API without Security can be invoked from Devportal without signing in - however The access token message is still on screen

wso2 / api-manager

All issues, tasks, improvements and new features of WSO2 API Manager

Apache License 2.0

34 stars 8 forks source link

API without Security can be invoked from Devportal without signing in - however The access token message is still on screen #881

Closed robbla closed 1 year ago

robbla commented 2 years ago

Description

When you create an API WITHOUT Security, the API can be invoked from the Devportal, however the screen still shows a message

I do not need to log in , nor do i need to subscribe or even supplu a token

Steps to Reproduce

Affected Component

APIM

Version

4.1.0

Environment Details (with versions)

regular Linux Centos env

Relevant Log Output

None

Related Issues

None

Suggested Labels

No response

GihanAyesh commented 1 year ago

As you said, this scenario happens when no security is applied to the invoking API resources. Usually, the API end user does not know the security information of the API resources, which is only decided by the API creator at the time of API creation. Hence, this is a generic message shown to the end user. However, showing the warning icon in the notice can be misleading for APIs without security. So the warning icon is changed into an info icon.

GihanAyesh commented 1 year ago

Added the PR https://github.com/wso2/apim-apps/pull/406 to change notice icon

GihanAyesh commented 1 year ago

Please comment if you request further clarification. Closing the issue