In many projects that I participated in, mutual TLS was a first choice to secure some of the experience APIs. Two-way TLS is great in proving that two sides are known to each other via the exchange of client certificates. Let’s see how it works in CloudHub when we are leveraging Dedicated Load Balancer. Architecture…
A useful guide on exposing APIs using DLB on CloudHub
If you want to follow the API-led principles your process and system APIs should not be accessible from outside. These APIs are only for internal usage. On top of them, other APIs are built and the application network grows. Experience APIs should be available for consumers to use. Today I show you how can it…
How to setup 2-way TLS on Dedicated Load Balancer?
So far, I have explained how to configure your Dedicated Load Balancer to use your domains. Now we will focus on configuring it more securely. We enforce mutual authentication. My goal is to show you how to configure it, what the options are, and, last but not least, how to test it. Let’s get started….
Secure calls from Salesforce to MuleSoft with JWT
A couple of my last articles focuses on connectivity between Salesforce and MuleSoft. This will be the next article in the series. In many cases, we would like to set up as secure communication as possible. We can start by enabling secure HTTP traffic, then sending a basic authorization header. How about sending a signed…