Sometimes you don't want your clients to access the Service over HTTP. Since some security considerations, in such a case, you may want to build an HTTPS-only Service on API7 Cloud.
Configure SSL Object
Follow the tips in How to Create SSL Object and upload the server certificate, private key, CA certificate, API7 Cloud creates an SSL object.
In this guide, we use
openssl to generate a self-signed certificate.
openssl req -x509 -nodes -new -keyout cloud.key -out cloud.crt -days 3650 -subj "/C=/ST=/L=/O=/OU=web/CN=cloud.httpbin.org"
Configure HTTPS Protocol for Service
After you sign in to API7 Cloud, please go ahead according to the following steps:
- Go to the Service list page by clicking on the Service button under API Management (in the left sidebar).
- Search the target Service that you want to configure HTTPS protocol, clicking on the edit button.
- You'll be redirected to the Service edit page, configuring the
HTTPSand saving the changes.
In our case, the target Service has the following characteristics:
- The host is
- The upstream target is
- Path prefix is
- There is a JSON route (the endpoint is
Send requests to verify
Since we only enable HTTPS protocol, if we try to access a route in this service,
we should get a
301 Moved Permanently response asking us to use HTTPS protocol.
curl http://127.0.0.1:9080/v1/json -H 'Host: cloud.httpbin.org' -i
HTTP/1.1 301 Moved Permanently
Date: Fri, 15 Apr 2022 03:04:23 GMT
<head><title>301 Moved Permanently</title></head>
<center><h1>301 Moved Permanently</h1></center>
As expected, Apache APISIX asks us to access the HTTPS endpoint.
curl https://cloud.httpbin.org:9443/v1/json --resolve 'cloud.httpbin.org:9443:127.0.0.1' -sk
"author": "Yours Truly",
"date": "date of publication",
"title": "Wake up to WonderWidgets!",
"Why <em>WonderWidgets</em> are great",
"Who <em>buys</em> WonderWidgets"
"title": "Sample Slide Show"
We got a successful response when we accessed the HTTPS endpoint.
Since the certificate we use was self-signed, we added the
-k option in the above curl command.