Secure APIs in Cloud Run, Cloud Functions and App Engine Using Cloud Endpoints ESPv2 (Beta)
Authenticate using API Keys and Bearer Token.
Introduction
Just as organisations need services management for microservices, they need API management for their APIs.
With serverless services like Cloud Run, Cloud Functions and App Engine, it is very easy and quick to create APIs. However, Security, Monitoring, Publishing APIs are some of the major challenges.
In this blog, we will see how to secure API’s in Cloud Run, Cloud Functions and App Engine Standard environment using API Keys and Bearer Token.
What is Cloud Endpoints?
Cloud Endpoints is a distributed API management system. It provides an API console, hosting, logging, monitoring and other features to help you to create, share, maintain and secure APIs.
ESPv2 Beta
There are two versions of Extensible Service Proxy (ESP).
ESPv1 is an Nginx-based proxy that is modified to be highly-scalable and to work as a Google product.
ESPv2 is an Envoy-based, highly scalable product that promises to have a small footprint on your infrastructure.
