HKM Consulting, LLC Website

Main Content

Booknds, a Swagger Graphical Editor

Posted by Chris on February 23, 2016






As we work with clients building APIs and Microservices, the Swagger 2.0 spec has been very helpful in providing a documentation endpoint for consumers. Currently however, Swagger does not provide graphical tools to define an API. Therefore we created a free open-source graphical Swagger editor to help leverage the standard and easily define APIs within […]

Posted in Swagger | No Comments »

Service Virtualization Overview

Posted by Chris on February 22, 2016






In a lot of organizations, Agile is pushing teams to work in parallel vs. in a sequential way. The demands to delivery solutions every 2, 4 or 6 weeks demands teams be able to act independently if possible. For a long time, we have leveraged Smartbear’s SoapUI solution which introduced Mock Services several years ago. […]

Posted in API, Smartbear, Swagger | No Comments »

Pass-through of OAuth2 Token to backend API

Posted by Chris on February 19, 2016






If you are using WSO2 API Manager, the default behavior for the OAuth2 Tokens is that they are stripped from outbound responses by the APIAuthenticationHandler. In certain instances, you may want to pass this token as is to the backing API for user credentials. The following post points out that the api-manager.xml has a configuration […]

Posted in API, WSO2 | No Comments »

Simple HTTP Handler in WSO2 API Manager

Posted by Chris on February 5, 2016






Recently had to access a custom HTTP Header in WSO2 API Manager and have it be executed before the APIAuthenticationHandler was executed. To do this, created a handler using the example provided at WSO2. When using handlers, if you want the request / response to flow through this handler to the next, it is necessary […]

Posted in WSO2 | No Comments »

Ping Federate Integration with WSO2 API Manager

Posted by Chris on February 5, 2016






Ping Federate in its current form does not support Dynamic Client Registration draft but does provide several Administration APIs. Using the Third Party Key Manager support one can use the AbstractKeyManager and use the createApplication(), retrieveApplication(), getTokenMetaData() and other methods to interact with the oauth/clients resource. Documentation is available @ https://Ping_Federate_ Hostname:9999/pf-admin-api/api-docs.

Posted in Security, WSO2 | No Comments »