Upgrade to Pro — share decks privately, control downloads, hide ads and more …

API Gateways - Dealing with Distributed Backends

Allan Chua
November 21, 2018
Programming
0
130

API Gateways - Dealing with Distributed Backends

The presentation aims to showcase how API gateways solves the issues associated with distributed back-ends (Microservices and APIs) from a front-end developer's point of view.

Allan Chua

November 21, 2018
Tweet

More Decks by Allan Chua

See All by Allan Chua
Sneak Peek at Kali Linux
allanchua101
0
64
Node JS for Architects Part 1
allanchua101
0
220
Traditional, N-Tier & Microservices
allanchua101
0
47
Introduction to React
allanchua101
0
47
Things You Need to Know to Become a Serverless API Ninja
allanchua101
1
520
Ocelot Pluggable Gateway
allanchua101
0
1.3k
API Gateway in a Nutshell 2019
allanchua101
0
1.3k
JavaScript API Proxy Pattern
allanchua101
0
550
API Gateways in a Nutshell
allanchua101
0
83

Other Decks in Programming

See All in Programming
The Resurrection of 
the Fast Parallel Test Runner
koic
1
3.4k
オンボーディングのために 私はプロダクト考古学者になりました!
akitotsukahara
3
230
Unexplored Region - parse.y -
yui_knk
2
1.3k
その Swift コード、
こう書き換えてみないか / Polishing your Swift code with me!
treastrain
1
3.4k
OpenSearchを使って ごちクルの検索画面を爆速にする
konpay
0
150
From complexity to observability using OpenTelemetry
danilop
1
340
Architecting For Scale
squer
0
200
Yla's #Kaigieffect
little_rubyist
0
1k
SwiftSyntaxが面白い
ryu_hu03
1
380
新人PHPer向け 圧倒的に差をつける仕事の進め方 #phpstudy
77web
2
560
Learn Ractor
m_seki
1
1.5k
FSE時代におけるWEBサイト制作の研究 #wpshinshu / 2023-05-20 Shinshu WordPress Meetup vol.23
torounit
0
220

Featured

See All Featured
The Web Native Designer (August 2011)
paulrobertlloyd
78
2.3k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
123
29k
Optimizing for Happiness
mojombo
366
66k
Robots, Beer and Maslow
schacon
154
7.5k
The Power of CSS Pseudo Elements
geoffreycrofte
54
4.5k
The Art of Programming - Codeland 2020
erikaheidi
37
11k
Embracing the Ebb and Flow
colly
76
3.7k
Docker and Python
trallard
31
2.1k
From Idea to $5000 a Month in 5 Months
shpigford
374
45k
Designing on Purpose - Digital PM Summit 2013
jponch
108
6k
JazzCon 2018 Closing Keynote - Leadership for the Reluctant Leader
reverentgeek
176
9.4k
The Success of Rails: Ensuring Growth for the Next 100 Years
eileencodes
25
5.3k

Transcript

  1. Dealing with Distributed
    Backends using API Gateways

    View Slide

  2. About Me
    Software Architecture
    Advocate
    Camera Man @
    Engineers.SG
    Polyglot Developer https://www.pogsdotnet.com

    View Slide

  3. Author of API Gateway in a Nutshell
    https://bit.ly/2O4IbAU https://bit.ly/2Dpq44B

    View Slide

  4. Free E-Books
    https://www.microsoft.com/net/learn/dotnet/architecture-guides

    View Slide

  5. Resources

    View Slide

  6. Table of Contents
    I. Abstract
    II. What are API Gateways?
    III. Benefits
    IV. Implementations, Tools and Frameworks
    V. Demo
    VI. Things to Consider

    View Slide

  7. View Slide

  8. View Slide

  9. Microservices

    View Slide

  10. Microservices Pros
    Independent Pieces Independent Teams Independent Releases

    View Slide

  11. How a client app communicates with distributed backend APIs.
    Web API
    Ledger
    Web API
    Catalog
    Web API
    Authentication

    View Slide

  12. Dealing with Microservice APIs
    as a frontend developer
    is apparently HARD

    View Slide

  13. Multiple Point of Contacts
    ????
    ????
    ????
    ????
    Distributed API Challenges

    View Slide

  14. Multiple Point of Attacks
    Distributed API Challenges

    View Slide

  15. Authentication Issues
    JWT Token A
    JWT Token B
    JWT Token C
    Cookies Against
    N Servers?
    Distributed API Challenges

    View Slide

  16. CORS, Domain Name and SSL
    Cross Origin Sharing
    is troublesome
    Buy multiple SSL
    Certificates + Domains?
    Distributed API Challenges

    View Slide

  17. Tightly Coupled Client and APIs
    CATALOG
    LEDGER
    CUSTOMERS
    Each team working on
    a bounded context
    will have a hard time
    releasing their changes
    Distributed API Challenges

    View Slide

  18. API Gateway
    Web API
    Transactions
    Web API
    Catalog
    Web API
    Users
    API Gateway

    View Slide

  19. API Gateway vs Reverse Proxy
    API Gateway
    Reverse Proxy
    Authentication
    Caching
    Rate Limiting Logging Response Aggregation

    View Slide

  20. I. Sub-Domain Encapsulation
    II. Single Point of Contact
    III. Faster Cross Continental Communication
    IV. Centralized Authentication
    V. Single CORS, Domain Name and SSL
    VI. Added Layer of Security
    VII. Centralized Cross Cutting Concerns
    BENEFITS OF USING AN API GATEWAY

    View Slide

  21. I. Authentication
    II. Logging
    III. Monitoring
    IV. Circuit Breaking
    V. Retries with Jitter
    VI. SSL Termination
    VII. Whitelisting
    VIII. Response Aggregation
    IX. Rate Limiting
    CROSS CUTTING CONCERNS

    View Slide

  22. Define Downstream Services
    Downstream services in the context of API gateways are
    independent backend APIs that you want to aggregate and encapsulate.

    View Slide

  23. Define Public Endpoints
    Expose Public Endpoints. Public endpoints not exposed on the gateway
    Are considered private which introduces a more secured way of aggregating APIs

    View Slide

  24. Define Pipelines Policies
    Pipelines are an ordered list of policies that are executed for requests received from all linked apiEndpoints.

    View Slide

  25. Implementation Choices
    CODE
    Generic
    Software
    Cloud
    Management
    Platform
    Code / Config
    Hybrid

    View Slide

  26. Azure API
    Management
    AWS API Gateway Kong
    NGINX API Gateway
    Express API Gateway Ocelot API
    Gateway
    Spring Cloud Gateway
    JHipster

    View Slide

  27. NOT A SILVER BULLET
    Additional
    Development Cost
    Adds Little
    Communication Latency
    Highly Matured
    Team to Operate

    View Slide

  28. Configuration Monolith
    Web API
    Ledger
    Web API
    Catalog
    Web API
    Authentication
    API Gateway

    View Slide

  29. Consider Backends for Frontends (BFF)
    Web API
    Ledger
    Web API
    Catalog
    Web API
    Authentication
    API Gateway
    API Gateway
    Desktop Gateway
    Mobile Gateway

    View Slide

  30. Question and Answers

    View Slide

  31. Resources
    Speaker Deck: https://bit.ly/2FvBzZa
    Github Demo: https://bit.ly/2Q6CNhM
    API Gateway Articles: https://bit.ly/2O4IbAU

    View Slide