Visual API service orchestration with an enterprise-grade gateway
Publish, aggregate, transform and monitor enterprise APIs without writing code, with built-in gateway, rate limiting, authentication and auditing to manage the lifecycle of internal and external interfaces in one place.
From API orchestration to call monitoring, all on one screen
Covering the full API lifecycle, from orchestration to monitoring in one place
Drag-and-drop nodes to chain data fetching, transformation, aggregation and calls, completing service orchestration with zero code.
Natively supports HTTP/REST, gRPC, SOAP and Webhook for seamless interoperability across heterogeneous protocols.
Built-in OAuth2/JWT/AK-SK authentication and multi-dimensional rate limiting for safer abuse prevention.
Real-time dashboards for QPS / latency / failure rate, with automatic alerts to WeCom, DingTalk and SMS on anomalies.
Complies with the OpenAPI 3.0 standard, with one-click generation of a debug console and sample code.
Canary routing by user / ratio / header, with one-click rollback on anomalies for zero-risk releases.
Internal and external — one gateway covers it all
Mid-platform capabilities are distilled into unified APIs, and frontline business gains second-level access via portal search + application + authentication.
Open APIs for channels, ISVs and customers, complete with AK/SK authentication + rate-limit billing + call reconciliation.
Unify the integration of third-party interfaces such as WeChat, DingTalk, payment and logistics, with unified governance of signature encryption/decryption and callbacks.
From orchestration to publishing in four steps
Select data sources and protocol nodes, then drag and connect to chain data fetching, transformation, aggregation and calls
Choose OAuth2 / JWT / AK-SK authentication and configure rate-limit policies by QPS / plan
A built-in debug console simulates requests, views responses, performs breakpoint troubleshooting and runs automated test-case regression
Roll out by canary ratio; OpenAPI docs and sample code are generated in sync and instantly visible in the developer center
Enterprise-grade gateway architecture — secure, stable and extensible
Self-developed enhancements based on Spring Cloud Gateway, cluster-deployed, with up to a million QPS per node
Supports a combined policy of OAuth2's four grant types + JWT + AK-SK + IP whitelisting
Built-in Sentinel circuit breaking + degradation + queue waiting automatically isolates dependency failures to prevent avalanches
Parallel multi-version releases, routing by header / parameter, with configurable smooth-retirement policies for old versions
Orchestration is documentation; the developer portal includes online debugging, with SDKs and sample code auto-generated
Natively integrates SkyWalking/Zipkin, with full-link TraceID stitching microservice calls to pinpoint problems in seconds
Real, tangible business value
From project kickoff to launch in "days" instead of "weeks," with second-level response to business needs.
Unified call chains + real-time dashboards + anomaly alerts mean ops no longer dig through logs.
Multi-dimensional rate limiting + black/white lists + authentication mean no worries about abuse when opening up externally.
One gateway governs both the internal mid-platform and external open APIs, slashing governance costs.
Questions you may care about
Natively supports HTTP/REST, gRPC, SOAP, WebSocket and Webhook, and provides messaging-protocol adapters such as MQTT, Kafka and RabbitMQ; mutual conversion between heterogeneous protocols can be completed on the same orchestration canvas without writing glue code.
Multi-dimensional governance: rate limiting by IP/Token/user/plan, black/white lists + sliding window + leaky-bucket/token-bucket algorithms; OAuth2/JWT/AK-SK authentication + request signing to prevent replay; real-time alerts on abnormal calls, with one-click circuit breaking or blacklisting when needed.
It can act as a unified open layer on top of an ESB, or as an ESB replacement; it provides SOAP adaptation, JMS bridging and message transformation; ESB services can be migrated to the API gateway step by step, running in dual tracks without interrupting the business.
Supports Docker / K8s / bare-metal deployment, fully usable in finance and government intranet environments; the gateway cluster comes with high availability + horizontal scaling, with tens of thousands of QPS per node and millions of QPS per cluster; it has passed ISO27001 and MLPS Level 3 certification.
Supports canary routing by ratio (e.g., 10% of traffic to the new version), by user tag (e.g., VIP customers first) and by request header / cookie; old and new versions run in parallel, comparing metrics in real time, with one-click rollback to the old version on anomalies.
Orchestration is documentation: after a service is published, OpenAPI 3.0 spec documentation is auto-generated, including field descriptions, error codes, sample JSON and multi-language (Java/Python/JS/Go) SDK sample code; the developer portal supports online debugging and subscription requests.
1-on-1 dedicated consultant service to tailor an API Platform solution for you