How to enable CORS on Axway API & use postman to verify if the CORS is enabled

After a long break from the blog posting, I have decided to start posting again.

In this post we will demo how to enable CORS in Axway API Gateway and use Postman to verify whether the Cross-Origin Resource Sharing (CORS) are enabled on the API or not.

You need to enable the CORS setting on the API, if you are planning to call the API from javascript which is running in browser. For more details on CORS, please check below links


To enable CORS on Axway API

By Default, CORS are enabled for all domains for the frontend API in Axway. You can verify the setting on Frontend API -> Inbound -> Advance tab

Enable CORS from all domains 







If you want to restrict or configure specific CORS setting, you can create the CORS profile on frontend API.
Click on CORS profile, Add a new CORS profile, with ORIGIN URL or ALLOWED HEADER's










You will need to select the configured profile, please refer below screenshot.






To test or verify is the CORS is enabled:

 In order to verify the CORS, browser first make the OPTIONS call to the API. Based on the headers in the response, browser will decide whether to allow the actual call or block the call.

Thus, we need to make the option call from the POSTMAN to verify if we are getting the required header's in response.

Make a note, that while calling OPTIONS call from POSTMAN, you will need to set Origin header to the hostname that is allowed on the API. Based on the configuration on the API, if the hostname is allowed, it will return the same hostname in Access-Control-Allow-Origin response header.

If you are able to get the Access-Control-Allow-Origin header in response, the browser should allow the Javascript call to go through.



Popular posts from this blog

JAVA embedding in Oracle SOA 12c

Image
In this post we will explore how to EMBED Java or call Java API from Oracle SOA BPEL process. In order to demonstrated this, I have created a simple JAVA project with 3 classes. 1.        Account.java -> This class represent Account DTO       2.       Party.java -> This class represent a party (customer) DTO       3.       GetNumber.java -> This class contains the method that takes Party DTO as input and apply some business logic and return party’s AccountDTO in response. public Account getNumber(Party party) The above classes are created to simulate the calling of actual business logic API’s. Account.java Party.java GetNumber.java public class Account {     public Account() {         super();     }     String account;     public void setAccount(String account) {         this.account = account;     }     public String getAccount() {         return account;     } } public class Party {     public Part
Read more

Passing/Receiving HTTP header in SOA BPEL

Image
In this example we will explore how to pass or receive the parameters from HTTP header. We will explore below two scenarios, To receive the HTTP header from SOAP request. To pass the HTTP header while calling soap service. SOA version used: 12.1.3c To receive the HTTP header from SOAP request: First we need to add the property “oracle.webservices.http.headers” under binding.ws in Service element in composite.xml. This property contains the comma separated parameters that we are expecting in request. Example,  ENV,VERSION. <binding.ws port="http://xmlns.oracle.com/SOA_Learning/HTTPHeader/HTTPHeaderTest#wsdl.endpoint(httpheadertest_client_ep/HTTPHeaderTest_pt)">          <property name="oracle.webservices.http.headers">ENV,VERSION</property> </binding.ws> Now in BPEL source under receive activity, we need add <fromProperties> element which will copy the parameters from HTTP header to BPEL variable.
Read more

Integrating Weblogic with IBM MQ over JMS

Image
We can integrate weblogic with IBM MQ over JMS by creating Foreign JMS server with Links in weblogic server. We need to create .binding file which will acts as file based JNDI provider to create JMS binding to MQ resources. Will first explain how to create .binding file and then will configure weblogic to use the same. Steps to create .binding file: Firstly we need to add below jar’s in CLASSPATH jms.jar com.ibm.mq.jar com.ibm.mqjms.jar jta.jar connector.jar jndi.jar providerutil.jar fscontext.jar Create JMSProperties.config file with below properties INITIAL_CONTEXT_FACTORY=com.sun.jndi.fscontext.RefFSContextFactory PROVIDER_URL=file:/tmp/mqm/jndi SECURITY_AUTHENTICATION=none Run below command ./JMSAdmin -v JMSProperties . config InitCtx> def qcf(ForeignCF) TRANSPORT(CLIENT) HOST(localhost) PORT(1414) CHANNEL(MQCHANNEL) QMGR(MQMRG) def q(MQ1) qmgr(MQMRG) queue(MQ1) def q(MQR1) qmgr(MQMRG) queue(MQR1) display ctx
Read more