API Gateway

THE LAYER BETWEEN CLIENTS AND BACK-END APIs

Play Video

Overview

Handle common needs of all APIs centrally without coding and make APIs business centric.

  • Create proxies for APIs to apply policies
  • Create, deploy, and undeploy versions of proxies independently
  • Group proxies to manage them together
  • Use policy templates to configure proxies in seconds

Authentication
Authorization

  • Various Identity Providers
  • ACL and RBAC
  • OAuth2 or JWT token creation and/or validation
  • SAML messages validation
  • WS-Security for SOAP Services

Advanced Security

  • SSL/TLS support
  • Message-based encryption, decryption, digital signing and digital signature verification
  • Regex filters
  • XML/JSON schema validation
  • Ensure the privacy of data

Data Manipulation

  • Rest-Soap protocol transformation
  • XML & JSON message transformation
  • Redaction
  • Rule-based message customization
  • Ability to modify data with Groovy or JavaScript

Routing

  • Intelligent load balancing
  • Conditional routing
  • Retry and Failover
  • Circuit breaker
  • Client banner

Traffic Management

  • API/Client based Throttling
  • API/Client based Quota
  • White/Black IP Lists
  • Time restriction

Logging

  • Highly customizable
  • Sensitive data handling
  • Syslog integration
  • Full-Text-Search capability

Multiple Environments

  • Isolation of system resources and APIs
  • Prod / Sandbox / Dev environments for API lifecycle management
  • Publishing multiple revisions of same API concurrently