More Related Content Similar to Deploy and Secure Your API Gateway with NGINX: From Zero to Hero (20) More from NGINX, Inc. (20) Deploy and Secure Your API Gateway with NGINX: From Zero to Hero1. Deploy and Secure
Your API Gateway
with NGINX
FROM ZERO TO HERO
Alessandro Fael Garcia
Technical Marketing Engineer II
November 17, 2021
2. | ©2021 F5
2
• What is a (REST) API?
• API fundamentals, or why are users & developers exponentially adopting an API first
model?
• What are API gateways and how do they help deliver mission-critical digital experiences?
• Deploying NGINX as an API gateway
• Securing an API gateway using NGINX App Protect WAF
• Demo! (Available at https://github.com/alessfg/nginx-api-gateway-demo)
Agenda
5. | ©2021 F5
5
Developers provide dedicated URLs that are optimized to
return pure data to requesting clients
Web client à Web server à Request returns HTML
API client à API endpoint à Request returns data
API (endpoint) -> Application Programming Interface
EASY TO CONSUME DATA
6. | ©2021 F5
6
Components of an API request
a) API endpoint -> URL
b) API method -> type of operation to conduct on the API endpoint
c) API request body -> if sending data via POST/PUT method
d) API client -> curl, postman, client application, etc…
8. | ©2021 F5
8
$ curl -s -X GET https://pokeapi.co/api/v2/pokemon/pikachu | jq '.types'
[
{
"slot": 1,
"type": {
"name": ”electric",
"url": "https://pokeapi.co/api/v2/type/13/"
}
}
]
9. | ©2021 F5
9
API Fundamentals
Why are users & developers using more APIs over
time?
10. | ©2021 F5
10
Drivers behind API adoption
Ease access to
information
• Break down siloes and
unlock data (within and
among organizations)
• Increase collaboration
amongst developers
Create new digital
revenue streams
• New opportunities to
generate revenue
• Build partnerships with
third-party developers
and business ecosystem
Connect
microservices
• Primary interface for
communication amongst
microservices
• Simple development and
maintenance
• Fault isolation and
resiliency
11. | ©2021 F5
11
F5’S STATE OF APPLICATION STRATEGY 2021 REPORT
Progress in digital transformation
Source: https://www.f5.com/state-of-application-strategy-report
12. | ©2021 F5
12
F5’S STATE OF APPLICATION STRATEGY 2021 REPORT
Modernization methods
Source: https://www.f5.com/state-of-application-strategy-report
13. | ©2021 F5
13
APIS ARE EXPERIENCING EXPLOSIVE GROWTH
The rise of APIs
Source: https://www.programmableweb.com/news/apis-show-faster-growth-rate-2019-previous-years/research/2019/07/17
14. | ©2021 F5
14
API essentials
USERS & CONSUMERS
Documentation
Ease of use Low latency Security
19. | ©2021 F5
19
API gateway
AUTHENTICATION
REQUEST ROUTING
TRAFFIC CONTROL
EXCEPTION HANDLING
20. | ©2021 F5
20
API gateway essentials
CONTROL ACCESS TO YOUR APIS
• Centralized logging
• Client authentication
• Fine grained access control
• Load balancing
• Rate limiting
• Request routing
• Request/response manipulation
• Service discovery of backends
• TLS termination
21. | ©2021 F5
21
REAL-TIME PERFORMANCE IS KEY IN DIGITAL EXPERIENCES
API gateway essentials
30 ms ... to process
an API request
end-to-end
... to route, shape,
authenticate, secure,
and/or cache an API
@p99
(latency)
24. | ©2021 F5
24
30%
of NGINX deployments
are as an API Gateway
Source: https://www.nginx.com/blog/state-of-modern-app-delivery-2020-results-annual-user-survey/
25. | ©2021 F5
25
ACCESS YOUR APIS IN LESS THAN 30MS EVEN WHEN USING AN API GATEWAY
What makes NGINX API gateways special?
27. | ©2021 F5
27
NGINX API gateway
KEY STRENGTHS
High performance DevOps friendly Platform flexibility Distributed environments
30. | ©2021 F5
30
FORRESTER’S STATE OF APPLICATION SECURITY 2021 REPORT
Percentage of apps organizations expose via APIs
Source: https://www.forrester.com/report/the-state-of-application-security-2021/RES164041
37. | ©2021 F5
56
Resources
FIND OUT MORE!
https://www.nginx.com/resources/library/nginx-api-gateway-deployment https://www.nginx.com/blog/deploying-nginx-plus-as-an-api-gateway-part-1/
38. | ©2021 F5
57
DEPLOY AND SECURE YOUR API GATEWAY WITH NGINX’S FREE TRIAL -> HTTPS://WWW.NGINX.COM/FREE-TRIAL-REQUEST/
Check out NGINX Plus and NGINX App Protect!