<html><head>
<meta http-equiv="Content-Type" content="text/html; charset=Windows-1252"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; color: rgb(0, 0, 0); font-size: 14px; font-family: Calibri, sans-serif;"><div>Hi. Not sure if there are already posting similar to the issue I’m having (or maybe the feature may not be in place yet). My requirement is to secure the back-end API endpoints with keycloak. It was a bit of a pain because the apis were developed in node.js and there was really not a whole lot of examples or library on how to accomplish this. Anyway, I think I was finally able to do this, however, once I had put the protection in place, the endpoints stopped working in Apiman. I’m not quite sure how to forward the credentials to allow it to access the endpoints. I think the closest posting I found that may be similar to what I need is: </div><div><br></div><div><a href="http://lists.jboss.org/pipermail/apiman-user/2015-March/000030.html">http://lists.jboss.org/pipermail/apiman-user/2015-March/000030.html</a> </div><div><br></div><div>I guess what I wanted to find out is whether or not what I’m trying to do is possible at this time as I have researching and trying to search for more info on how to accomplish this and haven’t had any luck doing so.</div><div><br></div><div>I appreciate any help you can extend. Thanks in advance.</div><div><br></div><div>Jeanette</div><div><br></div><div><div><br></div><div><p class="MsoNormal" style="margin: 0in 0in 0.0001pt; font-size: 11pt;"></p></div></div><P>Notice: This e-mail message, together with any attachments, contains<br>information of Merck & Co., Inc. (2000 Galloping Hill Road, Kenilworth, <br>New Jersey, USA 07033), and/or its affiliates Direct contact information<br>for affiliates is available at <br>http://www.merck.com/contact/contacts.html) that may be confidential,<br>proprietary copyrighted and/or legally privileged. It is intended solely<br>for the use of the individual or entity named on this message. If you are<br>not the intended recipient, and have received this message in error,<br>please notify us immediately by reply e-mail and then delete it from <br>your system.</P></body></html>