How To Protect Static Content In OAG?

(Doc ID 2125497.1)

Last updated on APRIL 12, 2016

Applies to:

Oracle API Gateway - Version 11.1.2 and later
Information in this document applies to any platform.


A Static Content provider has been set up in OAG.   This is performed for the Default Services listener by following the menu trail  paths > add > static content provider.

This works as expected for server HTML based static content.

It is now necessary to protect this static content, so a user is authenticated prior to being able to view it.

How is this achieved?

There appears to be no way of adding a policy for authentication of static content.


Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms