API Proxy or Gateway
June 30, 2020

API Proxy vs. API Gateway

API Gateways
Security

Following up on the previous blog post on "What Is an API Gateway", a similar piece of technology is an API proxy. Let's take a look at what an API proxy is, how it differs from a gateway, and when you would want to use one over the other.

What Is an API Proxy?

An API proxy is the interface that developers use to access your backend services.

Gently paraphrasing Wikipedia, a proxy is something that acts as an intermediary, making requests on behalf of something else (there are some pretty good definitions in the terminology section of the W3C HTTP standard). What this means to us in the API world, is that when you’re using an API proxy, your API had better already exist. For example, while an API proxy can add some capabilities, like some basic security and monitoring, it really can’t do anything particularly sophisticated with content or routing, let alone transformation, mediation, or orchestration.

In simple terms, you can think of the API proxy providing you a new endpoint for an existing API and adding some lightweight API security and monitoring.

API Proxy

API Proxy vs. API Gateway

An API gateway, on the other hand, provides a much richer set of capabilities. When you use an API gateway to expose an API, you don’t even need to start with an API. You can take multiple existing services of varying types, and use the gateway to construct a modern, well-structured API. The gateway, of course, still offers the same capabilities that an API proxy would offer for security and monitoring, but it takes these and other capabilities much further.

Gateway

 

API Proxy or API Gateway?

So given that the API gateway is so much functionally richer than a proxy, why wouldn’t you always use a gateway?

Well, according to some vendors, gateway products are slow and unwieldy, with complex configuration and poor performance. The truth is actually the opposite. A well-designed and implemented gateway, like the Akana API Gateway, will automatically optimize its configuration depending on how it’s being used. It can act as a simple, lightweight proxy, offering exceptional performance, or when needed it can offer comprehensive service orchestration, transformation, mediation, DoS prevention (including things like anti-virus, and threat detection), along with incredibly rich content and transport security capabilities that go far beyond anything a simple proxy can offer.

But, how do vendors with proxy servers do things like SOAP to REST mediation? It’s simple, they write code that their customers have to support, or pay for updates anytime something changes. Using an API gateway, like the Akana API Gateway, you can turn your existing services into exceptional APIs with sophisticated security and monitoring enabled in a matter of minutes. Try that with a proxy and you’ll quickly find yourself investing a good few weeks or even months writing code, only to do it all over again every single time you need to make a minor change.

While an API proxy may be a good solution for taking the first few simple steps with a basic API or two, to meet real enterprise needs you’re going to need an API gateway, but you’d better make sure you choose a gateway that knows when it needs to act like a nice simple proxy.

Try Akana

Click below to sign up for a free 30-day trial of the Akana API management platform.

Try Free