Automate deployment of APIM and App GW on Azure using custom ssl cert
Integrate API Management in an internal VNET with Application Gateway
Azure's API Management service provides the ability to abstract backend services and present them as a set of easily consumable API's via a single HTTPs endpoint.
Some organisations require the ability to publish some API's externally to the public Internet, whilst keeping some API's private for internal consumption only.
It's possible to enable this scenario by deploying API Management into an internal Azure virtual network and only publishing API's externally that match a specific URL pattern.
This PowerShell script deploys -
- Azure API Management in Internal VNET mode
- Azure Application Gateway
The script also configures path-based routing rules within the App Gateway to allow public access to any API's hosted with a base URL i.e. https://api.yourdomain.org/external/.
Original Microsoft architecture and documentation is here
Foundational script is here on the Azure Architects blog