The Apex Signature Validator is an AngularJS application that assists APEX API consumers in verifying whether signatures are generated correctly in their applications when making restful API calls to the APEX API Gateway. See it in action here.
You can find out more about Apex signature generation from our reference Node.js implementation at https://github.com/GovTechSG/node-apex-api-security.
This fork includes a microservice that serves the validator frontend and provides a backend to route test requests through. This allows users to make test API calls without having to configure CORS on their Apex gateway.
$ docker build --tag {container_tag} .
$ docker run --name {container_name} \
-p 3544:3544 \ # Publish application port
{container_tag}
The container will serve the signature validator front-end (e.g. http://localhost:3544, or your own webserver URL) and expose an API that the front-end will use to make HTTP calls.
-
Based on: https://github.com/GovTechSG/apex-signature-validator. A more comprehensive readme is hosted there.
-
To merge frontend changes, add https://github.com/GovTechSG/apex-signature-validator as a remote and pull from its master. Recommend pulling into a branch that isn't master:
$ git branch -b frontend # use a non-master branch
$ git remote add frontend https://github.com/GovTechSG/apex-signature-validator
$ git pull frontend master
- After pulling changes, do a PR from the frontend branch to master.