Case Study: 4data protects APIs with KrakenD

Protecting APIs on a Swiss Cloud-Services Company

4data, a Swiss cloud-services company, needed a way to protect its browser-based management application and REST API endpoints from unauthenticated access. Previously, JWT validation was handled separately in each backend service, making it harder to maintain and keep customer-related claims available where needed.

4data implemented KrakenD, using its JOSE Validation Plugins to validate JWTs through a JWKs URL, enforce claims such as issuer and audience, and forward selected claims in upstream request headers. With KrakenD, 4data centralized API protection, simplified maintenance, and kept the solution lightweight, easy to use, and high-performing.

4data

Stefan Mantel

Cloud Architect