API Security With NGINX Plus Using GitOps Workflow

APIs are at the heart of today's digital platforms and experiences. APIs help your customers enable new business models and generate revenue streams. However, delivering APIs without adequate guardrails, management and performance has the potential to put businesses at risk. In this lab we will deploy, manage and secure Arcadia WebApp APIs with F5 solutions using modern development and DevOps tools.

Lab focuses on three main areas of solutions for APIs: API Management, API Gateway and API Security.

During this lab you will work with GitLab CE and utilize SCM and CI/CD pipelines to build test and deploy Arcadia App into a Kubernetes cluster fronted by NGINXPlus Ingress Controller. OWASP ZAP for APIs is used to test the Arcadia API. Other tools used in this lab include:

• Ansible
• HashiCorp Terraform
• Apache Jmeter
• Postman
• ELK Stack