Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

Using a swagger file to create an ASM policy for an API in BIG IP Ver-15

saidshow
Cirrus
Cirrus

‎15-Aug-2019 20:03

Hi,

 

I had heard that in BIG IP Ver15 that you could create an ASM policy for an API using the swagger file for the that API. Can anyone point me in the direction of the documentation on this? We have just upgraded a TEST system to Ver15 and I want to use the swagger file I have to create the policy for the API.

 

Thank you

Labels:
0 Kudos
4 REPLIES 4

suttonsc
F5 Employee
F5 Employee

‎27-Feb-2020 14:28

In v15, when creating a policy you can set the "Policy Template" to "API Security" and then upload the Swagger file via "OpenAPI (Swagger) File" -> "Upload File"

 

0691T000008GO0YQAW.png

 

 

0 Kudos

Frank_Thias
F5 Employee
F5 Employee

‎25-Jun-2020 23:17

Please note that Swagger import is only available for Advanced WAF. The configuration is straight forward. Just import the file. Afterwards Advanced WAF can enforce the API-Endpoint structure including HTTP methods and parameters.

 

0691T000008trPLQAY.png

0691T000008trPQQAY.png

0 Kudos

aalzohimeel
Nimbostratus
Nimbostratus
In response to Frank_Thias

‎05-Dec-2022 02:23

Hi,

is it possible to have multiple Swagger files added to the policy?

 

0 Kudos

Ysiak
Altostratus
Altostratus
In response to aalzohimeel

‎17-May-2023 06:51

No, you can not have multiple swagger files in one ASM Policy. You could merge all API settings to one swagger file (this is not a copy-paste thing), or use multiple ASM Policies where each includes one swagger file for one API service/microservice then match them properly in LTM policy or Irule based on URL (application context)

0 Kudos
Copyright © 2023 Khoros, LLC