README.md

Goma Gateway - simple Lightweight High-Performance Declarative API Gateway Management.

   _____                       
  / ____|                      
 | |  __  ___  _ __ ___   __ _ 
 | | |_ |/ _ \| '_ ` _ \ / _` |
 | |__| | (_) | | | | | | (_| |
  \_____|\___/|_| |_| |_|\__,_|
                               

Goma Gateway is a lightweight High-Performance Declarative API Gateway Management.

---

Architecture:

Links:

• Docker Hub
• Github
• Kubernetes operator

Documentation

Features

It's designed to be straightforward and efficient, offering a rich set of features, including:

Core Features

• RESTful API Gateway Management
  Simplify the management of your API Gateway with powerful tools.

• Domain/Host-Based Request Routing
  Route requests based on specific domains or hosts.

• Multi-Domain Request Routing
  Handle requests across multiple domains seamlessly.

• Reverse Proxy
  Efficiently forward client requests to backend servers.

• WebSocket Proxy
  Enable real-time communication via WebSocket support.

Security and Control

• Cross-Origin Resource Sharing (CORS)
  Define and manage cross-origin policies for secure interactions.

• Custom Headers
  Add and modify headers to meet specific requirements.

• Backend Errors Interceptor
  Catch and handle backend errors effectively.

• Block Common Exploits Middleware

  • Detect patterns indicating SQL injection attempts.
  • Identify basic cross-site scripting (XSS) attempts.

• Authentication Middleware

  • Support for ForwardAuth with client authorization based on request results.
  • Basic-Auth and OAuth authentication mechanisms.

• Access Policy Middleware

  • Control route access by either allowing or denying requests based on defined rules.

• Regex Support for URL Rewriting

  • Rewrite URL paths using regex patterns.

• Bot Detection Middleware

  • Protect your route from bots by blocking requests from known bots.

Monitoring and Performance

Logging

• Comprehensive Logging: Implement detailed logging for all incoming requests and outgoing responses.
• Log Levels: Support multiple log levels (e.g., INFO, DEBUG, ERROR) to capture varying degrees of detail.

Metrics

• Performance Monitoring: Collect and analyze key performance metrics such as response times, error rates, and throughput.
• Real-Time Dashboards: Integrate with monitoring tools (e.g., Prometheus, Grafana) to visualize metrics in real-time.

Rate Limiting

• In-Memory Rate Limiting:
  • Throttle requests based on client IP addresses using in-memory storage.
  • Suitable for single-instance applications or low-traffic scenarios.
• Distributed Rate Limiting:
  • Use Redis for scalable, client IP-based rate limiting across multiple application instances.
  • Configure rate limits (e.g., requests per minute) to prevent abuse and ensure fair usage.

Load Balancing

• Round-Robin Algorithm: Distributes incoming requests evenly across backend servers, ensuring balanced resource utilization.
• Weighted Algorithm: Distributes incoming requests based on predefined weights, allowing for prioritized traffic allocation to specific servers.
• Health Checks: Continuously monitors the health of backend servers to ensure only healthy servers receive traffic.
• Scalability: Enables seamless horizontal scaling by adding or removing backend servers without downtime.
• Integrated Health Checks: Automatically monitors the health of backend servers to maintain high availability.

HTTP Caching

• Cache Implementation: Enable HTTP caching for routes to improve response times and reduce server load.
• Cache Storage Options:
  • In-Memory Cache: Suitable for single-instance applications or temporary caching.
  • Redis Cache: Ideal for distributed caching across multiple instances.
  • Cache Control Headers: Support for Cache-Control, and X-Cache-Status headers for fine-grained cache management.
  • Cache Invalidation: Implement strategies to invalidate stale cache entries (e.g., time-based or event-based invalidation).

Configuration and Flexibility

• Support for Multiple Route and Middleware Configuration Files
  Easily organize and manage routes by splitting them across multiple .yml or .yaml files for improved maintainability and clarity.

• Dynamic Configuration Reload

  • Reload configurations seamlessly without server restarts, ensuring uninterrupted service.
  • Dynamically enable or disable routes with zero downtime, allowing for flexible, real-time adjustments.

• TLS Integration
  Secure communication through built-in TLS support, enhancing data protection and user trust.

• HTTP Method Restrictions
  Enforce HTTP method restrictions on specific routes, providing granular control and improved security.

• Kubernetes CRD Integration

  • Leverage Kubernetes-native Custom Resource Definitions (CRDs) for streamlined management of gateways, routes, and middleware.
  • Define and configure gateways, routes, and middleware directly within Kubernetes manifests for seamless operator-focused workflows.

• Declarative API Gateway Management
  Adopt a declarative approach to API gateway management, enabling you to:

  • Define routes and middleware programmatically for consistent, code-driven configuration.
  • Integrate GitOps workflows to version control your gateway configurations, ensuring traceable and automated deployments.

---

Usage

1. Initialize Configuration

Generate a configuration file using the following command:

docker run --rm --name goma-gateway \
 -v "${PWD}/config:/etc/goma/" \
 jkaninda/goma-gateway config init --output /etc/goma/config.yml

If no file is provided, a default configuration is created at /etc/goma/goma.yml.

2. Validate Configuration

Check your configuration file for errors:

docker run --rm --name goma-gateway \
 -v "${PWD}/config:/etc/goma/" \
 -p 8080:8080 \
 jkaninda/goma-gateway config check --config /etc/goma/config.yml

3. Start the Server with Custom Config

docker run --rm --name goma-gateway \
 -v "${PWD}/config:/etc/goma/" \
 -p 8080:8080 \
 jkaninda/goma-gateway server --config /etc/goma/config.yml

4. Health Checks

Goma Gateway provides the following health check endpoints:

• Gateway Health:
  • /readyz
  • /healthz
• Routes Health: /healthz/routes

5. Simple Deployment with Docker Compose

Here’s an example of deploying Goma Gateway using Docker Compose:

# config.yaml
version: 2
gateway:
  writeTimeout: 15
  readTimeout: 15
  idleTimeout: 30
  routes:
    - path: /
      name: example
      disabled: false
      hosts: []
      rewrite: ''
      destination: https://example.com
      disableHostForwarding: true
      healthCheck:
        path: /
        interval: 15s
        timeout: 10s
        healthyStatuses:
          - 200
          - 404
      cors: {}
      middlewares:
        - basic-auth
    - name: load-balancer
      path: /load-balancer
      disabled: false
      hosts: []
      rewrite: /
      backends:
       - endpoint: https://example2.com
         weight: 1 # Optional can be omitted
       - endpoint: https://example.com
         weight: 3 # Optional can be omitted
      middlewares: []
middlewares:
  - name: basic-auth
    type: basic
    paths:
      - /*
    rule:
      users: 
      - admin:admin

# compose.yaml
services:
  goma-gateway:
    image: jkaninda/goma-gateway
    command: server -c config.yaml
    ports:
      - "8080:8080"
      - "8443:8443"
    volumes:
      - ./:/etc/goma/

6. Kubernetes deployment

• Kubernetes installation

• Kubernetes advanced deployment using CRDs and Operator

Supported Systems

• Linux
• MacOS
• Windows

Please download the binary from the release page.

Init configs:

./goma config init --output config.yml

To run

./goma server --config config.yml

Deployment

• Docker
• Kubernetes

Contributing

The Goma Gateway project welcomes all contributors. We appreciate your help!

Give a Star! ⭐

If you like or are using Goma Gateway, please give it a star. Thanks!

Please share.

License

This project is licensed under the Apache 2.0 License. See the LICENSE file for details.

Copyright

Copyright (c) 2024 Jonas Kaninda