Versions Compared

Old Version 6

changes.mady.by.user Ievgeniia Lymar

Saved on

compared with

New Version 7

changes.mady.by.user Artem Akimov

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Optional: MinIO or Amazon S3 (keep as is)

Eureka management modules

In comparison to the legacy Folio system, Eureka doesn’t have Okapi service. Services like kong, keycloak, management components, and a sidecar component are what enable Okapi to function.

Management components

  • Application Manager

    • (De-)Registration of applications 

    • Dependency check / platform integrity validation

  • Manager tenant entitlements

    • Enabling/disabling of an application for a tenant (including dependencies)

  • Manager tenants

    • Tenant management

    • Tenant CRUD

In terms of deployment perspective, before deploying any of application, you need to make sure that eureka management components are up and running.

Kong

Github repository

Kong Gateway is a lightweight, fast, and flexible cloud-native API gateway written in Lua. An API gateway is a reverse proxy that lets manage, configure, and route requests to APIs. Kong Gateway runs in front of any RESTful API and can be extended through modules and plugins. It’s designed to run on decentralised architectures, including hybrid cloud and multicloud deployments.

Kong Gateway (

...

Sidecars (FSE)

...

OSS): an open-source package containing the basic API gateway functionality and open-source plugins. You can manage the open-source Gateway with Kong’s Admin API or with declarative configuration.

Kong managed by the utility called deck. Deck helps manage Kong Gateway’s configuration in a declarative fashion. This means that a developer can define the desired state of Kong Gateway or Konnect—services, routes, plugins, and more—and let decK handle implementation without needing to execute each step manually, as you would with the Kong Admin API.

See Kong documentation for more information.

Keycloak

Github repository

Keycloak is a single sign-on solution for web apps and RESTful web services. The goal of Keycloak is to make security simple so that it is easy for application developers to secure the apps and services they have deployed in their organisation.

Keycloak provides the following features:

  • Single-Sign On and Single-Sign Out for browser applications.

  • OpenID Connect support.

  • OAuth 2.0 support.

  • SAML support.

Sidecars

Github repository

In order to support module-to-module communication and the removal of OKAPI, Eureka introduces module sidecars into the platform architecture.  These sidecars run along side each module and have several responsibilities (authorization, tenant-entitlement, proxying requests, transaction logging, etc.)

Sidecars providing the following functionality:

  • module independent, uses Okapi Module Descriptors for self-configuration

  • Ingress request routing for underlying module (specified using environment variables)

  • Egress request routing for module-to-module communication