Reference for Saltbox API Gateway

This reference aims to provide technical details about Saltbox API Gateway. For tutorials or walkthroughs, see: Saltbox API Gateway Overview.

API Gateway Key Management

API Keys are used to allow secure access to API Gateway. Keys are defined at the project level. Use this page to:

• Generate new keys

• Manage keys
  • Update key names and durations.
  • Deactivate/Activate keys. Keys that are deactivated or keys that have expired can be re-activated manually.
  • Renew keys. When a key expires, it can no longer be used to authenticate. Manually renew an expired key to extend its duration.
  • Regenerate keys. When a key is regenerated, it cannot be restored to its old version. This invalidates the key’s previous token and generates a new one in its place.
• Cancel or Revoke existing keys. Once cancelled, a key cannot be re-activated.

API Keys include:

• Key Name - used to identify one key from another. This name is not used when authenticating, it’s an administrative label only.

• API Key - used when authenticating.
  • Example: x0cw3r+D0jdiA9/7nw2ckS0jSrohq/nGiU9lFGCD4gUJAjmDeYK7a3vQFaB9axL/

• Duration - When this date is reached, the key will no longer work. Use key management to extend this date on an existing key.

• Status (Active, Inactive or Cancelled) - Indicates whether or not the key may be used to authenticate connections to API Gateway.

Testing Tools

Saltbox API Gateway can be tested using API utilities. One such tool is Postman.

Saltbox itself can be used to test of workflow logic, for example, using static sample files and the Route Workflow action from the Core Connector. This approach can be used to automate testing after updating workflow logic that supports a Saltbox API.

Error Codes