Securing Developer Portal and Federated API Management communication

When you configure to monitor a Developer Portal instance from Federated API Management, you can enable two-way SSL for the communication between both components.

About this task

To achieve two-way security between Developer Portal and Federated API Management, generate security certificates for both components, and specify the certificate details in the corresponding configuration of both components.

Procedure

Go to the DPOInstalledLocation\DeveloperPortal\configuration folder, open the custom_wrapper.conf file, add the following entry, and save the changes.

wrapper.java.additional.2200=-Dportal.datastore.uris=http://datastore-cp:9200
wrapper.java.additional.2201=-Djavax.net.ssl.controlplane.keyStore=Keystore_location
wrapper.java.additional.2202=-Djavax.net.ssl.controlplane.keyStorePassword=Keystore_password
wrapper.java.additional.2203=-Djavax.net.ssl.controlplane.trustStore=Truststore_location
wrapper.java.additional.2204=-Djavax.net.ssl.controlplane.trustStorePassword=Truststore_password
wrapper.java.additional.2205=-Djavax.net.ssl.controlplane.trustStoreType=JKS
wrapper.java.additional.2206=-Djavax.net.ssl.controlplane.keyStoreType=JKS
wrapper.java.additional.2207=-Djavax.net.ssl.controlplane.keyAlias=client
wrapper.java.additional.2208=-Djavax.net.ssl.controlplane.keyPassword=changeit

where,

Keystore_location: Location of the Developer Portal keystore file.
Keystore_password: Password to access the Developer Portal keystore file.
Truststore_location: Location of the Developer Portal truststore file.
Truststore_password: Password to access the Developer Portal truststore file.
Note: Make sure that the truststore file includes the details of the target component certificates.

Sample

wrapper.java.additional.2200=-Dportal.datastore.uris=http://datastore-cp:9200
wrapper.java.additional.2201=-Djavax.net.ssl.controlplane.keyStore=C:\Installer\DeveloperPortal\configuration\client-keystore.jks
wrapper.java.additional.2202=-Djavax.net.ssl.controlplane.keyStorePassword=changeit
wrapper.java.additional.2203=-Djavax.net.ssl.controlplane.trustStore=C:\Installer\DeveloperPortal\configuration\client-truststore.jks
wrapper.java.additional.2204=-Djavax.net.ssl.controlplane.trustStorePassword=changeit
wrapper.java.additional.2205=-Djavax.net.ssl.controlplane.trustStoreType=JKS
wrapper.java.additional.2206=-Djavax.net.ssl.controlplane.keyStoreType=JKS
wrapper.java.additional.2207=-Djavax.net.ssl.controlplane.keyAlias=client
wrapper.java.additional.2208=-Djavax.net.ssl.controlplane.keyPassword=changeit

SSL is enabled for the communication between the Developer Portal and Federated API Management.