Compute Engine Hosted API

Astr0Bit · 02-20-2025 06:01 AM

Hi,
I am working on a project which consists of 2 docker containers managed by a docker-compose.yaml file, where container "one" is both hosting an external API and also holding the source code, and where "two" is only hosting an internal API which container "one" can receive information from. Everything runs as expected in the Cloud via a Compute Engine (VM). The idea is that a verified user should be able to access the hosted API to be able to send data to this VM for processing. I would like some help on how to host this API in the cloud, so only verified users can access it, and not do any port-forwarding or similar.

Please ask questions if I need to clarify anything.
Thanks in advance 🙂

debolek

To securely host your API in the cloud and ensure that only verified users can access it, you can follow these steps:

Use a Cloud Provider:
- Since you mentioned using Google Compute Engine (GCE), we'll use Google Cloud Platform (GCP) for this example.
Set Up a Reverse Proxy:
- Use a reverse proxy like Nginx or Traefik to manage incoming requests and route them to your Docker containers. This can also help with SSL termination.
Use OAuth2 Proxy for Authentication:
- Use an OAuth2 Proxy to authenticate users before they can access your API. This proxy can integrate with various identity providers like Google, GitHub, etc.
Deploy with Docker Compose:
- Update your docker-compose.yaml to include the reverse proxy and OAuth2 Proxy.

Let me know if of you need more info