We’re just about to expand our connections to NHS Digital API’s (MESH, LDAP and PDS).
I’m not sure which certs I need for which system + environment but it sounds like I would need a few.
Previously I’ve added the certificates to java based Apache Camel and deployed a security proxy to AWS ECS. So the consuming client just works with our security and calls our ECS security proxy, this adds/removes the necessary headers and then sends the request out on a connection which uses the SSL/TLS certificate.
However that needs a lot of java config and wondering if there is something more flexible?
Something like a reverse proxy where I can apply a cert to the outbound connection.
(I’ll probably still handle the http headers in code as this can get complicated)