This week, Google announced the general availability of its API gateway: Google Cloud Endpoints. The gateway is built on the same services on which Google powers its own APIs. For apps and microservices built on the Google Cloud Platform (GCP), the gateway ensures that APIs are monitored and secured.
"APIs are a critical part of mobile apps, modern Web applications and microservices," Google Product manager, Dan Ciruli, commented in a blog post announcement. "With the increased focus on APIs comes increased responsibility: the top features you need to take care of your API are authorization, monitoring and logging. In other words, 'Help make my API safer' and 'Tell me how my API is doing'. And, above all: 'Help make sure it is highly performant!'".
Cloud Endpoints authenticates each API call through integrations with Firebase and Auth0. This enables a user to know everyone that uses a mobile and Web app. Each service to service call is also validated. API keys can be created via the Google Cloud Console (the same process used for other Google APIs: Google Translation, Google Maps, etc.). Calls are logged in Stackdriver Logging and status information is displayed in a monitoring dashboard.
Cloud Endpoints is closely tied to the GCP ecosystem. The API proxy sits within the Google App Engine flexible environment. Developers can add the proxy to any Google Container Engine or Kubernetes deployment with a few lines of YAML. Use gcloud to deploy.
For those looking to learn more, check out the documentation. Google has provided walkthroughs for App Engine Flexible Environment, Container Engine, and Compute Engine. Google will speak at length on its API technologies at the upcoming Google Cloud Next '17 in San Francisco.