Global policies allow you to enforce corporate standards and centralize governance with common security and logging policies. And all of these without impacting API development. Global policies can be set up to be executed just before, or just after, each of your API assemblies. Thus it allows enforcement of common enterprise policies across all APIs.

The video below walks you through uploading and setting up a global policy. You can find the artifacts used in the demo here

You can read more on this on the knowledge center

After I posted this video, one of my friends had reached out for a sample for using Redact policy within the context of Global Policies. I created a sample here

1 comment on"Global Policies for Corporate Governance"

  1. I got an inquiry on the commands I used. I realized the video quality is not great.

    Command to upload the global policy. It is scoped to a gateway service that has been configured.

    apic global-policies:create –scope catalog –server [server-name] –org [org-name] –catalog [catalog-name] –configured-gateway-service [configured-gw-service-name] [global-policy-file.yaml]

    Copy the output resource identifier URL from the above command. Put them in a yaml file with the key global_policy_url (you can find the sample file in the github repo)

    To set this global policy as the pre-hook

    apic global-policy-prehooks:create –scope catalog –server [server-name] –org [org-name] –catalog [catalog-name] –configured-gateway-service [configured-gw-service-name] [Yaml file with the o/p url]

    If you are using a post-hook, you will use the global-policy-posthooks

Join The Discussion

Your email address will not be published. Required fields are marked *