Ensure api managers can disable API key check on Backends

[kyyberi]

Original report (by @kyyberi)

Even if I selected that API key is optional (and also selected unlimited requests), when testing the API response was:
API_KEY_MISSING

Definition of done (by @bajiat, by @brylie modified due to Multiproxy work)

• Make sure the disable api key field in added to and stored in Proxy backend collection
• Make sure the properties of the field are aligned with Api Umbrella
• Make sure the field is passed correctly to the Admin REST API
• Make sure it gets stored properly in API Umbrella
• There needs to be setting in the Proxy tab in API profile

Wireframe

[kyyberi]

Works with api_key parameter though

[bajiat]

@kyyberi To what server are you making the request? Specifically, are you making the request to Api Umbrella server? If that is the case, this is an upstream bug.

[kyyberi]

I'm using API managed by APIKA, but obviously the actual API calls go through Umbrella. In those cases, api_key is always required. References API is Lentodiilit REST API

[bajiat]

@brylie Should we check the Edit API backend form that the data gets passed correctly?

[brylie]

@bajiat jep. Specifically, we need to make sure the configuration object sent to API Umbrella conforms to the REST API request requirements:

{
  "api": {
    "id": "string",
    "name": "string",
    "sort_order": 0,
    "backend_protocol": "http",
    "frontend_host": "string",
    "backend_host": "string",
    "servers": [
      {
        "id": "string",
        "host": "string",
        "port": 0
      }
    ],
    "url_matches": [
      {
        "id": "string",
        "frontend_prefix": "string",
        "backend_prefix": "string"
      }
    ],
    "balance_algorithm": "least_conn",
    "settings": {
      "id": "string",
      "append_query_string": "string",
      "headers": [
        {
          "id": "string",
          "key": "string",
          "value": "string"
        }
      ],
      "headers_string": "string",
      "default_response_headers": [
        {
          "id": "string",
          "key": "string",
          "value": "string"
        }
      ],
      "default_response_headers_string": "string",
      "override_response_headers": [
        {
          "id": "string",
          "key": "string",
          "value": "string"
        }
      ],
      "override_response_headers_string": "string",
      "http_basic_auth": "string",
      "require_https": "required_return_error",
      "require_https_transition_start_at": "2016-01-12T09:23:24.660Z",
      "disable_api_key": true,
      "api_key_verification_level": "none",
      "api_key_verification_transition_start_at": "2016-01-12T09:23:24.660Z",
      "required_roles": [
        "string"
      ],
      "required_roles_override": true,
      "allowed_ips": [
        "string"
      ],
      "allowed_referers": [
        "string"
      ],
      "rate_limit_mode": "unlimited",
      "rate_limits": [
        {
          "id": "string",
          "duration": 0,
          "accuracy": 0,
          "limit_by": "ip",
          "distributed": true,
          "response_headers": true
        }
      ],
      "anonymous_rate_limit_behavior": "ip_fallback",
      "authenticated_rate_limit_behavior": "all",
      "pass_api_key_header": true,
      "pass_api_key_query_param": true,
      "error_templates": {},
      "error_data": {},
      "error_data_yaml_strings": {}
    },
    "sub_settings": [
      {
        "id": "string",
        "http_method": "any",
        "regex": "string",
        "settings": {
          "id": "string",
          "append_query_string": "string",
          "headers": [
            {
              "id": "string",
              "key": "string",
              "value": "string"
            }
          ],
          "headers_string": "string",
          "default_response_headers": [
            {
              "id": "string",
              "key": "string",
              "value": "string"
            }
          ],
          "default_response_headers_string": "string",
          "override_response_headers": [
            {
              "id": "string",
              "key": "string",
              "value": "string"
            }
          ],
          "override_response_headers_string": "string",
          "http_basic_auth": "string",
          "require_https": "required_return_error",
          "require_https_transition_start_at": "2016-01-12T09:23:24.663Z",
          "disable_api_key": true,
          "api_key_verification_level": "none",
          "api_key_verification_transition_start_at": "2016-01-12T09:23:24.663Z",
          "required_roles": [
            "string"
          ],
          "required_roles_override": true,
          "allowed_ips": [
            "string"
          ],
          "allowed_referers": [
            "string"
          ],
          "rate_limit_mode": "unlimited",
          "rate_limits": [
            {
              "id": "string",
              "duration": 0,
              "accuracy": 0,
              "limit_by": "ip",
              "distributed": true,
              "response_headers": true
            }
          ],
          "anonymous_rate_limit_behavior": "ip_fallback",
          "authenticated_rate_limit_behavior": "all",
          "pass_api_key_header": true,
          "pass_api_key_query_param": true,
          "error_templates": {},
          "error_data": {},
          "error_data_yaml_strings": {}
        }
      }
    ],
    "rewrites": [
      {
        "id": "string",
        "matcher_type": "route",
        "http_method": "any",
        "frontend_matcher": "string",
        "backend_replacement": "string"
      }
    ],
    "created_at": "2016-01-12T09:23:24.665Z",
    "creator": {
      "username": "string"
    },
    "updated_at": "2016-01-12T09:23:24.666Z",
    "updater": {
      "username": "string"
    }
  }
}

[brylie]

I think there are two possible candidate fields in the above configuration:

...
"disable_api_key": true,
"api_key_verification_level": "none",

[kyyberi]

"disable_api_key": true is more self explanatory

[brylie]

Right, this is API Umbrella functionality though. So, we need to figure out which field(s) API Umbrella uses to control the API Key requirement.

[brylie]

As @kyyberi indicates, lets test the disable_api_key first, and issue a fix if that is the correct setting.

[brylie]

When submitting our Edit API Backend form, the 'disable api key' field data is not being updated on API Umbrella. We need to make sure our integration code is passing the updates to all API Backend configuration fields.
Related to issue #833

[brylie]

Copied from #833:

We have a field on the "Edit API Backend" form to toggle the API Key check, but the changes are not made on API Umbrella. We need to make sure our integration code is passing the updates to all API Backend configuration fields.

[Nazarah]

@NNN what are your ideas about how the interface should look? please let me know.

[Nazarah]

@NNN : I've added the wireframes. One is the checkbox you suggested and another is toggling option. Please review them and give your feedback.
Suggestions for the text is also welcomed.

P.S. I;ve added only the field for this task only, As there might be other fields in the proxy tab, but the UI is not yet ready, you can place this field where convenient.

[55]

I like with simple checkbox, let's go with it.

[bajiat]

@NNN What is the status?