![]() ![]() In case something gets compromised, investigation often starts with looking at access logs. But whoever encountered a security breach will endorse their significance. People less familiar with security, easily miss the importance of logs. That being said, API Gateway is a front door, treat it like one! It’s begging for attention security-wise. Nowadays, a front door camera even provides a track record of everyone that came across your door, logging all rejected and allowed entrance calls. One of the characteristics of a front door is access control: who to let in and how many to let it (at once). The ‘WHY’Īssuming the vast majority of API Gateways are public-facing, it’s easy to picture an API Gateway as a front door. Also, the documentation lacks a ‘WHY’ in general. But IMHO, their documentation is a tad too brief. ![]() AWS wrote down the practices themselves (also using the term ‘Best practices □). I have the feeling that the importance of API Gateway in a setup is sometimes overlooked. ![]() A front door: The importance of API Gateway So pick the practices you agree on, which you see as ‘best’ practices yourself. But, as grown-ups, I’m convinced most of us know how to deal with the term and see why it’s used. Framing something as a best practice is subjective, and it could give the impression of being arrogant. Sure, there’s a lot to say to stamp out “best practice” and I agree with most arguments in the article. ![]() Forgive me, the Bart Simpson in me couldn’t resist using ‘Best Practices’ once again. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |