#identity-carbon-auth-rest
Custom Header Filter to add customer headers for applications using the resource manager service.
-
Setup WSO2 Identity Server and enable Configuration Manager
https://is.docs.wso2.com/en/latest/develop/using-the-configuration-management-rest-apis/
-
Build the project using Java 11 or Java 17 and copy
org.wso2.carbon.identity.custom.header.filter-${project.version}.jarto the<IS_HOME>/repository/components/dropinsdirectory. -
Open
deployment.tomland enable the CustomHeaderFilter by adding following lines[custom_header_filter] enable = true -
Create custom header configurations through the Configuration Manager API.
- Enable the Custom Header Filter by adding the resource type
custom-headers.
curl -k -X POST https://localhost:9443/api/identity/config-mgt/v1.0/resource-type \ -H "accept: application/json" -H 'Content-Type: application/json' \ -H 'Authorization: Basic YWRtaW46YWRtaW4=' \ -d '{"name": "custom-headers", "description": "This is the resource type for custom header resources."}'- Create a new app along with headers to be written.
e.g Create a header named
Content-Securityfor the applicationwso2app.curl -k -X POST https://localhost:9443/api/identity/config-mgt/v1.0/resource/custom-headers \ -H "accept: application/json" -H 'Content-Type: application/json' \ -H 'Authorization: Basic YWRtaW46YWRtaW4=' \ -d '{"name": "wso2app","attributes": [{"key":"Content-Security", "value":"values"}]}'- You can add headers to an existing app as follows.
e.g Add headers to the existing
wso2appapp.curl -k -X POST https://localhost:9443/api/identity/config-mgt/v1.0/resource/custom-headers/wso2app \ -H "accept: application/json" -H 'Content-Type: application/json' -H 'Authorization: Basic YWRtaW46YWRtaW4=' \ -d '{"key":"Content-Security-Policy", "value":"values"}' - Enable the Custom Header Filter by adding the resource type