Field test for Ocelot API gateway
A .Net-based gateway server
- Configuring Ocelot
- With Azure AD Authentication system
- Forward requests to upstream app servers.
A deno-based app server
- Implements an extremly simple data model
interface IBonbon { id: string dbname: string popular: boolean count: number }
- Has an imaginary database
- Opens up a REST api endpoint (query only)
- No authentication required.
- Should not be allowed to access from anywhere except the API gateway.
User from the Insomnia API client trying to request Bonbon server.
On first attempt, the user is greeted with 401 error by the API Gateway, since he is not logged in.
The user logs in with OAuth from Microsoft login page.
On successful log-in, the user sends a second request containing auth token.
API Gateway allows, so the user can now access data from Bonbon server.
An upstream GraphQL server
An upstream GRPC server