Cloud APIs
/
/
/
Secure Subscription
Last updated

Secure a Subscription Endpoint URL

Configuring Endpoint URL

To receive messages from NTM, you need a publicly accessible HTTPS server to handle POST requests.

You can securely receive the messages by validating the SAuth token that NTM includes in the Authorization header of the POST request.


The following are some ways you can validate the SAuth token sent by NTM.

Server hosted in Google Cloud environment

Use Google Cloud endpoints as a service with the below security definition. Refer "Notes" section for the effective date of the below change.

Security Definition
"securityDefinitions": {
   "sauth_token": {
     "authorizationUrl": "",
     "flow": "implicit",
     "type": "oauth2",
     "x-google-issuer": "https://csi.slb.com/v2",
     "x-google-jwks_uri": "https://csi.slb.com/v2/certs",
     "x-google-audiences": "SUBSCRIBER-CLIENT-IDENTITY"
   }
},
"security": [
   {
     "sauth_token": [ ]
   }
]

Server hosted in Non-Google Cloud environment

Please refer to Cloud Security: Authentication & Authorization on how to validate a token. You can validate the token locally or by making a service call to JWT Validation Endpoint.


Consume Subscribe Service

Interpret Push Notification