API Gateway service: Invoked endpoints, ensure user is authenticated, and provide app entry point

Question

API Gateway service: Invoked endpoints, ensure user is authenticated, and provide app entry point

nicolehaugen opened this issue 8 years ago · 4 comments

Typical microservice patterns have a single entry point for the client - implement in node.js.

Estimate: 3 days

Answer 1 · 2017-04-11T14:09:38.000Z

We could use Nginx and are just routing to endpoints of other services, we don't need to write any code.
But, if we have more logic in the gateway, such as checking for security token and authenticating user to pass along with request to endpoints, then the services can assume the user is authenticated.

Note: Nginx does two things: reverse proxy\load balancer and also, provides security DOS protection. Even if we write our own API gateway we will still want to use Nginx for security reasons.

We could write this in whatever - assuming node.js? This is question Jonathan. Also confirm use of Nginx.

Answer 2 · 2017-05-01T21:29:50.000Z

Status: I have simple API Gateway <--> Sticker App Client working so that all requests come in from the gateway, auth is performed, and then requests are forwarded on to the client (as appropriate) including user info.

Answer 3 · 2017-05-12T17:41:24.000Z

Note that I've made some changes to how this is implemented with my latest PR.

Answer 4 · 2017-05-17T18:03:25.000Z

Check in the changes for this into master, so closing.