...
- The API Gateway should be able to connect to the backend services.
- If your backend services are exposed to the Internet (e.g., hosted in WSO2 App Cloud or another cloud platform), then the API Gateway can connect to them via their Internet URLs.
- If your backend services are private to your Intranet, WSO2 supports the following methods to set up the connectivity from the API Gateway to your backend services. See Grant Access to your Backend Services for details.
- Using a reverse proxy in your DMZ. The API Gateway then connects to the publicly visible reverse proxy, which in turn passes the calls to the backend service.
- Using a VPN link between the API Cloud and your Intranet.
- Your backend services should be secure so that they are accessed securely by managed APIs through the API Gateway. WSO2 supports the following methods. See Secure the Link Between your Backend Services and the API Cloud for details.
- Using basic authentication
- Using digest authentication
- Using a custom authorization token
- Using a certificate-based API Gateway
- Whitelisting IPs