Smallstep Certificates VS Azure API Management

Smallstep Certificates Reviews

Azure API Management Reviews

Smallstep Certificates mentions (10)

• A convert from Judaism to Catholicism goes to r/Catholicism to ask if it would be appropriate to pass down a century old Jewish prayer shawl to his son. Not everyone is welcoming.

  Just a little heads up https://smallstep.com/certificates/. Source: about 1 year ago

• Looking for an open source certificate management solution.

  Step-ca: Not web based, but the CLI is pretty user friendly: https://smallstep.com/certificates/. Source: about 1 year ago

• Using k8s-apiserver as AAA server for microservices?

  I was just looking at https://smallstep.com/certificates a few days ago. It looks like they have an operator that fits your description as well as example docs for setting up inter-microservice mtls. Source: about 1 year ago

• What are SSH Certificate Authority solutions?

  In the quick search I learned about Ssh cert authority which looks very manual and also like a dead project Smallstep's step-ca who put together very nice article about how to begin certificate authority process Netflix' BLESS is AWS only Cashier which also looks quite ok. Source: almost 2 years ago

• Quickly prototyping and testing TLS services with valid certs

  If you want something a little fancier (I.e. Get automatic certs with all that ACME goodness) check out SmallStep. This is next on my list of homelab projects. Source: about 2 years ago

Azure API Management mentions (7)

• Serverless Security Best Practices

  Moreover, integrating rate limiting can thwart DDoS attacks, and schema validation can prevent malformed requests, ensuring only legitimate and well-formed traffic reaches your serverless functions. Tools like Amazon API Gateway, Azure API Management, and Google Cloud Endpoints offer these capabilities, allowing you to set up custom authorization workflows and request validation rules that align with your security... - Source: dev.to / 17 days ago

• No Token in the Browser Pattern using Azure API Management

  This pattern uses Azure API Management in a Backend for Frontend pattern where it handles the OAuth2 access token acquisition from Azure Active Directory; AES encryption and decryption of the access token into an HttpOnly cookie; and to proxy all API calls requiring authorization. This is performed by the use of Azure API Management Policies. - Source: dev.to / over 1 year ago

• How to choose the right API Gateway

  Because the configuration is a highly critical feature, we need to authenticate via an API key or by means of other auth methods. For example, most API Gateway providers such as Apache APISIX enabled token-based access to Admin API and they highly advise generating your own token and regularly changing it. Or Azure API Management relies on Azure Active Directory (Azure AD), which includes optional features such as... - Source: dev.to / over 1 year ago

• Is auth WAY too hard in .NET?

  Check out https://azure.microsoft.com/en-us/services/api-management/. Source: almost 2 years ago

• API Hub / API management

  Splitting monolith into microservice to a) have less dependencies for developer b) easier scalable infrastructure including c) the proper monitor to better see where we need to improve. In future d) to include external APIs into internal infrastructure more easily and e) share internal APIs with external users/platforms. I really like the overview from Azure, but we are not on Azure and the registry of Larvel... Source: about 2 years ago