The Sideband API consists of the following components.
- Sideband API Shared Secrets
- Defines the authentication credentials that the Sideband API might require an API gateway plugin to present. For more information, see Authenticating to the Sideband API.
- Sideband API HTTP Servlet Extension
- Represents the Sideband API itself. If you require shared secrets, you might need to configure this component. For more information, see Authenticating to the Sideband API.
- Sideband API Endpoints
- Represents a public path prefix that the Sideband API accepts for handling proxied requests.
A Sideband API Endpoint configuration defines the following items:
- The base path (
base-path
) for requests that the Sideband API accepts - Properties that relate to policy processing, such as
service
, which targets the policy requests that are generated for the Sideband API Endpoint to specific policies
- The base path (
PingDataGovernance Server's default configuration includes a Default Sideband API Endpoint that
accepts all API requests and generates policy requests for the service
Default
. To customize policy requests further, an administrator can
create additional Sideband API Endpoints. For more information about using the Sideband
API Endpoint configuration to customize policy requests, see Sideband API policy requests.
Changes to these components do not typically require a server restart to take effect. For more information, see the Configuration Reference, located in the server's docs/config-guide directory.
Example
The following example commands create a pair of Sideband API Endpoints that target specific requests to a consent service.
PingDataGovernance/bin/dsconfig create-sideband-api-endpoint \
--endpoint-name "Consent Definitions" \
--set base-path:/c/definitions \
--set service:Consent
PingDataGovernance/bin/dsconfig create-sideband-api-endpoint \
--endpoint-name "Consent Records" \
--set base-path:/c/consents \
--set service:Consent