I was trying to secure an Azure API Management (APIM) APIs with OAuth 2.0 and Azure AD per Protect API backend in API Management using OAuth 2.0 and Azure AD – Azure API Management | Microsoft Docs. My APIM managed API calls a back-end .NET Core API secured with Managed Identity. In my policy, which…
Category: API Management
Adventures with Azure API Management: Add JSON Property in Set-Body
Adventures with Azure API Management: Shared Headers and Postman
I use Postman for testing my API calls to Azure API Management. In each of my requests I need to pass a Ocp-Apim-Subscription-Key header. In this header I provide my subscription key for my API provided by Azure API Management. Normally I would do this for each request. What if I need to change the…
Adventures in Azure: Curbside Pickup Sample App
Adventures with Azure: Security, Azure App Services and Azure API Management
In previous article we looked at how to secure an Azure Function with Azure API Management, in an effort to only allow resources within the Azure tenant access. Could the same thing be done with a Web Api hosted in App Services? Surprisingly, it was just as easy to implement. You setup Express Auth through…