Enable attribute-based access control (ABAC) through your API gateway by installing the PingAuthorize API integration adapter (where supported) and connecting to the Sideband API.
For more information on specific API gateway integrations, see PingAuthorize Integrations.
Processing steps
- When the API gateway receives a request from an API gateway adapter, it makes a call to the Sideband API to process the request.
- The Sideband API returns a response that contains a modified version of the HTTP
client's request.
The API gateway forwards the response to the REST API.
- If the Sideband API returns a response that indicates the request is
unauthorized or not to be forwarded, the response includes the response to be
returned to the client.
The API gateway returns the response to the client without forwarding the request to the REST API.
- When the API gateway receives a response from the REST API, it makes a call to the Sideband API to process the response.
- The Sideband API returns a response that contains a modified version of the REST
API's response.
The API gateway forwards the response to the client.