Showing results for tag Api Gateway

[Tutorial] Crush CSRF Attacks with Gloo Edge

Shield your applications from session-riding, Cross-Site Request Forgery attacks.   According to OWASP: “Cross-Site Request Forgery (CSRF) is an attack that forces an end user to execute unwanted actions on a web application in which they’re currently authenticated. With a little help of social engineering (such as sending a link via email or chat), an […]

Jim Barton | January 11, 2021
Read More

[Tutorial] Rewriting Express Routes with Gloo Edge

Rewriting Express Routes with Gloo Edge During this tutorial we are going to leverage Gloo Edge as an API Gateway and Kubernetes Ingress Controller to rewrite the routes of a simple Express app. You can clone the source code from here. The repository itself is packed with Scenarios that show off more features of Gloo […]

Casey Wylie | December 30, 2020
Read More

Advanced Authentication Workflows with OpenID Connect using Gloo API Gateway – Part 2

In the previous Blog post, we covered how Gloo can be used to authenticate users with OIDC and how it can process the JWT token returned by the identity provider. The JWT token was stored as a cookie in the web browser and sent with each HTTP request as a header. We configured Gloo to […]

Denis Jannot | November 9, 2020
Read More

End User Case Study: uShip

In this post, we feature a Q&A with Richard Simpson, software engineer at uShip working on platform engineering. uShip is a transportation marketplace company launched in 2004 with the mission to make shipping large or bulky items (like cars, cranes, furniture, and freight) quick, easy and affordable. The uShip platform helps people, businesses, e-commerce sellers, […]

Betty Junod | November 4, 2020
Read More

Webinar Recap – What’s New in Gloo API Gateway version 1.5

Gloo is a next generation API gateway and Kubernetes Ingress Controller built on Envoy Proxy to manage and secure application traffic at the edge. Recently we released version 1.5 which includes new features, enhancements, and bug fixes for Gloo API Gateway, Federation, and Developer Portal. You can read more about the latest release, here and […]

Betty Junod | October 21, 2020
Read More

Webinar Recap – Can You Replace API Management with Service Mesh?

This webinar was long in the making as we looked at answering the #1 most frequently asked question: Can I replace my Edge/API Gateway or API management solution with a service mesh? This is not surprising given the amount of service mesh hype in the cloud-native ecosystem and service mesh functionality like traffic routing, shaping, […]

Betty Junod | October 7, 2020
Read More

Updated Developer Portal for Gloo and Istio version 0.4.11

Today, alongside our Gloo 1.5 announcement, we are also releasing the latest enhancements to the Developer Portal for Gloo and Istio. The Gloo Developer Portal was introduced back in April with Gloo 1.3 and the Developer Portal for Istio in May of this year to help teams catalog and expose their running APIs securely to […]

Solo.io Engineering | October 1, 2020
Read More

CREALOGIX and Solo.io partner to deliver a secure digital banking platform for the cloud

It takes strong technology and partners to modernize a long-standing digital banking platform to the cloud. CREALOGIX and Solo.io partner up to enable banking customers to benefit from secure online banking solutions delivered on modern and cloud-native, Kubernetes-based technologies. CREALOGIX, the leading digital banking software provider, and Solo.io, the modern API infrastructure company and 2019 […]

Betty Junod | September 30, 2020
Read More

Webinar Recap – Multi-Cluster API Gateway Patterns

Designing, building and operating applications for cloud-native infrastructure that are resilient, scalable, secure, and meet compliance and IT objectives gets complicated. Another wrinkle for the organizations with which we work is the fact they need to run across a hybrid deployment footprint, not just Kubernetes. Add to that the need to shape, manage, and secure […]

Betty Junod | September 15, 2020
Read More

Handling Service to Service Failover at the Edge or Service Mesh

In this blog series, we will dig into specific challenge areas for multi-cluster Kubernetes and service mesh architecture, considerations and approaches in solving them. The previous blog post covered Multi-Cluster Service Mesh Failover and Fallback Routing as failover routing is one of the many reasons organizations look to adopt service mesh in addition to service to service communication, tracing, […]

Denis Jannot | September 14, 2020
Read More

[Tutorial] Securing APIs with OIDC Using Keycloak

API Gateways act as a control point between external clients (or end users) and your backend application services to make the connection, set policies around how much traffic should be accepted at any given time, to gracefully handle system failures, and to secure the environment and connection.  Authentication is one of the ways to protect […]

Adam Sayah | September 3, 2020
Read More

End User Case Study: Zymergen

Today’s post features a Q&A with Gigi Jackson, Staff SRE at Zymergen, and their modernization to Kubernetes. Zymergen is a science and material innovation company that is rethinking biology and reimagining the world. Zymergen brings together life, data and computer science to create never-before imagined materials and products across industries – from agriculture to electronics, […]

Betty Junod | September 1, 2020
Read More