O'Reilly logo

TypeScript Microservices by Parth Ghiya

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

API Gateway

The next level is our API Gateway. A gateway plays an important part in microservices as it is the starting point of any request and is used by all microservices as a means of communication between them. Hence, it should not be exposed to any other security vulnerabilities:

  • Is there a TLS implementation?
  • Does the TLS implementation remove downgrade attacks or weak cipher attacks?
  • How do you make sure that internal websites and admin URLs are abstracted to the internet?
  • What information is circulated through the authentication APIs of your gateway service?
  • Do the rest of the services trust the gateway too much or can they find out when the gateway is breached?

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required