The Sideband API provides dynamic authorization management for requests and responses and returns them in a potentially modified form, which the API gateway forwards to the backend REST API or the client.
As a gateway, PingAuthorize Server functions as a reverse proxy that performs the following steps:
- Intercepts client traffic to a backend REST API service
- Authorizes the traffic to a policy decision point (PDP) that operates either within the PingAuthorize process, called Embedded PDP mode, or outside the PingAuthorize process, called External PDP mode
Using the Sideband API, you can configure the PingAuthorize Server instead as a plugin to an external API gateway. In Sideband mode, an API gateway integration point intercepts client traffic to a backend REST API service and passes intercepted traffic to the PingAuthorize Sideband API.