API Management in Istio Microservices Using Choreo Connect

Choreo Connect can be integrated with the Istio service mesh to provide API management for Istio microservices. Microservices can be deployed in Istio and exposed as APIs via Choreo Connect. This enables a variety of API management quality of services (QoS) for the API, such as message security rate-limiting, observability, and message mediation. You can productize the APIs and provide them to application developers via the WSO2 Developer Portal using WSO2 API Manager.

Choreo Connect can be integrated with Istio service mesh using the methods listed below.

MTLS Mode

MTLS Mode

Microservices can be deployed in the Istio service mesh and made available using the Istio Ingress Gateway. Choreo Connect is deployed as the edge Gateway in this method, where API Management for Istio microservices is applied. Requests come to Choreo Connect, which validates them before sending them on to the Istio Ingress Gateway, which sends them to the relevant microservice, as indicated in the diagram.

Istio MTLS sample can be found in GitHub.

Sidecar Mode

Sidecar Mode

Microservices can be deployed in the Istio service mesh and made available using the Choreo Connect Gateway. Choreo Connect is deployed in the Istio service mesh as a separate service where it applies API Management for the microservices. Requests arrive at the Istio Ingress Gateway and are routed to Choreo Connect. Once Choreo Connect validates the request, it routes it to the relevant microservices.

Istio Sidecar sample can be found in GitHub.

Service to Service Communication

East-West traffic API management

Microservices can be deployed in the Istio service mesh and the communication between microservices can be configured to route through Choreo Connect as an Internal API Gateway. Choreo Connect is deployed in the Istio service mesh as a separate service where it applies API Management for the microservices. Requests arrive that are validated in Choreo Connect before passing it the relevant microservice, as indicated in the diagram. In this scenario Choreo Connect acts as the edge Gateway as well as the internal Gateway.

Istio Service to Service Communication sample can be found in GitHub.

Top