This tutorial shows how to expose and secure services or Functions using API Gateway Controller. The Controller reacts to an instance of the APIRule custom resource (CR) and creates an Istio VirtualService and Oathkeeper Access Rules according to the details specified in the CR. To interact with the secured workloads, the tutorial uses a JWT token.

Prerequisites

• Sample HttpBin service and sample Function deployed
• JSON Web Token (JWT)
• Set up your custom domain or use a Kyma domain instead.

• Depending on whether you use your custom domain or a Kyma domain, export the necessary values as environment variables:

  • Custom domain
  • Kyma domain

Expose, secure, and access your workload