single entry point for client applications
Primary
- parameter validation
- allow/deny list
- authent/authorisation - Idp or auth service
- rate limit
- dynamic routing
- service discovery
- protocol conversion/ protocol translation
- aggregation
- i personally prefer doing this with an internal service that uses DAG based approach
Secondary
- Error Handling
- Circuite Breaking
- Logging/Monitoring
- Analytics