Version: v2.15.x LTS

Configuring authorization for API ML

Last updated

: 4/30/2024|

... min read

Edit this page

Open doc issue

Configuring authorization for API ML

Role: system administrator

In Zowe's API Mediation Layer, system administrators can limit access to services and information in the API Catalog by hiding sensitive data like service instance URLs, configurable via the apiml.catalog.hide.serviceInfo property in zowe.yaml. Additionally, SAF resource checking for user authorization on specific endpoints is facilitated through various providers, such as Endpoint, Native, and Dummy. These configurations, modifiable in the zowe.yaml file, enhance security by controlling service exposure and ensuring proper authorization checks within the Zowe ecosystem.

Limiting access to information or services in the API Catalog
Configuring SAF resource checking