• How to Use Scopes to Secure Your API

    Wednesday October 04, 2017

    Express Gateway has built-in support for numerous authentication mechanisms, like OAuth2 and key auth. On top of these authentication mechanisms, Express Gateway supports restricting access to certain endpoints to certain users using the notion of scopes. In this article, I’ll provide a “Hello, World” example of using scopes and then dive into a more realistic example of using scopes to protect access to an external API.

    Read more
  • Express Gateway and Kubernetes: Part 1

    Thursday September 28, 2017

    It’s no secret that cloud native applications are designed to maximize resilience through predictable behaviors. Several factors, including API exposure and application design, play key roles in the successful deployment of cloud native applications. For instance, API exposure and providing internal or external access via standardized methods can fundamentally change your growth trajectory. You can create new services, integrations and expose customer insights. As an important area of growth, designing your application also plays a critical role. Are you designing with microservices in mind? Breaking down monolithic applications with containers? For example, cloud native technologies like Docker give you the ability to decompose your once monolithic applications into sustainable microservices. If you’re building the next generation of cloud native applications, where what does that roadmap look like? Let’s break it down.

    Read more
  • Part1: Anatomy of a Plugin

    Tuesday September 19, 2017

    “Give a man a fish, and you feed him for a day. Teach a main to fish, and you feed him for a lifetime.”

    This old saying is the premise behind what we were thinking of building next based on community feedback of what we had released initially with Express Gateway.

    Read more
  • Getting Started with the Expression Policy

    Thursday September 14, 2017

    Express Gateway comes with a lot of powerful features baked in, like OAuth2 and key auth. When built-in features aren’t enough, Express Gateway has an expression policy, which lets you execute arbitrary JavaScript to modify the request and response. In this article, I’ll show you how the expression policy works with several sample use cases.

    Read more
  • Plugin Framework Overview and Plan

    Thursday September 07, 2017

    One of the key reason why we built Express Gateway on ExpressJS is because of an existing rich ecosystem of 3,000+ middleware modules that is already being used out of the box with Express. Not all Express modules are relevant to the API gateway use case - but many are. Said a different way - almost all API gateway use cases can be covered by utilizing an existing Express module.

    Read more