1

We plan to use Kafka for publishing updates to our customers. The plan is to use the dedicated topic for each client. To makes things simpler for them we want to utilize REST API. So that user1 will be able to get updates from /api/topic1 and won't be able to get updates from /api/topic2 (URLs are just for reference).

However, at the moment REST API does not have any authentication/authorization out of the box.

I am wondering whether we can achieve our goal by 3rd party tools (like nginx)? By placing some proxy in front of REST API or whatever.

Thanks!

the_joric
  • 113
  • 4

1 Answers1

1

For reference purposes there are few options to walk through:

  1. ngx_http_auth_request_module - blog post
  2. If you are on AWS - Amazon API Gateway
  3. OpenIG standalone reverse proxy, main purpose is actually authentication.
  4. Not sure how utilize it, but Azure App Services also have external authentication
  5. WSO2 API Manager

If I would prioritize how I investigate this topic, I would probably start from provider specific solutions, then nginx module, then OpenIG, then WSO2 offering.

Mike Chaliy
  • 138
  • 6