diff --git a/components/org.wso2.openbanking.cds.gateway/src/main/java/org/wso2/openbanking/cds/gateway/handlers/InfoSecDataPublishingHandler.java b/components/org.wso2.openbanking.cds.gateway/src/main/java/org/wso2/openbanking/cds/gateway/handlers/InfoSecDataPublishingHandler.java
deleted file mode 100644
index 4d8fc03a..00000000
--- a/components/org.wso2.openbanking.cds.gateway/src/main/java/org/wso2/openbanking/cds/gateway/handlers/InfoSecDataPublishingHandler.java
+++ /dev/null
@@ -1,188 +0,0 @@
-/**
- * Copyright (c) 2024, WSO2 LLC. (https://www.wso2.com).
- *
- * WSO2 LLC. licenses this file to you under the Apache License,
- * Version 2.0 (the "License"); you may not use this file except
- * in compliance with the License.
- * You may obtain a copy of the License at
- *
- * http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing,
- * software distributed under the License is distributed on an
- * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
- * KIND, either express or implied. See the License for the
- * specific language governing permissions and limitations
- * under the License.
- */
-
-package org.wso2.openbanking.cds.gateway.handlers;
-
-import org.apache.axis2.context.MessageContext;
-import org.apache.commons.lang.StringUtils;
-import org.apache.commons.logging.Log;
-import org.apache.commons.logging.LogFactory;
-import org.apache.synapse.core.axis2.Axis2MessageContext;
-import org.apache.synapse.rest.AbstractHandler;
-import org.wso2.openbanking.cds.common.data.publisher.CDSDataPublishingService;
-import org.wso2.openbanking.cds.gateway.utils.GatewayConstants;
-
-import java.time.Instant;
-import java.time.format.DateTimeFormatter;
-import java.time.temporal.ChronoUnit;
-import java.util.HashMap;
-import java.util.Map;
-import java.util.UUID;
-
-/**
- * Handler to publish data related to infoSec endpoints.
- */
-public class InfoSecDataPublishingHandler extends AbstractHandler {
-
- private static final Log LOG = LogFactory.getLog(InfoSecDataPublishingHandler.class);
- private static final String REQUEST_IN_TIME = "REQUEST_IN_TIME";
-
- @Override
- public boolean handleRequest(org.apache.synapse.MessageContext messageContext) {
-
- // Record the request-in time to be used when calculating response latency for APILatency data publishing
- messageContext.setProperty(REQUEST_IN_TIME, System.currentTimeMillis());
-
- return true;
- }
-
- @Override
- public boolean handleResponse(org.apache.synapse.MessageContext messageContext) {
-
- String messageId = UUID.randomUUID().toString();
-
- // publish api endpoint latency data
- Map latencyData = generateLatencyDataMap(messageContext, messageId);
- CDSDataPublishingService.getCDSDataPublishingService().publishApiLatencyData(latencyData);
-
- // publish api endpoint invocation data
- Map requestData = generateInvocationDataMap(messageContext, messageId);
- CDSDataPublishingService.getCDSDataPublishingService().publishApiInvocationData(requestData);
-
- return true;
- }
-
- /**
- * Create the APIInvocation data map.
- *
- * @param messageContext - Message context
- * @param messageId - Unique Id for the request
- * @return requestData Map
- */
- protected Map generateInvocationDataMap(org.apache.synapse.MessageContext messageContext,
- String messageId) {
-
- Map requestData = new HashMap<>();
-
- MessageContext axis2MessageContext = ((Axis2MessageContext) messageContext).getAxis2MessageContext();
- Map headers = (Map) axis2MessageContext.getProperty(MessageContext.TRANSPORT_HEADERS);
- String contentLength = (String) headers.get(GatewayConstants.CONTENT_LENGTH);
-
- // consumerId is not required for metrics calculations, hence publishing as null
- requestData.put("consumerId", null);
- requestData.put("userAgent", getUserAgent(messageContext));
- requestData.put("statusCode", axis2MessageContext.getProperty(GatewayConstants.HTTP_SC));
- requestData.put("httpMethod", messageContext.getProperty(GatewayConstants.REST_METHOD));
- requestData.put("responsePayloadSize", contentLength != null ? Long.parseLong(contentLength) : 0);
- String[] apiData = getApiData((String) messageContext.getProperty(GatewayConstants.REST_API_CONTEXT));
- requestData.put("electedResource", apiData[0]);
- requestData.put("apiName", apiData[1]);
- // apiSpecVersion is not applicable to infoSec endpoints
- requestData.put("apiSpecVersion", null);
- requestData.put("timestamp", Instant.now().getEpochSecond());
- requestData.put("messageId", messageId);
- requestData.put("customerStatus", GatewayConstants.UNDEFINED);
- requestData.put("accessToken", null);
- return requestData;
- }
-
- /**
- * Create the APIInvocation Latency data map.
- *
- * @param messageContext - Message context
- * @param messageId - Unique Id for the request
- * @return latencyData Map
- */
- protected Map generateLatencyDataMap(org.apache.synapse.MessageContext messageContext,
- String messageId) {
-
- Map latencyData = new HashMap<>();
- long requestInTime = (long) messageContext.getProperty(REQUEST_IN_TIME);
- long requestLatency = System.currentTimeMillis() - requestInTime;
-
- latencyData.put("correlationId", messageId);
- latencyData.put("requestTimestamp", DateTimeFormatter.ISO_INSTANT
- .format(Instant.now().truncatedTo(ChronoUnit.MILLIS)));
- latencyData.put("backendLatency", 0L);
- latencyData.put("requestMediationLatency", 0L);
- latencyData.put("responseLatency", requestLatency >= 0 ? requestLatency : 0L);
- latencyData.put("responseMediationLatency", 0L);
- return latencyData;
-
- }
-
- private String[] getApiData(String context) {
-
- String[] apiData = new String[2];
- String apiName;
- switch (StringUtils.lowerCase(context)) {
- case GatewayConstants.TOKEN_ENDPOINT:
- apiName = GatewayConstants.TOKEN_API;
- break;
- case GatewayConstants.AUTHORIZE_ENDPOINT:
- apiName = GatewayConstants.AUTHORIZE_API;
- break;
- case GatewayConstants.USERINFO_ENDPOINT:
- apiName = GatewayConstants.USERINFO_API;
- break;
- case GatewayConstants.INTROSPECTION_ENDPOINT:
- apiName = GatewayConstants.INTROSPECT_API;
- break;
- case GatewayConstants.JWKS_ENDPOINT:
- apiName = GatewayConstants.JWKS_API;
- break;
- case GatewayConstants.REVOKE_ENDPOINT:
- apiName = GatewayConstants.TOKEN_REVOCATION_API;
- break;
- case GatewayConstants.WELL_KNOWN_ENDPOINT:
- apiName = GatewayConstants.WELL_KNOWN_API;
- break;
- case GatewayConstants.PAR_ENDPOINT:
- apiName = GatewayConstants.PAR_API;
- break;
- default:
- apiName = StringUtils.EMPTY;
- }
- apiData[0] = context;
- apiData[1] = apiName;
- return apiData;
- }
-
- /**
- * Extracts the user agent from the message context.
- *
- * @param messageContext - Message context
- * @return clientId
- */
- private String getUserAgent(org.apache.synapse.MessageContext messageContext) {
-
- MessageContext axis2MessageContext = ((Axis2MessageContext) messageContext).getAxis2MessageContext();
- Map headers = (Map) axis2MessageContext.getProperty(MessageContext.TRANSPORT_HEADERS);
-
- String userAgent;
- if (messageContext.getProperty(GatewayConstants.CLIENT_USER_AGENT) != null) {
- userAgent = (String) messageContext.getProperty(GatewayConstants.CLIENT_USER_AGENT);
- } else if (headers.get(GatewayConstants.CLIENT_USER_AGENT) != null) {
- userAgent = (String) headers.get(GatewayConstants.CLIENT_USER_AGENT);
- } else {
- userAgent = GatewayConstants.UNKNOWN;
- }
-
- return userAgent;
- }
-}
diff --git a/components/org.wso2.openbanking.cds.gateway/src/main/java/org/wso2/openbanking/cds/gateway/utils/GatewayConstants.java b/components/org.wso2.openbanking.cds.gateway/src/main/java/org/wso2/openbanking/cds/gateway/utils/GatewayConstants.java
index 87aefe51..03049089 100644
--- a/components/org.wso2.openbanking.cds.gateway/src/main/java/org/wso2/openbanking/cds/gateway/utils/GatewayConstants.java
+++ b/components/org.wso2.openbanking.cds.gateway/src/main/java/org/wso2/openbanking/cds/gateway/utils/GatewayConstants.java
@@ -91,17 +91,17 @@ private GatewayConstants() {
public static final String WELL_KNOWN_API = "WellKnownAPI";
public static final String PAR_API = "PARAPI";
- public static final String TOKEN_ENDPOINT = "/token";
- public static final String AUTHORIZE_ENDPOINT = "/authorize";
- public static final String JWKS_ENDPOINT = "/jwks";
- public static final String USERINFO_ENDPOINT = "/userinfo";
- public static final String REVOKE_ENDPOINT = "/revoke";
- public static final String INTROSPECTION_ENDPOINT = "/token/introspect";
- public static final String PAR_ENDPOINT = "/par";
- public static final String WELL_KNOWN_ENDPOINT = "/.well-known/openid-configuration";
+ public static final String TOKEN_ENDPOINT = "/oauth2/token";
+ public static final String AUTHORIZE_ENDPOINT = "/oauth2/authorize";
+ public static final String JWKS_ENDPOINT = "/oauth2/jwks";
+ public static final String USERINFO_ENDPOINT = "/oauth2/userinfo";
+ public static final String REVOKE_ENDPOINT = "/oauth2/revoke";
+ public static final String INTROSPECTION_ENDPOINT = "/oauth2/introspect";
+ public static final String PAR_ENDPOINT = "/api/openbanking/push-authorization/par";
+ public static final String WELL_KNOWN_ENDPOINT = "/oauth2/token/.well-known/openid-configuration";
public static final String REGISTER_ENDPOINT = "/register";
public static final String REGISTER_CLIENT_ID_ENDPOINT = "/register/{ClientId}";
- public static final String CDR_ARRANGEMENT_ENDPOINT = "/{cdrArrangementId}";
+ public static final String CDR_ARRANGEMENT_ENDPOINT = "/arrangements/1.0.0";
public static final String DISCOVERY_OUTAGES_ENDPOINT = "/discovery/outages";
public static final String DISCOVERY_STATUS_ENDPOINT = "/discovery/status";
public static final String PRODUCTS_ENDPOINT = "/banking/products";
diff --git a/components/org.wso2.openbanking.cds.gateway/src/test/java/org/wso2/openbanking/cds/gateway/handlers/InfoSecDataPublishingHandlerTest.java b/components/org.wso2.openbanking.cds.gateway/src/test/java/org/wso2/openbanking/cds/gateway/handlers/InfoSecDataPublishingHandlerTest.java
deleted file mode 100644
index 805c14b1..00000000
--- a/components/org.wso2.openbanking.cds.gateway/src/test/java/org/wso2/openbanking/cds/gateway/handlers/InfoSecDataPublishingHandlerTest.java
+++ /dev/null
@@ -1,138 +0,0 @@
-/**
- * Copyright (c) 2024, WSO2 LLC. (https://www.wso2.com).
- *
- * WSO2 LLC. licenses this file to you under the Apache License,
- * Version 2.0 (the "License"); you may not use this file except
- * in compliance with the License.
- * You may obtain a copy of the License at
- *
- * http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing,
- * software distributed under the License is distributed on an
- * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
- * KIND, either express or implied. See the License for the
- * specific language governing permissions and limitations
- * under the License.
- */
-
-package org.wso2.openbanking.cds.gateway.handlers;
-
-import com.wso2.openbanking.accelerator.common.config.OpenBankingConfigParser;
-import com.wso2.openbanking.accelerator.data.publisher.common.util.OBDataPublisherUtil;
-import org.apache.axiom.om.OMElement;
-import org.apache.synapse.MessageContext;
-import org.apache.synapse.commons.json.JsonUtil;
-import org.apache.synapse.config.SynapseConfiguration;
-import org.apache.synapse.core.SynapseEnvironment;
-import org.apache.synapse.core.axis2.Axis2MessageContext;
-import org.mockito.Mockito;
-import org.powermock.core.classloader.annotations.PowerMockIgnore;
-import org.powermock.core.classloader.annotations.PrepareForTest;
-import org.powermock.modules.testng.PowerMockTestCase;
-import org.testng.annotations.BeforeMethod;
-import org.testng.annotations.Test;
-import org.wso2.openbanking.cds.gateway.utils.GatewayConstants;
-
-import java.util.HashMap;
-import java.util.Map;
-import java.util.UUID;
-
-import static org.powermock.api.mockito.PowerMockito.doNothing;
-import static org.powermock.api.mockito.PowerMockito.mock;
-import static org.powermock.api.mockito.PowerMockito.mockStatic;
-import static org.powermock.api.mockito.PowerMockito.when;
-import static org.testng.Assert.assertEquals;
-import static org.testng.Assert.assertNotNull;
-
-/**
- * Test class for InfoSecDataPublishingHandler.
- */
-@PrepareForTest({OpenBankingConfigParser.class, OBDataPublisherUtil.class, JsonUtil.class})
-@PowerMockIgnore("jdk.internal.reflect.*")
-public class InfoSecDataPublishingHandlerTest extends PowerMockTestCase {
-
- MessageContext messageContext;
-
- @BeforeMethod
- public void beforeMethod() throws Exception {
-
- Map configs = new HashMap<>();
- configs.put("DataPublishing.Enabled", "true");
- configs.put(GatewayConstants.CLIENT_USER_AGENT, "dummyAgent");
-
- mockStatic(OpenBankingConfigParser.class);
- OpenBankingConfigParser openBankingConfigParserMock = mock(OpenBankingConfigParser.class);
- when(OpenBankingConfigParser.getInstance()).thenReturn(openBankingConfigParserMock);
- when(openBankingConfigParserMock.getConfiguration()).thenReturn(configs);
-
- SynapseConfiguration synapseConfigurationMock = mock(SynapseConfiguration.class);
- SynapseEnvironment synapseEnvironmentMock = mock(SynapseEnvironment.class);
- org.apache.axis2.context.MessageContext messageContextMock =
- mock(org.apache.axis2.context.MessageContext.class);
- messageContext = new Axis2MessageContext(messageContextMock, synapseConfigurationMock,
- synapseEnvironmentMock);
-
- messageContext.setProperty(GatewayConstants.HTTP_RESPONSE_STATUS_CODE, 500);
- messageContext.setProperty(GatewayConstants.REST_API_CONTEXT, "/token");
- messageContext.setProperty(GatewayConstants.REST_METHOD, "POST");
- org.apache.axis2.context.MessageContext axis2MessageContext = new org.apache.axis2.context.MessageContext();
- axis2MessageContext.setProperty(org.apache.axis2.context.MessageContext.TRANSPORT_HEADERS, configs);
-
- axis2MessageContext.setProperty(GatewayConstants.HTTP_SC, "500");
- ((Axis2MessageContext) messageContext).setAxis2MessageContext(axis2MessageContext);
-
- mockStatic(OBDataPublisherUtil.class);
- doNothing().when(OBDataPublisherUtil.class, "publishData", Mockito.anyString(), Mockito.anyString(),
- Mockito.anyObject());
-
- mockStatic(JsonUtil.class);
- OMElement omElementMock = mock(OMElement.class);
- when(JsonUtil.getNewJsonPayload(Mockito.anyObject(), Mockito.anyString(), Mockito.anyBoolean(),
- Mockito.anyBoolean())).thenReturn(omElementMock);
- }
-
- @Test(description = "Test the attributes in the invocation data map")
- public void invocationDataMapAttributesTest() {
-
- InfoSecDataPublishingHandler handler = Mockito.spy(InfoSecDataPublishingHandler.class);
- String messageId = UUID.randomUUID().toString();
- messageContext.setProperty("REQUEST_IN_TIME", System.currentTimeMillis());
- Map latencyData = handler.generateInvocationDataMap(messageContext, messageId);
- assertEquals(latencyData.get("messageId"), messageId);
- assertEquals(latencyData.get("customerStatus"), GatewayConstants.UNDEFINED);
- assertEquals(latencyData.get("apiName"), GatewayConstants.TOKEN_API);
- assertEquals(latencyData.get("electedResource"), GatewayConstants.TOKEN_ENDPOINT);
- assertNotNull(latencyData.get("timestamp"));
- assertNotNull(latencyData.get("responsePayloadSize"));
- assertNotNull(latencyData.get("httpMethod"));
- assertNotNull(latencyData.get("statusCode"));
- assertNotNull(latencyData.get("userAgent"));
- }
-
- @Test(description = "Test the attributes in the latency data map")
- public void latencyDataMapAttributesTest() {
-
- InfoSecDataPublishingHandler handler = Mockito.spy(InfoSecDataPublishingHandler.class);
- String messageId = UUID.randomUUID().toString();
- messageContext.setProperty("REQUEST_IN_TIME", System.currentTimeMillis());
- Map latencyData = handler.generateLatencyDataMap(messageContext, messageId);
- assertEquals(latencyData.get("correlationId"), messageId);
- assertNotNull(latencyData.get("requestTimestamp"));
- assertNotNull(latencyData.get("backendLatency"));
- assertNotNull(latencyData.get("requestMediationLatency"));
- assertNotNull(latencyData.get("responseLatency"));
- assertNotNull(latencyData.get("responseMediationLatency"));
- }
-
- @Test(description = "Test the ResponseLatency attribute in the latency data map")
- public void latencyDataMapNegativeResponseLatencyTest() {
-
- InfoSecDataPublishingHandler handler = Mockito.spy(InfoSecDataPublishingHandler.class);
- String messageId = UUID.randomUUID().toString();
- messageContext.setProperty("REQUEST_IN_TIME", System.currentTimeMillis() + (60 * 1000));
- Map latencyData = handler.generateLatencyDataMap(messageContext, messageId);
- assertEquals(latencyData.get("responseLatency"), 0L);
- }
-
-}
diff --git a/components/org.wso2.openbanking.cds.gateway/src/test/resources/testng.xml b/components/org.wso2.openbanking.cds.gateway/src/test/resources/testng.xml
index e01cfaa0..69af762c 100644
--- a/components/org.wso2.openbanking.cds.gateway/src/test/resources/testng.xml
+++ b/components/org.wso2.openbanking.cds.gateway/src/test/resources/testng.xml
@@ -27,7 +27,6 @@
-
diff --git a/components/org.wso2.openbanking.cds.identity/src/main/java/org/wso2/openbanking/cds/identity/filter/InfoSecDataPublishingFilter.java b/components/org.wso2.openbanking.cds.identity/src/main/java/org/wso2/openbanking/cds/identity/filter/InfoSecDataPublishingFilter.java
index 522284ec..3b705681 100644
--- a/components/org.wso2.openbanking.cds.identity/src/main/java/org/wso2/openbanking/cds/identity/filter/InfoSecDataPublishingFilter.java
+++ b/components/org.wso2.openbanking.cds.identity/src/main/java/org/wso2/openbanking/cds/identity/filter/InfoSecDataPublishingFilter.java
@@ -263,7 +263,10 @@ public void destroy() {
public boolean shouldPublishCurrentRequestData(ServletRequest request) {
// If the request is internal traffic, no need to publish data
- return expectedExternalTrafficHeaderValue.equalsIgnoreCase(
- ((HttpServletRequest) request).getHeader(externalTrafficHeaderName));
+ if (request instanceof HttpServletRequest) {
+ return expectedExternalTrafficHeaderValue.equalsIgnoreCase(
+ ((HttpServletRequest) request).getHeader(externalTrafficHeaderName));
+ }
+ return false;
}
}
diff --git a/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_AuthorizeAPI_.xml b/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_AuthorizeAPI_.xml
deleted file mode 100644
index da08bb58..00000000
--- a/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_AuthorizeAPI_.xml
+++ /dev/null
@@ -1,35 +0,0 @@
-
-
-
-
-
-
-
-
-
-
-
- 60000
- fault
-
-
-
-
-
-
-
-
-
-
-
-
-
-
diff --git a/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_IntrospectAPI_.xml b/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_IntrospectAPI_.xml
deleted file mode 100644
index af70e972..00000000
--- a/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_IntrospectAPI_.xml
+++ /dev/null
@@ -1,35 +0,0 @@
-
-
-
-
-
-
-
-
-
-
-
- 60000
- fault
-
-
-
-
-
-
-
-
-
-
-
-
-
-
diff --git a/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_OIDCDiscoveryAPI_.xml b/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_OIDCDiscoveryAPI_.xml
deleted file mode 100644
index b9836bf0..00000000
--- a/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_OIDCDiscoveryAPI_.xml
+++ /dev/null
@@ -1,35 +0,0 @@
-
-
-
-
-
-
-
-
-
-
-
- 60000
- fault
-
-
-
-
-
-
-
-
-
-
-
-
-
-
diff --git a/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_PARAPI_.xml b/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_PARAPI_.xml
deleted file mode 100644
index bc4b42cc..00000000
--- a/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_PARAPI_.xml
+++ /dev/null
@@ -1,34 +0,0 @@
-
-
-
-
-
-
-
-
-
-
-
- 60000
- fault
-
-
-
-
-
-
-
-
-
-
-
-
-
diff --git a/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_RevokeAPI_.xml b/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_RevokeAPI_.xml
deleted file mode 100644
index 08188818..00000000
--- a/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_RevokeAPI_.xml
+++ /dev/null
@@ -1,35 +0,0 @@
-
-
-
-
-
-
-
-
-
-
-
- 60000
- fault
-
-
-
-
-
-
-
-
-
-
-
-
-
-
diff --git a/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_TokenAPI_.xml b/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_TokenAPI_.xml
deleted file mode 100644
index c24faaf5..00000000
--- a/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_TokenAPI_.xml
+++ /dev/null
@@ -1,36 +0,0 @@
-
-
-
-
-
-
-
-
-
-
-
- 60000
- fault
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
diff --git a/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_UserInfoAPI_.xml b/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_UserInfoAPI_.xml
deleted file mode 100644
index 44014002..00000000
--- a/toolkits/ob-apim/carbon-home/repository/deployment/server/synapse-configs/default/api/_UserInfoAPI_.xml
+++ /dev/null
@@ -1,35 +0,0 @@
-
-
-
-
-
-
-
-
-
-
-
- 60000
- fault
-
-
-
-
-
-
-
-
-
-
-
-
-
-
diff --git a/toolkits/ob-apim/repository/resources/wso2am-4.2.0-deployment-cds.toml b/toolkits/ob-apim/repository/resources/wso2am-4.2.0-deployment-cds.toml
index 3a61a02b..78075fad 100644
--- a/toolkits/ob-apim/repository/resources/wso2am-4.2.0-deployment-cds.toml
+++ b/toolkits/ob-apim/repository/resources/wso2am-4.2.0-deployment-cds.toml
@@ -150,7 +150,6 @@ websub_event_receiver_http_endpoint = "http://APIM_HOSTNAME:9021"
websub_event_receiver_https_endpoint = "https://APIM_HOSTNAME:8021"
[apim.sync_runtime_artifacts.gateway]
-skip_list.apis = ["_AuthorizeAPI_.xml", "_TokenAPI_.xml", "_OIDCDiscoveryAPI_.xml", "_UserInfoAPI_.xml", "_RevokeAPI_.xml", "_IntrospectAPI_.xml", "_PARAPI_.xml"]
skip_list.sequences = ["jsonConverter.xml"]
gateway_labels =["Default"]
diff --git a/toolkits/ob-bi/carbon-home/deployment/siddhi-files/CDSCurrentPeakTPSApp.siddhi b/toolkits/ob-bi/carbon-home/deployment/siddhi-files/CDSCurrentPeakTPSApp.siddhi
index 93a84937..1129ee76 100644
--- a/toolkits/ob-bi/carbon-home/deployment/siddhi-files/CDSCurrentPeakTPSApp.siddhi
+++ b/toolkits/ob-bi/carbon-home/deployment/siddhi-files/CDSCurrentPeakTPSApp.siddhi
@@ -37,7 +37,7 @@ define function getAspect[JavaScript] return string {
var electedResource = data[0];
var unauthenticatedList = ["/banking/products", "/banking/products/{productId}", "/discovery/status", "/discovery/outages"];
var authenticatedList = ["/banking/accounts", "/common/customer", "/common/customer/detail", "/register", "/register/{ClientId}",
- "/", "/token", "/authorize", "/revoke", "/userinfo", "/token/introspect", "/jwks", "/.well-known/openid-configuration",
+ "/", "/token", "/authorize", "/revoke", "/userinfo", "/introspect", "/jwks", "/.well-known/openid-configuration",
"/banking/accounts/{accountId}", "/banking/accounts/{accountId}/balance", "/banking/accounts/balances",
"/banking/accounts/{accountId}/transactions", "/banking/accounts/{accountId}/transactions/{transactionId}",
"/banking/payees", "/banking/payees/{payeeId}", "/banking/accounts/{accountId}/direct-debits",
diff --git a/toolkits/ob-bi/carbon-home/deployment/siddhi-files/CDSInvocationMetricsApp.siddhi b/toolkits/ob-bi/carbon-home/deployment/siddhi-files/CDSInvocationMetricsApp.siddhi
index a81c3cdd..3adb5dbc 100644
--- a/toolkits/ob-bi/carbon-home/deployment/siddhi-files/CDSInvocationMetricsApp.siddhi
+++ b/toolkits/ob-bi/carbon-home/deployment/siddhi-files/CDSInvocationMetricsApp.siddhi
@@ -36,7 +36,7 @@ define function getPriorityTier[JavaScript] return string {
var customerStatus = data[1];
var unauthenticatedList = ["/banking/products", "/banking/products/{productId}"];
var highPriorityList = ["/banking/accounts", "/discovery/status", "/discovery/outages", "/common/customer", "/common/customer/detail", "/register",
- "/register/{ClientId}", "/", "/token", "/authorize", "/revoke", "/userinfo", "/token/introspect", "/jwks", "/.well-known/openid-configuration"];
+ "/register/{ClientId}", "/", "/token", "/authorize", "/revoke", "/userinfo", "/introspect", "/jwks", "/.well-known/openid-configuration"];
var lowPriorityList = ["/banking/accounts/{accountId}", "/banking/accounts/{accountId}/balance", "/banking/accounts/balances", "/banking/accounts/{accountId}/transactions",
"/banking/accounts/{accountId}/transactions/{transactionId}", "/banking/payees", "/banking/payees/{payeeId}", "/banking/accounts/{accountId}/direct-debits",
"/banking/accounts/{accountId}/payments/scheduled", "/banking/payments/scheduled"];
@@ -90,7 +90,7 @@ define function getAspect[JavaScript] return string {
var electedResource = data[0];
var unauthenticatedList = ['/banking/products', '/banking/products/{productId}', '/discovery/status', '/discovery/outages'];
var authenticatedList = ['/banking/accounts', '/common/customer', '/common/customer/detail', '/register', '/register/{ClientId}',
- '/', '/token', '/authorize', '/revoke', '/userinfo', '/token/introspect', '/jwks', '/.well-known/openid-configuration',
+ '/', '/token', '/authorize', '/revoke', '/userinfo', '/introspect', '/jwks', '/.well-known/openid-configuration',
'/banking/accounts/{accountId}', '/banking/accounts/{accountId}/balance', '/banking/accounts/balances',
'/banking/accounts/{accountId}/transactions', '/banking/accounts/{accountId}/transactions/{transactionId}',
'/banking/payees', '/banking/payees/{payeeId}', '/banking/accounts/{accountId}/direct-debits',
diff --git a/toolkits/ob-is/repository/resources/wso2is-6.0.0-deployment-cds.toml b/toolkits/ob-is/repository/resources/wso2is-6.0.0-deployment-cds.toml
index fa5cfc07..09c66add 100644
--- a/toolkits/ob-is/repository/resources/wso2is-6.0.0-deployment-cds.toml
+++ b/toolkits/ob-is/repository/resources/wso2is-6.0.0-deployment-cds.toml
@@ -173,7 +173,7 @@ allowed_scopes = ["OB.*", "profile"]
renew_refresh_token = false
[oauth.endpoints]
-oauth2_token_url = "${carbon.protocol}://APIM_HOSTNAME:8243/token"
+oauth2_token_url = "${carbon.protocol}://IS_HOSTNAME:${carbon.management.port}/oauth2/token"
oauth2_consent_page = "${carbon.protocol}://IS_HOSTNAME:${carbon.management.port}/ob/authenticationendpoint/oauth2_authz.do"
oidc_consent_page = "${carbon.protocol}://IS_HOSTNAME:${carbon.management.port}/ob/authenticationendpoint/oauth2_consent.do"
@@ -203,7 +203,7 @@ order = 1
[event_listener.properties]
PreventTokenReuse= false
RejectBeforeInMinutes= "100"
-TokenEndpointAlias= "https://APIM_HOSTNAME:8243/token"
+TokenEndpointAlias= "https://IS_HOSTNAME:9446/oauth2/token"
notification_endpoint = "https://APIM_HOSTNAME:9443/internal/data/v1/notify"
username = "${admin.username}"
password = "${admin.password}"
@@ -231,7 +231,7 @@ order = "894"
enable = true
[event_listener.properties]
-EndpointAlias = "https://APIM_HOSTNAME:8243/token/introspect"
+EndpointAlias = "https://IS_HOSTNAME:9446/oauth2/introspect"
[[event_listener]]
id = "cds_par_private_key_jwt_authenticator"
@@ -241,7 +241,7 @@ order = "895"
enable = true
[event_listener.properties]
-EndpointAlias = "https://APIM_HOSTNAME:8243/par"
+EndpointAlias = "https://IS_HOSTNAME:9446/api/openbanking/push-authorization/par"
[[event_listener]]
id = "cds_revoke_private_key_jwt_authenticator"
@@ -251,7 +251,7 @@ order = "896"
enable = true
[event_listener.properties]
-EndpointAlias = "https://APIM_HOSTNAME:8243/revoke"
+EndpointAlias = "https://IS_HOSTNAME:9446/oauth2/revoke"
[[event_listener]]
id = "cds_arrangement_private_key_jwt_authenticator"
@@ -261,7 +261,7 @@ order = "897"
enable = true
[event_listener.properties]
-EndpointAlias = "https://APIM_HOSTNAME:8243/arrangements/1.0.0"
+EndpointAlias = "https://IS_HOSTNAME:8243/arrangements/1.0.0"
[[event_listener]]
id = "cds_token_private_key_jwt_authenticator"
@@ -271,7 +271,7 @@ order = "898"
enable = true
[event_listener.properties]
-EndpointAlias = "https://APIM_HOSTNAME:8243/token"
+EndpointAlias = "https://IS_HOSTNAME:9446/oauth2/token"
[[event_listener]]
id = "private_key_jwt_authenticator"
@@ -302,7 +302,7 @@ order = "902"
enable = false
[event_listener.properties]
-EndpointAlias = "https://APIM_HOSTNAME:8243/token/introspect"
+EndpointAlias = "https://IS_HOSTNAME:9446/oauth2/introspect"
[oauth.grant_type]
iwa_ntlm.enable = false
@@ -546,7 +546,7 @@ step = 2
allowed_values = ["authorization_code", "refresh_token", "client_credentials"]
[open_banking.dcr.registration.audience]
-allowed_values = ["https://APIM_HOSTNAME:8243/token"]
+allowed_values = ["https://IS_HOSTNAME:9446/oauth2/token"]
[open_banking.dcr.registration.token_endpoint_authentication]
allowed_values = ["private_key_jwt"]