How to by pass JWT token to beckend service if SSL and JWT work together

Cherubimlee · October 29, 2020, 3:02pm

Hi Team,

We are configure our API to support SSL Certificate and JWT token as authorization. But we found that after API gateway validate the bearer token in the Authorization header, it will remove the header and visit the native endpoint without the Authorization header. We can enable the Authorization token by using Outbound Authentication -Transport.

However, once we enable Outbound Authentication -Transport for JWT, we found the caller using SSL to call our API fails due to error about “API gateway is unable to process incoming request”. And it is back to work if we remove configuration of Outbound Authentication -Transport.

Is there any configuration that we can keep both setting together?

Thanks & Regards,
Lee

Bharath_Meka1 · November 2, 2020, 6:41am

Hello Lee,
Can you check if this error is coming from API gateway or native application ?
From your question we understood that SSL is applied by gateway(inbound) and outbound authentication is applied by native system(outbound), please check is the error appearing incase of outbound ?
Regards,
Bharath