Skip to content
/ pangea-connect Public

A set of plugins / libraries build on pangea to add pangea features to the worlds most popular API frameworks and API gateways

License

Apache-2.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

godwinpinto/pangea-connect

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

32 Commits
expressjs
expressjs
 
 
gin-gonic
gin-gonic
 
 
gofiber
gofiber
 
 
kong-api-gateway
kong-api-gateway
 
 
krakend-api-gateway
krakend-api-gateway
 
 
quarkus
quarkus
 
 
spring-api-gateway
spring-api-gateway
 
 
spring-boot
spring-boot
 
 
spring-webflux
spring-webflux
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
docker-compose.yml
docker-compose.yml
 
 
example.env
example.env
 
 

Repository files navigation

Connect for Pangea

A set of middleware plugins / libraries build on Pangea to add pangea security to the most popular API frameworks and API gateways thus acting as a drop-in centralized security solution.

Development Pre-requisite

  • Docker with Docker compose

How to run

  1. Visit Pangea.cloud and get Pangea IP Intel token and pangea domain
  2. Clone the repo
git clone https://github.com/godwinpinto/pangea-connect.git 
cd pangea-connect
  1. Setup the environment (rename example.env to .env) file in the root directory with the values from step 1
  2. Use docker compose with folder name to run the respective solution
docker compose up redis httpbin <folder_name>

Test:

# Test for a service which is malicous. Fire 2-3 times before getting forbidden 
curl --location --request GET 'http://localhost:8080/get' \
--header 'X-Forwarded-For: 190.28.74.251' \
--header 'Content-Type: application/json'

# Test for a service which is regular. Fire 2-3 times to verify, should always result in success response
curl --location --request GET 'http://localhost:8080/get' \
--header 'X-Forwarded-For: 190.28.74.252' \
--header 'Content-Type: application/json'

Note on testing: Kong works on Port 8000

Roadmap Status

Below is the roadmap for Connect's collection with Pangea services

Note: An improved approach could also be to publish the plugins on central packaged registeries for Teams adopting as is usage. IP Intel service = IP Reputation

Golang Framework Status

Framework IP Intel Secure Audit Log Embargo File Intel
gin gonic
fiber
echo
chi

Java Framework Status

Framework IP Intel Secure Audit Log Embargo File Intel
Spring boot
Spring webflux
Quarkus
Quarkus Reactive
Vertx
Micronaut

NodeJS Framework Status

Framework IP Intel Secure Audit Log Embargo File Intel
Express.js
NestJS
Fastify

Rust Framework Status

Framework IP Intel Secure Audit Log Embargo File Intel
Actix-web
Axum

Python Framework Status

Framework IP Intel Secure Audit Log Embargo File Intel
Django
Flask
Fast API

API Gateway Status

Platform IP Intel Secure Audit Log Embargo File Intel
Kong
Krakend
Spring Cloud
Tyk
Traefik
Gravitee
Apache APISix
Apigee

Load Balancer

Platform IP Intel Secure Audit Log Embargo File Intel
Nginx

Ingress Controller

Platform IP Intel Secure Audit Log Embargo File Intel
Nginx

Improvement needed in existing plugins

  • Revisiting the solution by comparing other middleware / plugin (doing it right) for each platform / framework
  • Unit Tests, Performance Test, etc
  • Basic development hygience (code comments, code analysis)
  • CI pipelines
  • Extending Connect to other Pangea services that can be centralized and easy to configure

About

A set of plugins / libraries build on pangea to add pangea features to the worlds most popular API frameworks and API gateways

Resources

Readme

License

Apache-2.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Languages