As a gateway, PingAuthorize Server functions as a reverse proxy that performs the following steps:

  • Intercepts client traffic to a backend REST API service
  • Authorizes the traffic to a policy decision point (PDP) that operates either within the PingAuthorize process, called Embedded PDP mode, or outside the PingAuthorize process, called External PDP mode

Using the Sideband API, you can configure the PingAuthorize Server instead as a plugin to an external API gateway. In Sideband mode, an API gateway integration point intercepts client traffic to a backend REST API service and passes intercepted traffic to the PingAuthorize Sideband API.