Backstage Integration
Create an integration to request, view, and approve access via Backstage
The Apono Backstage integration allows you to configure Apono as a custom plugin in your Backstage app. This plugin brings Apono's Just-in-Time (JIT) access management to the forefront, making it easily accessible to developers within Backstage. With this integration, you can now effortlessly connect your Backstage app to Apono and manage access directly from the Backstage interface.
Prerequisites
Generate RSA Private & Public Keys using OpenSSL using the following commands. Be sure to copy both public & private keys encoded as base64 to use later.
Apono uses OpenSSL keys to ensure secure communication between your Backstage app and the Apono API. By using OpenSSL keys, you can securely interact with the Apono API, ensuring that your data remains protected and your identity is verified.
Create a Backstage app with an intention to add an existing plugin to it. For more information on Apono plugin for Backstage frontend and backend app.
Install yarn (
yarn install
) and install any dependencies.
Configuration steps
In Apono
On Backstage integration page, provide the following information about your Backstage environment:
Integration Name
The integration name.
Yes
Under Secret Store, paste your base64-encoded public key.
Click Connect.
In Backstage
Add Apono plugin to Backstage Frontend App
To create a new Apono frontend plugin, run the following on your command line from the root of your project.
The plugin is added to the app
package, rather than the root package.json. Backstage Apps are set up as monorepos with Yarn workspaces. Since CircleCI is a frontend UI plugin, it goes in app
rather than backend
.
Update router for the
AponoPage
inside packages/app/src/App.tsx.
In your app-config.yaml file, add the Apono client URL to your Content Security Policy to allow the Apono plugin to load its content in an iframe.
Add Apono plugin to Backstage Backend App
To attach and run the Apono plugin, you will make some modifications to your backend.
Add Apono plugin to your backend system packages as dependencies. Run the following command.
Update packages/backend/src/index.ts.
In app-config.yaml, configure Backstage to connect to the Apono API.
Backstage Sidebar Update
(Example) Add Apono plugin to Backstage sidebar. Update the Backstage sidebar in packages/app/src/components/Root/Root.tsx with the following code.
Troubleshooting
The following error occurs when you try to enter Apono app on your Backstage app:
Request failed with status code 401 / Failed to load application
This issue might occur when you accidentally delete your Apono Backstage integration.
To resolve this issue, recreate the Backstage integration in your Apono account with the Public Key defined in your Backstage app.
To find your public key, go to app-config.yaml on your Backstage app repo and look for:
Last updated