Configuring an application
About this task
The application represents the protected API as a whole. By including the virtual host and the agent, it allows PingAccess to route requests directed at the front-end name to the correct back-end resource. After you create the application and its root resource, you can add one or more rules to control access to the protected API.
Within the application, you can add one or more resources. Resources are specific components that require a different degree of security. You can apply different rules to a resource, letting you apply specific controls to portions of an application. This example procedure does not include resources. For information about adding resources to an application, see Configuring resource ordering in PingAccess.
For more information about this procedure, including optional steps that are not included here, see Adding an application.
Steps
-
Click Applications, then go to Applications > Applications.
-
Click Add Application.
-
In the Name field, enter a unique name for the application, up to 64 characters, including special characters and spaces.
-
In the Context Root field, enter the context root for the API. This represents the context at which all of the API endpoints are accessed at the site.
The context root must meet the following criteria:
-
It must start with
/
. -
It can contain additional
/
path separators. -
It must not end with
/
. -
It must not contain wildcards or regular expression strings.
-
The combination of the Virtual Host and Context Root must be unique.
-
-
From the Virtual Host list, select the virtual host you created.
-
In the Application Type section, select API.
-
In the Destination section, select Agent, then select the agent that is installed on the same web server as the API.
-
Click Save.
-
Click Applications, then go to Applications > Applications.
-
Expand the new application in the list and click the pencil icon .
-
Click the Web Policy tab.
-
Drag your rule from Available Rules onto the policy bar.
-
Click Save.