Thanks to visit codestin.com
Credit goes to github.com

Skip to content

S6-Babbly/babbly-api-gateway

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

40 Commits
.github
.github
 
 
.vs
.vs
 
 
Aggregators
Aggregators
 
 
Controllers
Controllers
 
 
Middleware
Middleware
 
 
Models
Models
 
 
Properties
Properties
 
 
Services
Services
 
 
Transforms
Transforms
 
 
bin/Debug/net9.0
bin/Debug/net9.0
 
 
k8s
k8s
 
 
load-tests
load-tests
 
 
logs
logs
 
 
obj
obj
 
 
prometheus
prometheus
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
Program.cs
Program.cs
 
 
README.md
README.md
 
 
appsettings.json
appsettings.json
 
 
babbly-api-gateway-build-plan.md
babbly-api-gateway-build-plan.md
 
 
babbly-api-gateway.csproj
babbly-api-gateway.csproj
 
 
babbly-api-gateway.http
babbly-api-gateway.http
 
 
docker-compose.yml
docker-compose.yml
 
 
env.example
env.example
 
 
test-auth-flow.http
test-auth-flow.http
 
 

Repository files navigation

Babbly API Gateway

This API Gateway serves as the central entry point for the Babbly social media platform microservices.

Configuration

The API Gateway routes requests to the following backend services:

  • User Service (${USER_SERVICE_HOST}:${USER_SERVICE_PORT})
  • Post Service (${POST_SERVICE_HOST}:${POST_SERVICE_PORT})
  • Comment Service (${COMMENT_SERVICE_HOST}:${COMMENT_SERVICE_PORT})
  • Like Service (${LIKE_SERVICE_HOST}:${LIKE_SERVICE_PORT})

Environment Variables

Required environment variables:

# Service Discovery
USER_SERVICE_URL=http://${USER_SERVICE_HOST}:${USER_SERVICE_PORT}
POST_SERVICE_URL=http://${POST_SERVICE_HOST}:${POST_SERVICE_PORT}
COMMENT_SERVICE_URL=http://${COMMENT_SERVICE_HOST}:${COMMENT_SERVICE_PORT}
LIKE_SERVICE_URL=http://${LIKE_SERVICE_HOST}:${LIKE_SERVICE_PORT}

# Auth0 Configuration
AUTH0_DOMAIN=${AUTH0_DOMAIN}
AUTH0_AUDIENCE=${AUTH0_AUDIENCE}

# CORS Configuration
CORS_ORIGINS=${CORS_ORIGINS}

# Port Configuration
ASPNETCORE_URLS=http://0.0.0.0:${API_GATEWAY_PORT}

See env-template.txt in the root directory for complete configuration examples.

Features

  • Service Routing: Routes API requests to appropriate microservices
  • Authentication: JWT token validation via Auth0
  • CORS: Configurable cross-origin resource sharing
  • Health Checks: Monitors backend service availability
  • Aggregation: Combines data from multiple services for complex queries
  • Load Balancing: Distributes requests across service instances

Architecture

The API Gateway connects to the following microservices:

  • User Service (localhost:5001)
  • Post Service (localhost:5002)
  • Comment Service (localhost:5003)
  • Like Service (localhost:5004)

Endpoints

Direct Proxied Endpoints

  • /api/users/* → User Service
  • /api/posts/* → Post Service
  • /api/comments/* → Comment Service
  • /api/likes/* → Like Service

Aggregated Endpoints

  • /api/feed - Get the latest posts with comments and likes
  • /api/feed/{postId} - Get details for a specific post
  • /api/profiles/id/{userId} - Get a user profile by ID
  • /api/profiles/username/{username} - Get a user profile by username

Getting Started

  1. Clone the repository
  2. Install .NET 8 SDK
  3. Configure environment variables (see above)
  4. Run the application: dotnet run

The API will be available at http://${API_GATEWAY_HOST}:${API_GATEWAY_PORT} by default.

Docker Deployment

When running with Docker Compose, the API Gateway will be available at http://${API_GATEWAY_HOST}:${API_GATEWAY_PORT}.

Monitoring

The gateway exposes the following monitoring endpoints:

  • Health Check: /health
  • Metrics: /metrics (Prometheus format)

Integration with monitoring stack:

  • Prometheus: http://${PROMETHEUS_HOST}:${PROMETHEUS_PORT}
  • Grafana: http://${GRAFANA_HOST}:${GRAFANA_PORT}

Security Note: Never expose monitoring endpoints publicly in production. Use proper network segmentation and authentication.

CI/CD Pipeline

This project uses GitHub Actions for continuous integration and deployment:

Automated Workflow

  1. Build & Test: On every push and PR to main and develop branches

    • Builds the application
    • Runs all tests
    • Collects code coverage

  2. SonarCloud Analysis: Code quality and security scanning

    • Analyzes code for bugs, vulnerabilities, and code smells
    • Enforces coding standards
    • Tracks code coverage

  3. Docker Image: Builds and pushes to Docker Hub

    • Creates a container image with the latest code
    • Tags with branch name, commit SHA, and 'latest'
    • Pushes to Docker Hub registry for easy deployment

Local Development with Observability

Run the complete stack with logging and monitoring:

# Start the development environment with ELK stack and Prometheus/Grafana
docker-compose up -d

# Access monitoring tools
Kibana: http://localhost:5601
Prometheus: http://localhost:9090
Grafana: http://localhost:3000

Authentication with Auth0

The API Gateway integrates with Auth0 for secure authentication:

Configuration

The gateway accepts Auth0 configuration either through environment variables or the configuration file:

# Environment Variables
AUTH0_DOMAIN=your-tenant.auth0.com
AUTH0_AUDIENCE=https://api.babbly.com

Or in appsettings.json:

"Auth0": {
  "Domain": "your-tenant.auth0.com",
  "Audience": "https://api.babbly.com"
}

Token Validation

The gateway performs token validation at two levels:

  1. Full validation: The ASP.NET Core authentication middleware performs complete validation of JWT tokens, including signature verification.

  2. Basic validation: A custom middleware (TokenValidationMiddleware) performs basic validation of tokens for routes that don't require the full auth pipeline, checking token expiration.

User Claims Forwarding

When a user is authenticated, the gateway extracts claims from the token and forwards them to downstream services as HTTP headers:

  • X-User-Id: The user's Auth0 ID
  • X-User-Roles: The user's roles (comma-separated)
  • X-User-Email: The user's email
  • X-User-Name: The user's display name

This allows microservices to access user information without having to validate tokens themselves.

YARP Reverse Proxy Configuration

The gateway uses YARP (Yet Another Reverse Proxy) to route requests to the appropriate microservices:

Route Configuration

Routes are defined in appsettings.json under the ReverseProxy section:

"Routes": {
  "users-route": {
    "ClusterId": "users-cluster",
    "Match": {
      "Path": "/api/users/{**remainder}"
    },
    "AuthorizationPolicy": "authenticated"
  }
}

Each route specifies:

  • A unique route name
  • The target cluster ID
  • Path matching pattern
  • Optional authorization policy

Cluster Configuration

Clusters define the destination services:

"Clusters": {
  "users-cluster": {
    "Destinations": {
      "user-service": {
        "Address": "http://user-service:8080"
      }
    }
  }
}

Route Transforms

The gateway applies custom transforms to requests:

  • ForwardUserClaimsTransform: Adds user claims as headers to forwarded requests

Running with Docker

The API Gateway and its dependent services can be started using Docker Compose:

# Start all services
docker-compose up -d

# Start only the API Gateway
docker-compose up -d api-gateway

Environment variables can be provided in a .env file:

AUTH0_DOMAIN=your-auth0-domain.auth0.com
AUTH0_AUDIENCE=https://api.babbly.com

About

API gateway for babbly

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages