无法使用Java API将资源推送到WSO2 API管理器v2.0.0注册表

使用Java API将资源推送到APIM 2.0.0的注册表失败。

对APIM 1.10.0使用的相同代码成功。

复制排序为

的示例代码

    String tenantDomain = “mytenant.com"; 
    String url = "https://localhost:9443/t/"+tenantDomain+"/registry"; 
    String userName = “admin@mytenant.com"; 
    String password = “admin"; 
    System.setProperty("carbon.repo.write.mode", "true"); 

    //Get the file which needs to be added to the registry
    File file = new File(“/home/bob/Desktop/myPayload.json"); 
    RemoteRegistry remote_registry = new RemoteRegistry(new URL(url), userName, password); 
    //Import the file to config registry
    RegistryClientUtils.importToRegistry(file ,"/_system/config" ,remote_registry); 
    //Export  from registry 
    //RegistryClientUtils.exportFromRegistry(file ,"/_system/governance/SomePayload.json" ,remote_registry);

对RegistryClientUtils.importToRegistry(file ,"/_system/config" ,remote_registry);的调用将失败。在APIM 1.10.0上运行相同的代码可以很好地工作，就像在ESB等其他产品上一样。

典型的例外是:

肇因:org.wso2.carbon.registry.core.exceptions.RegistryException:添加资源失败。建议路径:/_system/管理/apimgt applicationdata/customdata/somedata,响应状态:403，响应类型:CLIENT_ERROR atorg.wso2.carbon.registry.app.RemoteRegistry.put (RemoteRegistry.java: 543)在org.wso2.carbon.registry.core.utils.RegistryClientUtils.processImport (RegistryClientUtils.java: 113)在org.wso2.carbon.registry.core.utils.RegistryClientUtils.processImport (RegistryClientUtils.java: 102)在org.wso2.carbon.registry.core.utils.RegistryClientUtils.processImport (RegistryClientUtils.java: 102)在org.wso2.carbon.registry.core.utils.RegistryClientUtils.processImport (RegistryClientUtils.java: 102)在org.wso2.carbon.registry.core.utils.RegistryClientUtils.importToRegistry (RegistryClientUtils.java: 65)

在APIM 2.0.0日志中我们通常看到

[2016-08-18 15:57:34,699] WARN - JavaLogger潜在的跨站点请求伪造(CSRF)攻击被挫败(user:，知识产权:127.0.0.1,方法:,uri:/注册/atom/_system/管理/apimgt/applicationdata/customdata/somedata,错误:请求中缺少所需的令牌)

org.owasp.csrfguard.unprotected.reg=%servletContext%/registry/*