I have API working on OCI. I want to consume this API into my IIS-hosted site. But before consuming this API, need to provide security to it by Azure API management.
As I am recently started working on cloud infrastructure, please guide me.
Related
I have a spring boot application which runs on Azure Kubernetes Service and it exposes a private IP, using this IP I have configured this API on Azure API Manager. All the traffic will be coming to this spring boot application via API manager. Client to APIM connection is secured with SSL certificate coming from azure API manager. But from API manager to back end API application is not secured it is plain http. Is there any security issues for this architecture?
For your situation, since you already use SSL certificate to protect your APIM, I think the architecture is no problem even though there isn't any security configuration between APIM and backend api. APIM will not expose your backend, so others can't get your backend IP or backend url according to the APIM. So I think you do not need to add any other security configuration for your architecture.
For the comment about Azure AD mentioned by Tiny, you can also use Azure AD to protect your api or APIM, but I think it is unnecessary.
We have integrated API Management with Service Fabric in Azure as outlined in this document. Everything is up and running, but we would like to ensure that the traffic between API Management and Service Fabric Stateless Service (ASP.NET Core) is encrypted using HTTPS. Currently the API Management logs show that the traffic is HTTP.
Is there a way to enable HTTPS (or at least encrypted) traffic between API Management and Service Fabric?
APIM gets those http endpoint from SF itself by calling IServiceResolutionClient.ResolveServicePartitionAsync. Are you sure your stateless service is configured with HTTPS scheme at Service Fabric end?
Our organization uses Oracle sso saml for all application authenticarion. We are planning to move our on prem to azure paas as APIs behind API Management.
Is there any reference document to how to setup SAML based auth provider in API Management.
Thanks,
Mahesh B
Here are some documents for your reference.
You can use Azure AD as the auth provider. Protect an API by using OAuth 2.0 with Azure Active Directory and API Management.
Single sign-on to applications in Azure Active Directory.
Oracle Cloud Infrastructure as a basic SAML single sign-on application in Azure AD.
Azure functions use HTTP trigger(HTTP protocol) not exactly the REST. Enough resource is available for API documentation for Spring-Rest but not for Spring-Azure
The official way to generate OpenAPI definitions with Azure Functions is to use Azure API Management (APIM) to generate it for you. There is even a consumption tier for APIM which pairs well as a custom gateway for Azure Functions.
The same should work with Spring Cloud Functions deployed on Azure too.
I am creating a rest api using AWS API Gateway and ASP.Net Web Api as the backend service. I have created an ASP.Net Web Api application and hosted it on AWS EC2 instance. Now I want to connect this api hosted on EC2 to the AWS API Gateway.
I searched on internet a lot but found no examples for API gateway with EC2. All the examples are either for Lamda or for HTTP proxy.
There is no special EC2 integration with API Gateway. You should use the same instructions for building an HTTP integration, just specifying the address of your EC2 instance as the integration endpoint.
NOTE: You may want to consider using some additional components like Elastic Load Balancing (ELB) and/or Elastic Beanstalk to improve reliability of your integration backend.