API management & gateways — Azure · AWS · GCP
API Gateways provide authentication, rate limiting, request transformation, and monitoring for backend services. Each cloud offers managed API management platforms.
# openapi.yaml
swagger: "2.0"
info:
title: Payments API
version: 1.0.0
host: payments-api.endpoints.PROJECT.cloud.goog
x-google-endpoints:
- name: payments-api.endpoints.PROJECT.cloud.goog
target: "35.227.xxx.xxx"
paths:
/v1/payments:
get:
summary: List payments
operationId: listPayments
security:
- api_key: []
x-google-quota:
metric: read-requests
limit: 1000/minutePolicies: XML-based inbound/outbound/on-error. OAuth2, rate limiting, caching, request/response transformation.
CLI: az apim create -g prod-rg -n my-apim --publisher-email admin@me.com --publisher-name MyOrg
Stages: dev/staging/prod. Usage plans, API keys, VTL mapping templates, Lambda/HTTP integrations.
CLI: aws apigateway create-rest-api --name PaymentsAPI
Spec: OpenAPI 2.0 YAML. Deployed to Cloud Run / GKE. API keys, JWT validation, quotas, and monitoring.