Upgrade to Pro — share decks privately, control downloads, hide ads and more …

API Gateway in a Nutshell 2019

Allan Chua
April 18, 2019

API Gateway in a Nutshell 2019

This presentation describes API gateways, the use case why you would be in need of it, the different implementation variations and common pitfalls associated with using them.

Allan Chua

April 18, 2019
Tweet

More Decks by Allan Chua

Other Decks in Technology

Transcript

  1. Use Cases 0 0 0 0 ___ Various Implementations 0

    ------ 0 ------ 0 ------ Containers vs Functions ------ ------ ------ ------ ------ ------ - Caution Agenda
  2. Products API Customers API Transactions API Consumers face a lot

    of challenges Orders API Deliveries API o X X ___
  3. Multiple Retrieval + Attack Points 0 0 0 0 ___

    Multiple Domain Names, SSL Certs and CORS http://foo.com http://bar.com http://ses.com Authentication Hell Client-side Issues
  4. Products API Authentication Rate Limiting Logging Orders API Authentication Rate

    Limiting Caching Transactions API Authentication Logging Caching Clients / Consumers Inconsistencies and Duplications
  5. Products API Customers API Transactions API Orders API Deliveries API

    Stocks API API Gateway API Gateway to the Rescue
  6. Proxying is one of the jobs of a gateway. API

    Gateway Authentication Rate Limiting Logging Reverse Proxy Caching Monitoring Tracing Authorization Authorization
  7. Centralized Cross Cutting Concerns API Gateway - Logging - Authentication

    - Rate Limiting / QOS - Licensing - Monitoring - Tracing
  8. Consumer ASIA Europe Products Transactions Users Latency of 55 MS

    55 MS x 3 = 165 MS Total Response Time W/O Gateway
  9. Consumer API Gateway ASIA Europe Products Transactions Users Latency of

    55 MS Latency of 2 MS With Gateway Asia to EU = 55 MS EU to EU = 2 MS x 3 instances TOTAL Response Time = 61 MS
  10. Public / Private APIs API Gateway Orders API Stocks API

    Products API A C B A B A B PUBLIC PRIVATE Jobs E D C D C D
  11. Cloud Provider Pros Cons - Easy to Provision - Easy

    to Scale - Easy Integration - Low latency (Edge) - Compliance Issues - Vendor Lock-in! - Testing on Cloud ☺
  12. Vendor Provider Pros Cons - Compliance Friendly - Easy Integration

    - Plugins - Specialist Required - Additional Setup - Vendor Lock-in!
  13. Pluggable Gateways Pros Cons - Open-source (Free) - On-Premise |

    Cloud - Compliance Friendly - Easy Migrations - Development Knowledge - Short Hype Lifespan - Framework Lock-in
  14. Container - Predictable Traffic - Legacy Application - Latest Environments

    - King of On-Premise - Long Running Tasks Serverless - Unlimited Traffic - New Projects - No so latest (Node 8.10) - Better in Cloud Environments - Short Quick Processing Containers vs Functions as Downstream Sources
  15. - Additional Development Cost - Added Latency - Single Point

    Failure - Configuration Monolith - Common point of check-in conflict CONS
  16. Q&A