Research on API Gateway Attribute Authorization Strategy under Microservice Architecture
With the popularization of microservice architecture,API gateway serves as a key intermediate layer connecting front-end and back-end services,undertaking multiple security responsibilities such as access control and identity verification.To address the issue of fine-grained access control for response data at the gateway layer,an API gateway architecture that supports attribute authorization is designed,and an attribute authorization control strategy based on streaming parsing is proposed.It builds a path matcher based on an abstract syntax tree during the gateway startup phase,and gradually parses request responses during the runtime phase.Experimental results show that this method does not significantly improve CPU load compared to existing methods,and has significant advantages in memory usage and response time.
API Gatewaydata protectionattribute authorizationstreaming parsing
国家科技期刊平台
NSTL
万方数据
