Fortinet black logo

Handbook

Home FortiADC 7.4.2 Handbook
7.4.2
7.4.3
7.4.2
7.4.1
7.4.0
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.1.4
7.1.3
7.1.2
7.1.1
7.1.0
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
6.2.0
6.1.6
6.1.5
6.1.4
6.1.3
6.1.2
6.1.1
6.1.0
6.0.1
6.0.0
5.4.3
5.4.2
5.4.1
5.4.0
5.3.6
5.3.5
5.3.4
5.3.3
5.3.2
5.3.1
5.3.0
5.2.7

Configuring an API Gateway User

Configuring an API Gateway User

1. Go to Web Application Firewall > API Gateway.

2. Click the API Gateway User tab.

3. Click Create New to display the configuration editor and set up the configuration.

4. Save the configuration.

Settings

Guidelines

Name

Configuration name. Valid characters are A-Z, a-z, 0-9, _, and -. Whitespaces are not allowed. After you initially save the configuration, you cannot edit the name.

Comments

(Optional) Enter a description or comments for the user.

UUID

Non-editable. Automatically generated when the user is created.

API Key

 Non-editable. Automatically generated when the user is created.

Restricted Access IPs

 Restrict this API key so that it may only be used from the specified IP addresses.

Restrict HTTP Referers

Restrict this API key so that it may only be used when the specified URLs are present in the Referer HTTP header. This can be used to prevent an API key from being reused on other client-side web applications that don’t match this URL.

Only full URLs that begin with http:// or https:// are supported.
Previous
Next

Configuring an API Gateway User

1. Go to Web Application Firewall > API Gateway.

2. Click the API Gateway User tab.

3. Click Create New to display the configuration editor and set up the configuration.

4. Save the configuration.

Settings

Guidelines

Name

Configuration name. Valid characters are A-Z, a-z, 0-9, _, and -. Whitespaces are not allowed. After you initially save the configuration, you cannot edit the name.

Comments

(Optional) Enter a description or comments for the user.

UUID

Non-editable. Automatically generated when the user is created.

API Key

 Non-editable. Automatically generated when the user is created.

Restricted Access IPs

 Restrict this API key so that it may only be used from the specified IP addresses.

Restrict HTTP Referers

Restrict this API key so that it may only be used when the specified URLs are present in the Referer HTTP header. This can be used to prevent an API key from being reused on other client-side web applications that don’t match this URL.

Only full URLs that begin with http:// or https:// are supported.
Previous
Next