Please enable JavaScript.
Coggle requires JavaScript to display documents.
API Configuration, API Configuration - Coggle Diagram
API Configuration
Application Level Security
Validate the gateway call behavior when Basic authentication is enabled and application-level security is set to mandatory
Create Environment
Create Scope
Create REST Pool
Create REST API
Go to Configuration
Select the Basic Authorization
Enable Mandatory toggle icon
1 more item...
Validate the gateway call behavior when OAuth2 authentication is enabled and application-level security is set to mandatory
Create Environment
Create Scope
Create REST Pool
Create REST API
Go to Configuration
Select the OAuth2 Authorization
Enable Mandatory toggle icon
1 more item...
Validate the gateway call behavior when API Key authentication is enabled and application-level security is set to mandatory
Create Environment
Create Scope
Create REST Pool
Create REST API
Go to Configuration
Select the API Key Authorization
Enable Mandatory toggle icon
1 more item...
Validate the gateway call behavior when Basic and OAuth2 authentication are enabled and application-level security is set to mandatory
Create Environment
Create Scope
Create REST Pool
Create REST API
Go to Configuration
Select the Basic and OAuth2 Authorization
Enable Mandatory toggle icon
1 more item...
Validate the gateway call behavior when Basic and API Key authentication are enabled and application-level security is set to mandatory
Create Environment
Create Scope
Create REST Pool
Create REST API
Go to Configuration
Select the Basic and API Key Authorization
Enable Mandatory toggle icon
1 more item...
Validate the gateway call behavior when OAuth2 and API Key authentication are enabled and application-level security is set to mandatory
Create Environment
Create Scope
Create REST Pool
Create REST API
Go to Configuration
Select the OAuth2 and API Key Authorization
Enable Mandatory toggle icon
1 more item...
Validate the gateway call behavior when Basic, OAuth2 and API Key authentication are enabled and application-level security is set to mandatory
Create Environment
Create Scope
Create REST Pool
Create REST API
Go to Configuration
Select the Basic, OAuth2 and API Key Authorization
Enable Mandatory toggle icon
1 more item...
Validate the gateway call behavior when Basic authentication is enabled and application-level security is not mandatory
Create Environment
Create Scope
Create REST Pool
Create REST API
Go to Configuration
Select the Basic Authorization
Off Mandatory toggle icon
1 more item...
Validate the gateway call behavior when OAuth2 authentication is enabled and application-level security is not mandatory
Create Environment
Create Scope
Create REST Pool
Create REST API
Go to Configuration
Select the OAuth2 Authorization
Off Mandatory toggle icon
1 more item...
Validate the gateway call behavior when API Key authentication is enabled and application-level security is not mandatory
Create Environment
Create Scope
Create REST Pool
Create REST API
Go to Configuration
Select the API Key Authorization
Off Mandatory toggle icon
1 more item...
Transport Level Security
Validate the gateway call behavior for an API configured with both HTTP and HTTPS protocols
Create Environment
Create Scope
Create REST Pool
Create REST API
Go to Configuration
Enable HTTP and HTTPS protocol
Create application
1 more item...
Validate the gateway call behavior for an API configured with only the HTTP protocol
Create Environment
Create Scope
Create REST Pool
Create REST API
Go to Configuration
Enable only HTTP protocol
Create application
1 more item...
Validate the gateway call behavior for an API configured with only the HTTPS protocol
Create Environment
Create Scope
Create REST Pool
Create REST API
Go to Configuration
Enable only HTTPS protocol
Create application
1 more item...
Authorization Header
Validate the gateway call behavior when overriding the Authorization Header
Create Environment
Create Scope
Create REST Pool
Create REST API
Go to Configuration
Enable override default authentication header
Add new Authorization Header
AuthHeader01
1 more item...
Cors Policy
TBD
Key Manager Configuration
TBD
API Configuration
Key Manager Configuration
Allow All
When checked, “Allow Selected” is disabled
Allow Selected
When checked, user must select from a list (if applicable)
Validate mutual exclusivity between both options
Validate Save button applies the configuration
General Validations
Ensure changes persist after Save
Validate all required fields before Save
Validate form resets on page refresh (if applicable)
Validate tooltips or info icons show help messages where available
Application Level Security
Security Options:
OAuth2
Basic
API Key
Validate multiple options can be selected
Mandatory Toggle
Toggle ON → Application security is required
Toggle OFF → Security becomes optional
Transport Level Security
Validate checkboxes for HTTP and HTTPS
HTTP and HTTPS both can be selected
At least one option must be selected before saving
HTTP and HTTPS can be independently selected
Validate Save button behavior:
Save applies current selection
Displays confirmation or error on failure
Authorization Header
Override Default Checkbox
When checked:
Text input appears
Warning message is displayed: “Once you enable...”
When unchecked:
Input is hidden or disabled
Authorization Header Field
Validate input accepts valid header names
Validate empty input shows error on save
Validate header gets updated on Save
CORS Policy
Toggle On/Off
When ON: dropdown is enabled
When OFF: dropdown and Save button disabled
Select CORS Policy
Validate list population (if policies are available)
Validate Save button is enabled only if a policy is selected
Validate error shown if no policy selected and Save clicked