Benefits/Why Gate
The Fastest Way to Secure Your APIs and Workloads
AuthN, AuthZ, and Data Governance in One Place
No more lambdas, middleware, and custom plugins spread out in your infrastructure and your application.
plugins:
- id: translator_up
type: token-translation-upgrade
enable_http_caching: true
enabled: false
parameters:
<<: *slashid_config
header_with_token: Authorization
map_token_endpoint: http://backend:8000/map_token
urls:
- pattern: "*/api/admin"
target: http://backend:8000
plugins:
translator_up:
enabled: true
validator:
enabled: true
parameters:
token_schema: |
patternProperties:
user_roles:
contains:
const: admin
required:
- user_roles
yaml
25/25 ln
Multi-cloud and On-Premise, Any Topology.
Gate can run in any cloud and on-prem. Gate can be deployed as an external authorizer for Envoy-based proxies, a standalone service, or as a sidecar.
Your Specs as Your Single Source of Truth
Gate can be configured through annotations on your OpenAPI specs.
Low Latency and High Performance
Gate can cache tokens, reducing the number of roundtrips needed for each request. Gate also embeds an OPA engine to process Rego policies locally.
Security-First
Provide audit logs, simplify Infosec/compliance audits, enforce least-privilege access policies, and detect PII and sensitive data.
Identity Provider Agnostic
Gate can verify, enrich, and translate any token from any IdP, including SAML and OIDC tokens.
Any Authorization Model
ABAC, RBAC, PBAC - Gate supports any major authorization model.
Identity-based Rate Limiting
Gate can rate limit based on token claims, increasing performance and security.