Process of Using APIG

Create a user and grant APIG permissions with IAM. If the preset permissions do not meet requirements, you can create custom policies.

A gateway is an independent resource space where all operations are performed. Resources of different gateways are isolated from each other.

After a gateway is created, you can configure its parameters, classify resources by group (Configuring Gateway Tags), and connect the VPC endpoint to the VPC endpoint service (Configuring Gateway VPC Endpoints). For more operations, see Managing APIG Gateways.

Open services and data by directly providing open APIs to API callers or releasing them on KooGallery for monetization.

To use your own authentication system for API calling, perform operations in Configuring Custom API Authentication. To customize API error responses, perform operations in Customizing Error Response for APIs. For more operations, see Managing APIs.

For APIs that use App authentication, authorize them with specified credentials. When calling an API, an API caller can be authenticated using the key and secret of a credential or using the AppCode for simple authentication.

If you want to limit the number of API calls made by an API caller in a specified period, you can perform operations in Credential Quota Policy. If you want to control the IP addresses that can access an API, you can perform operations in Credential Access Control Policy.

Call the API using its access address and perform authentication based on its authentication mode.