检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Example Requests Add whitelist records for a vpc endpoint service. { "permissions" : [ "iam:domain::7cc2018e40394f7c9692f1713e76234d" ] } Example Responses Status code: 200 OK { "permissions" : [ "iam:domain::930ba6b0ea64457e8ed1861e596c7a9a" ] } Status code: 401 Unauthorized
Example Requests Delete whitelist records for a vpc endpoint service. { "permissions" : [ "iam:domain::7cc2018e40394f7c9692f1713e76234d" ] } Example Responses Status code: 200 OK { "permissions" : [ "iam:domain::930ba6b0ea64457e8ed1861e596c7a9a" ] } Status code: 401 Unauthorized
For security purposes, create IAM users and grant them permissions for routine management. IAM user A user is created using a domain to use cloud services. Each user has its own identity credentials (password and access keys).
AppSigv1 apig-auth-app-header: type: apiKey name: Authorization in: header x-apigateway-auth-opt: appcode-auth-type: header x-apigateway-auth-type: AppSigv1 apig-auth-iam: type: apiKey name: unused in: header x-apigateway-auth-type: IAM
IAM (token) Obtain the username and password for the cloud platform. IAM (AK/SK) Obtain the AK/SK of an account for the cloud platform and the signing SDK. Custom Obtain the custom authentication information to carry in request parameters from the API provider.
Why Can't I Create a Header Parameter Named x-auth-token for an API Called Through IAM Authentication? Can Mobile Apps Call APIs? Can Applications Deployed in a VPC Call APIs? Does APIG Support WebSocket Data Transmission?
APIG.0802 The IAM user is forbidden in the currently selected region. 403 The IAM user is disabled in the current region. Contact technical support. APIG.2102 PublicKey is null. 400 The signature key is not found. Contact technical support.
Account ID: Control IAM authentication–based API access by account ID, not IAM user ID. Configure a single or multiple account IDs separated by commas (,). Each account ID contains 32 characters (letters and digits), separated by commas (,). Max. 1,024 characters.
Options: NONE: no authentication APP: App authentication IAM: IAM authentication AUTHORIZER: Custom authentication run_env_name String Name of the environment in which the API has been published. group_name String Name of the API group to which the API belongs. publish_id String Publication
Minimum: 1 Maximum: 500 Default: 20 permission No String Permission account ID in format "iam:domain::domain_id". Fuzzy search is supported. Request Parameters Table 3 Request header parameters Parameter Mandatory Type Description X-Auth-Token Yes String User token.
Options: NONE: no authentication APP: App authentication IAM: IAM authentication AUTHORIZER: Custom authentication req_method String Request method. tags Array of strings Tags bound to the API. The default quota is 10. You can contact technical support to adjust the quota.
For details about the relationship between IAM identities and operators and the operator username format, see Relationship Between IAM Identities and Operators.
For details about the relationship between IAM identities and operators and the operator username format, see Relationship Between IAM Identities and Operators.
x-apigateway-responses: {} Importing a Function Backend Service API Import the request parameter definition of a FunctionGraph backend service API that uses the GET method and is accessed through IAM authentication.
Options: NONE: no authentication APP: App authentication IAM: IAM authentication AUTHORIZER: Custom authentication group_name String Name of the API group to which the API belongs. publish_id String API publication record ID. throttle_apply_id String ID of a request throttling policy
NOTE: APIG performs access control on accounts, not IAM users created using accounts. Click OK. You can bind the policy to APIs to control API access. Binding an Access Control Policy to an API Go to the page for binding an access control policy to an API.
Contact technical support. 500 APIG.9004 IAM request failed. IAM request failed. Contact technical support. 500 APIG.9005 VPC request failed. VPC request failed. Contact technical support. 500 APIG.9006 DNS request failed. DNS request failed.
Restrictions Before adding a backend policy, set the security authentication mode of the frontend to Custom or enable Two-Factor Authentication (App or IAM authentication). API requests that do not meet the conditions of any backend will be forwarded to the default backend.
Options: NONE: no authentication APP: App authentication IAM: IAM authentication AUTHORIZER: Custom authentication run_env_name String Name of the environment in which the API has been published. group_name String Name of the API group to which the API belongs. publish_id String Publication
Options: NONE APP IAM AUTHORIZER match_mode String API matching mode.
