stackoom
  简体   繁体   中英

Apigee API Proxy policy sequence

 原文  2018-07-27 10:35:05       performance/ apigee

Question

What is the ideal sequence of policies that we need to apply while creating API proxy in Apigee? Following is the list of policies. 

Spike Arrest
oAuth
Regular expression protection
JSON Threat protection
Request Quota

How performance will be impacted if oAuth is kept last?

Thanks in advance.

1 answers

solution1
 0  2018-08-16 01:36:36

From a security perspective you would want to keep oAuth near the top of your policy order. This will ensure that attackers cannot leak information about your proxy without providing authentication.

From a performance perspective, a successful request will pass through each policy and so overall performance will not change due to the order.

If performance in failure detection is important to you, your best bet would be to keep failures that occur most frequently near the top of the policy order. This will ensure that failure happens faster for those requests.

Additionally, you can view the time each policy takes to run using the Trace feature.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to control a flow /sequence of REST API in Jmeter? Apigee 4G Production configurations How to call retrofit api call in sequence of 5sec after onCameraChange(CameraPosition arg0) event on map Reverse Proxy Performance vs No Proxy? How to compact and optimize open policy agent, in a single rego policy How to index a vector sequence within a vector sequence Loading Image sequence in HTML Efficient Sequence conversion to String SQL(plus) performance with sequence Flipping of Order Sequence
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM