In the second post in our API gateway series, Liam shows you how to batten down the hatches on your API services. You can use rate limiting, access restrictions, request size limits, and request body validation to frustrate illegitimate or overly burdensome requests.
The NGINX JavaScript module released with NGINX Plus R15 supports subrequests, adding a whole new class of use cases for NGINX Plus. This complete example also uses the NGINX Plus API and Key-Value modules to convert client API requests to separate requests to the microservices APIs that make up an app.
It's easy to implement PCI DSS best practices, such as using new versions of TLS rather than the older SSL, encrypting upstream as well as downstream communications, and adding a WAF, with NGINX Plus. Taking these steps will help you pass PCI DSS audits. Here's how to implement them.
The advanced HTTP processing capabilities of NGINX and NGINX Plus make it the ideal platform for building an API gateway. We describe API use cases, show how to configure NGINX to handle them in a way that is efficient, scalable, and easy to maintain, and provide a complete NGINX configuration.
Sort by
Filter by category
NGINX Unit 1.2 Available Now
NGINX Unit 1.2, available now, adds environment variables across application languages, versions, and sessions; php.ini configuration; and command-line configuration for Go executables. Parameters can still be defined dynamically, with no disruption to running services or loss of connectivity.
Three Ways NGINX Scales Applications Running in Docker Containers
Docker and NGINX go together like bananas and peanut butter. NGINX is the #1 download on Docker Hub; the NGINX Kubernetes Ingress controller, NGINX Unit, and NGINX Controller all have strong interest from the Dockersphere. Try our solutions, and come visit us at DockerCon in booth S22.
Trust No One: The Perils of Trusting User Input
A newly discovered security threat exploits a configuration that allows remote users to specify the server for a request in the HTTP Host header, and thus access potentially sensitive information. In this post we explain how to prevent this "cloud metadata" attack.
Introducing NGINX and NGINX Plus Routers for OpenShift
Red Hat OpenShift is a container platform built on top of Kubernetes. It's available as an open source project, OpenShift Origin, and a commercially supported product, OpenShift Container Platform. You can now use NGINX and NGINX Plus as a Router within OpenShift.
Transitioning to the New NGINX Plus API for Configuration and Monitoring
Two NGINX APIs - status, which reads extended status data, and upstream_conf, which manages upstream group configuration - have been deprecated. They will be removed as of the upcoming NGINX Plus R16 release! Read this blog post to learn how to switch over to the new, unified NGINX Plus API.
Monitoring MySQL with NGINX Amplify
NGINX Amplify now features MySQL support. Amplify monitors the entire LEMP stack, including variations: Linux, (E)NGINX, MySQL/MariaDB/Percona, PHP, and PHP frameworks such as WordPress. This blog post shows you how to configure the Amplify MySQL plug-in, metrics monitored, and troubleshooting.
Installing WordPress with NGINX Unit
NGINX Unit supports PHP, which is very widely used for web programming. NGINX Unit therefore supports WordPress, written in PHP, and which is a content management system and application used by more than 30% of the sites on the Web. Use this blog post to install Unit and NGINX together with WordPress.
Announcing NGINX Unit 1.0
NGINX Unit 1.0, a multi-language applications server, launched today. Unit supports Python, PHP, Perl, Ruby, and Go, with more languages to come. Unit is dynamically configured using a REST API; there are no process reloads or service interruptions required for configuration changes to take effect.
Announcing NGINX Plus R15
NGINX Plus R15 introduces native gRPC proxying (used by Istio and other service mesh architectures), HTTP/2 server push, state sharing in a cluster, API gateway enhancements, OpenID Connect integration, NGINX JavaScript (njs) module enhancements, a new ALPN variable, dynamic module updates, and more.
Updating the NGINX Application Platform
Many companies want to move to microservices, but are held back by unnecessary complexity. In this blog we discuss our vision for reducing complexity and building microservices with the NGINX Application Platform.
