.

  • You need to add the host names to the whiteListedHostNames attribute in <API-M_HOME>/repository/deployment/server/jaggeryapps/store/site/conf/site.json as comma separated values.

   See the following example configuration.

"whiteListedHostNames": ["www.wso2.org", "www.example.com"]

Note :

When you try to access API Store with a host which is not whitelisted, or is not specified in <API-M_HOME>/repository/conf.carbon.xml, you will notice the following warning being logged in the server logs.

Possible HOST Header Attack is identified. Hence, rewriting to default host in configuration.
  • No labels
Unknown macro: {next_previous_links2}