This site contains the documentation that is relevant to older WSO2 product versions and offerings.
For the latest WSO2 documentation, visit https://wso2.com/documentation/.

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Next »

According to the architecture of WSO2 API Cloud, all API calls that go out to your backend services from WSO2 API Cloud go through the Cloud's API Gateway. The API Gateway handles user requests, user authentication via OAuth, enforces security policies etc. Therefore, in order to connect to your backend services from the API Cloud, we need the following:

  1. The API Gateway should be able to connect to and access your backend services.
    • If your backend services are exposed to the Internet (e.g., hosted in WSO2 App Cloud or another cloud platform), then the API Gateway can connect to it via its Internet URL.
    • If your backend services are private to your Intranet, we have two methods to set up the connectivity from the API Gateway to your backend services:
      • Using a reverse proxy in your DMZ. The API Gateway then connects to the publicly visible reverse proxy, which in turn passes the calls to the backend service. 
      • Using a VPN link between the API Cloud and your Intranet.
  2. Your backend services should be secure so that they are accessed securely by managed APIs through the API Gateway. There are several approaches that are supported by WSO2:
  • No labels