| Group | Name | Excerpt | Usage |
|---|
| Administration | manage_users |
| Multiexcerpt |
|---|
| MultiExcerptName | manage_users |
|---|
| API Management uses the Keycloak application Identity Management to manage its users. Keycloak is an identity and access management software that This tool can manage users for multiple applications. Data for each application is stored in so called "realms": - Users of Keycloak the identity management itself are stored to realm Master.
- Users of API Management and Kibana Log Analyzer are stored to realm Apiman.
Thus, you need to have to separate admin accounts: one for KeycloakIdentity Management, and one for API Management. |
| |
| Administration | test_gateway_nok |
| Multiexcerpt |
|---|
| MultiExcerptName | test_gateway_nok |
|---|
| If the configuration is invalid, an error message will be shown including further information about the error itself: 
|
| |
| Administration | test_gateway_ok |
| Multiexcerpt |
|---|
| MultiExcerptName | test_gateway_ok |
|---|
| If the gateway configuration is correct, you will get a success message:
|
| |
| APIs | private_api_testcode | retired | Multiexcerpt |
|---|
| MultiExcerptName | private_api_testcode |
|---|
|
| Code Block |
|---|
| language | yml |
|---|
| title | Example in swagger.yaml |
|---|
| linenumbers | true |
|---|
| schemes:
- https
security:
- X-API-Key: []
securityDefinitions:
X-API-Key:
description: Authenticate using pre-acquired API key
in: header
name: X-API-Key
type: apiKey |
| Note |
|---|
Note: Depending on the used policies, further entries in the YAML or JSON file may be necessary. |
|
| |
| APIs | public_api_testcode | retired | Multiexcerpt |
|---|
| MultiExcerptName | public_api_testcode |
|---|
|
| Code Block |
|---|
| language | yml |
|---|
| title | Example in swagger.yaml |
|---|
| linenumbers | true |
|---|
| basePath: /yourOrganizationNameHere/yourApiNameHere/theApiVersionNumberHere
host: yourHostNameHere:portNumberHere |
| Tip |
|---|
You can copy the basePath and host in the APIs tab Endpoint or in the Client's tab APIs (use icon in column Endpoint). |
|
| |
| APIs | testing_api_with_swagger |
| Multiexcerpt |
|---|
| MultiExcerptName | testing_api_with_swagger |
|---|
|
| Info |
|---|
Testing of API configurations is only possible with REST APIs that are coming with a Swagger file. |
|
| |
| Clients | api_registered_client |
| Multiexcerpt |
|---|
| MultiExcerptName | api_registered_client |
|---|
|
| Note |
|---|
Before the client is registered with the runtime gateway, it is not possible to make requests to backend APIs on behalf of that client. |
|
| |
| Clients | swagger_ui |
| Multiexcerpt |
|---|
| MultiExcerptName | swagger_ui |
|---|
|
| Tip |
|---|
For more information about the functions of the Swagger UI, go to the Swagger homepage. |
|
| |
| Developer Portal | testingapi_documentation_apisbutton
|
| Multiexcerpt |
|---|
| MultiExcerptName | testingapi_documentation_apis |
|---|
| Further below on the documentations page you can find the Swagger UI. Use it to send test requests to the API. Click Try it out to enter test data and execute a request. For more information about the functions of the testing UI, refer to the Swagger pages. | The API Documentation button grants access to the Swagger UI where the user can test the API (refer to Testing APIs With API Management for further information). |
| (2 x) |
| Developer Portal | exposing_api_documentation_buttontypes
|
| Multiexcerpt |
|---|
| MultiExcerptName | api_documentation_button |
|---|
| The API Documentation button grants access to the Swagger UI where the user can test the API (refer to Testing APIs With API Management for further information). |
| | | Developer Portal | exposing_api_types
| | Multiexcerpt |
|---|
| MultiExcerptName | exposing_api_types |
|---|
| You can expose all forms of APIs in the Developer Portal:
| Public API | Private API |
|---|
| Published API | Consumable by everyone. | Users who want to consume the API must first register for it. |
|---|
| Unpublished API | Cannot be consumed.
Allows you to announce that an API is in preparation. |
|---|
|
an API is in preparation. |
|
| |
| Developer Portal | testing_apis
|
| Multiexcerpt |
|---|
| MultiExcerptName | testing_apis |
|---|
| Further below on the documentations page you can find the Swagger UI. Use it to send test requests to the API. Click Try it out to enter test data and execute a request. For more information about the functions of the testing UI, refer to the Swagger pages. |
| |
| General Notes, Infos, Tips | api_displayed_when_published |
| Multiexcerpt |
|---|
| MultiExcerptName | api_displayed_when_published |
|---|
|
| Info |
|---|
This tab is only visible for published APIs. |
|
| |
| General Notes, Infos, Tips | api_displayed_when_registered |
| Multiexcerpt |
|---|
| MultiExcerptName | api_displayed_when_registered |
|---|
|
| Info |
|---|
This tab is only visible for registered clients. |
|
| |
| General Notes, Infos, Tips | api_link_to_policy_page |
| Multiexcerpt |
|---|
| MultiExcerptName | api_link_to_policy_page |
|---|
|
|
| |
| General Notes, Infos, Tips | api_my_all_hint |
| Multiexcerpt |
|---|
| MultiExcerptName | api_my_all_hint |
|---|
|
| Info |
|---|
If you want to edit API Management elements, you need to access them via the My... menu items (see "My" API Management items). |
|
| |
| General Notes, Infos, Tips | api_save_when_finished |
| Multiexcerpt |
|---|
| MultiExcerptName | api_save_when_finished |
|---|
| Do not forget to click the Save button when you have finished. |
| |
| General Notes, Infos, Tips | api_version_number_note |
| Multiexcerpt |
|---|
| MultiExcerptName | api_version_number_note |
|---|
|
| Info |
|---|
You can enter numbers and text in the Version field which allows the use of version numbers (e.g. 1.0, 2.1 ...) as well as version descriptions (e.g. Gold, Super etc.). |
|
| |
| General Notes, Infos, Tips | api_work_with_items |
| Multiexcerpt |
|---|
| MultiExcerptName | api_work_with_items |
|---|
| Click to add a new item to a list, click to show/hide the list of items. |
| |
General Notes, Infos, Tips | note_read_confirmation_dialog |
| Multiexcerpt |
|---|
| MultiExcerptName | note_read_confirmation_dialog |
|---|
|
| Note |
|---|
Please read the confirmation dialog carefully. |
|
| |
| General Notes, Infos, Tips | use_breadcrump
|
| Multiexcerpt |
|---|
| MultiExcerptName | use_breadcrump |
|---|
|
| Tip |
|---|
Use the breadcrumb menu at the top of the page for guidance. |
|
| |
| Kibana | kibana |
| Multiexcerpt |
|---|
| Kibana is an open source analytics and visualization tool designed to work with Elasticsearch. With Kibana you can search, view, and interact with data stored in Elasticsearch indices. You can perform advanced data analysis and visualize your data in a variety of charts, tables, and maps.
For detailed information on Kibana, its features and how to use them, refer to the Kibana User Guide. |
| |
| Metrics | tipp_elaborated_metrics
|
| Multiexcerpt |
|---|
| MultiExcerptName | tipp_elaborated_metrics |
|---|
|
| Tip |
|---|
For more elaborated metrics, have a look at the Log Analyzer. |
|
| |
| Notifications | info_enable_mail_notifications |
| Multiexcerpt |
|---|
| MultiExcerptName | info_enable_mail_notifications |
|---|
|
| Info |
|---|
It is also possible to send the notifications by email. This feature is disabled by default, but we recommend to configure this during the setup of your Scheer PAS installation. If you want to use email notifications, please contact your Scheer PAS administrator. |
|
| |
Organizations | api_org_creation |
| Multiexcerpt |
|---|
| MultiExcerptName | api_org_creation |
|---|
|
| Note |
|---|
Only users with role Administrator can create new organizations. |
|
| |
| Plans | locked_plans |
| Multiexcerpt |
|---|
| MultiExcerptName | locked_plans |
|---|
|
| Note |
|---|
Once a plan is locked, it cannot be revised anymore. However, you can still create a new version of this plan. |
|
| |
| Policies | api_behind_proxy |
| Multiexcerpt |
|---|
| MultiExcerptName | api_behind_proxy |
|---|
|
| Note |
|---|
Please disable the TLS check if you are using Scheer PAS 21.1, because this version is running behind a proxy server.
|
|
| |
| Policies | api_blacklist_whitelist |
| Multiexcerpt |
|---|
| MultiExcerptName | api_blacklist_whitelist |
|---|
|
|
| |
| Policies | api_enable_option |
| Multiexcerpt |
|---|
| MultiExcerptName | api_enable_option |
|---|
|
| Note |
|---|
It is strongly recommended to enable this option.
|
|
| |
| Policies | api_move_policies |
| Multiexcerpt |
|---|
| MultiExcerptName | api_move_policies |
|---|
| | The order of the policies is important. The order in which the policies appear in the user interface determines the order they will be applied at runtime. You can drag a policy up and down the list to change the order: |
| |
| Policies | api_no_ipv6 |
| Multiexcerpt |
|---|
| MultiExcerptName | api_no_ipv6 |
|---|
|
| Note |
|---|
The use of IPv6 is neither possible in the blacklist nor in the whitelist policy. |
|
| |
| Policies | cors_policy_chain |
| Multiexcerpt |
|---|
| MultiExcerptName | cors_policy_chain |
|---|
| API Management sets the CORS headers in the following order: - CORS headers from the CORS policy have the highest priority.
- Then, if no CORS policy has been defined, CORS headers from the API are used.
- Then, if 1 and 2 are not the case, special headers for the integrated Swagger UI are used.
|
| |
| Policies | proxy_x_real |
| Multiexcerpt |
|---|
| MultiExcerptName | proxy_x_real |
|---|
|
| Info |
|---|
In the default setup the gateway runs behind a proxy. In the default scenario there is no need to add the header X-Real-IP in the custom header field IP Address HTTP Header. |
|
| |
| Policies | swagger_definition_changes
|
| Multiexcerpt |
|---|
| MultiExcerptName | swagger_definition_changes |
|---|
|
| Info |
|---|
Adding or removing policies does not enrich the Open API documentation. You need to adjust your documentation manually. |
|
| |
| Step by Step Guides | api_definition_details | moved to academy_excerpts, delete after publication of version 21.2.2_api | Multiexcerpt |
|---|
| MultiExcerptName | api_definition_details |
|---|
|
| Tip |
|---|
Detailed information about the necessary settings in the definition file can be found on page API Settings. |
|
| |
| Step by Step Guides | goto_chapter_apis | moved to academy_excerpts, delete after publication of version 21.2.2_api | Multiexcerpt |
|---|
| MultiExcerptName | goto_chapter_apis |
|---|
|
| Tip |
|---|
Go to APIs to learn more about the details of an API and its configuration options. |
|
| |
| Step by Step Guides | goto_chapter_organizations | moved to academy_excerpts, delete after publication of version 21.2.2_api | Multiexcerpt |
|---|
| MultiExcerptName | goto_chapter_organizations |
|---|
|
| Tip |
|---|
Go to Organizations to learn more about the details of an organization and its configuration options. |
|
| |
Step by Step Guides | step_by_step_policies | moved to academy_excerpts, delete after publication of version 21.2.2_api | Multiexcerpt |
|---|
| MultiExcerptName | step_by_step_policies |
|---|
|
| Tip |
|---|
On page Policies you can find an overview of all policies provided in API Management. Each policy and its configuration options are explained on dedicated pages. |
|
| |
| Support | support_overview |
| Multiexcerpt |
|---|
| MultiExcerptName | support_overview |
|---|
| - First of all you can consult our complete technical documentation.
The documentation is divided into several guides:
- If you can't solve your problem with help of the documentation, you can file a ticket to our support team at support@scheer-pas.com.
All mails to our support mailbox will open a ticket in our service desk.
Optionally, you may use our service desk portal. There, you can manage your tickets and raise new support requests. Using the portal requires you to register your email address, which will not take much time. To help you with your problem, our Support team needs some information on your software and environment. Please refer to API Management Support Request for more details on this.
|
| |
| Terms & Definitions | api_contracts_and_keys |
| Multiexcerpt |
|---|
| MultiExcerptName | api_contracts_and_keys |
|---|
| API Contracts and API KeysOnly public APIs can be accessed by any consumer. The only way for a client to consume a private API is by using an API contract. An API contract is a link between a client and an API through a plan offered by that API. API contracts can only be created between clients and published APIs which are offered through at least one plan. An API contract cannot be created between a client and a public API. When an API contract is created, the system generates a unique API Key. This key is unique per client and the same for all contracts of this client. All requests made to the API by a client through the gateway must include this API Key. The API Key is used to create the runtime policy chain from the policies configured on the API, plan and client. | Info |
|---|
You can forward the X-API-Key to the service using the API Key policy. However, you cannot define your own value for the X-API-Key, since the gateway uses the key to identify the clients. |
|
| |
| Terms & Definitions | definition_api |
| Multiexcerpt |
|---|
| MultiExcerptName | definition_api |
|---|
| APIs in API Management represent real back-end APIs (Application Programming Interfaces). An API is also known as a service, meaning anything that can be invoked remotely by some sort of client. API Management provides a way to turn unmanaged (raw) back-end APIs into managed APIs by attaching policies to them. Every managed API can be published as Public API or Private API or both: - Public APIs are available to consumers without a key. Only policies defined on the API apply to public APIs.
- Private APIs are only accessible for known consumers, called clients. Every client has an individual key to access the API. Policies defined on the client, the selected plan in the contract and the API apply.
In API Management, users can create new APIs manually or easily import them from the API Catalog. |
| |
| Terms & Definitions | definition_client |
| Multiexcerpt |
|---|
| MultiExcerptName | definition_client |
|---|
| The client is the consumer of the API: - The client consumes managed APIs offered through API Management.
- Each client can consume multiple APIs within API Management. The relation between client and API is defined via a contract and a plan.
- As with an API or a plan, you can also add policies to a client. When creating a contract, an API-Key to invoke the API will be assigned.
|
| |
| Terms & Definitions | definition_contract |
| Multiexcerpt |
|---|
| MultiExcerptName | definition_contract |
|---|
| | A contract relates a client to an API, using a plan. |
| |
Terms & Definitions | definition_organization |
| Multiexcerpt |
|---|
| MultiExcerptName | definition_organization |
|---|
| Almost everything in the API Management data model exists in the context of an organization: - An organization is a logical unit within API Management. This can be a company, department, etc.
- An organization is a container of other elements: plans, APIs, and clients are defined per organization.
- Every user must be associated with at least one organization to be able to manage elements in the application.
- API Management implements role-based access control for users. You can give organization members different roles to restrict the actions he is able to perform and the elements he can manage within the organization.
- Membership for each organization can be easily managed in the Organization tab.
|
| |
| Terms & Definitions | definition_plan |
| Multiexcerpt |
|---|
| MultiExcerptName | definition_plan |
|---|
| A plan is a set of policies that defines the level of service API Management provides for an API. - Plans enable users to define multiple different levels of service for their APIs.
- Plans specify the contract between a client and an API.
- It is common to define multiple plans with divergent configuration options for the same API.
Example:
An organization offers two plans for the same API: Plan A is more expensive than plan B, but it offers a higher level of API requests in a given (and configurable) period of time.
|
| |
| Terms & Definitions | definition_policy |
| Multiexcerpt |
|---|
| MultiExcerptName | definition_policy |
|---|
| Policies are at the lowest level of the data model, but they are the most important concept: A policy is a rule or a set of rules API Management uses to manage access to your APIs. - Policies are applied to all API requests and represent a unit of work applied at runtime to the request by API Management.
- You can define a policy chain, a defined order in which the policies will be applied to API requests.
|
| |
| Tips | click_to_see_gif | moved to page _general_excerpts - delete after publication of doc-version 21.2 | Multiexcerpt |
|---|
| MultiExcerptName | click_to_see_gif |
|---|
|
| Tip |
|---|
Click the image to see an animated version. |
|
| |
| Tips | click_to_see_gif_above | moved to page _general_excerpts - delete after publication of doc-version 21.2 | Multiexcerpt |
|---|
| MultiExcerptName | click_to_see_gif_above |
|---|
|
| Tip |
|---|
Click the image above to see an animated version. |
|
| |