Emissary-Ingress: An Envoy API Gateway for Kubernetes
Shriira Press
The managed front door for your APIs. Route, secure, and control Kubernetes API traffic with Emissary-Ingress — an Envoy-based API gateway.
Welcome to Emissary-Ingress: An Envoy API Gateway for Kubernetes.
Emissary-Ingress is a Kubernetes-native API gateway and ingress controller built on the Envoy proxy — the managed front door that routes, secures, controls, and observes the API traffic entering your cluster. This free book teaches it from the ground up: the API gateway problem and what Emissary-Ingress is, the ingress and gateway landscape, its architecture (the control-plane/data-plane split, configuring Envoy, the self-service model), getting traffic in (load balancers, the Host resource), Mappings (the core routing resource), TLS and secure traffic (cert-manager, mTLS), authentication and authorization (the external auth model), rate limiting and traffic management (canary, traffic splitting, shadowing), observability and resilience (metrics, tracing, timeouts, retries, circuit breaking) and the Gateway API, and operating it in practice. Ten focused chapters with clear diagrams that demystify how external API traffic gets into a Kubernetes cluster — routed, secured, controlled, and observed — through an Envoy-powered API gateway.
This title is part of the ShriIra library and is free to read in full, right here — our small contribution to making world-class knowledge easy to reach.
A note on reading it: open the Contents menu at the top of the reader to jump between chapters, use the Aa menu to set a comfortable text size, theme (light, sepia, or night), and single- or two-page layout. Your place is saved automatically, so you can always pick up where you left off.
We hope it serves you well.
— Shriira Press