Manage Serverless APIs With API Gateway in GCP
Develop, Deploy, Secure and Manage API
Introduction
In Google Cloud Next 2020, new API management service has been introduced. Google Cloud API Gateway is a fully managed service that makes it easy for developers to create, publish, maintain, monitor and secure APIs. It acts as “Front Door” for an application deployed on backend service like Cloud Functions, Cloud Run and App Engine, Compute Engine and Google Kubernetes Engine.
In this tutorial, we are going to deploy Employee APIs endpoints in Cloud Function, Cloud Run and App Engine Standard environment with front end proxy by API Gateway. These APIs will be secured with API Keys and Oauth2 Bearer Token.
I have recently written a blog for securing APIs using Cloud Endpoints ESPV2.
I will use the same Architecture and same code but deploy in API Gateway.
Architecture
We are aiming to create an app with 3 different services using the following components.
- Cloud Functions: GET an Employee from Firestore using API Key.
- Cloud Run: Add an Employee into Firestore using Bearer Token.
- App Engine: DELETE an Employee from Firestore using Bearer Token.
