Google Cloud Platform ESPv2 is a general-purpose L7 service proxy that enables API management capabilities for JSON/REST or gRPC API services. ESPv2 integrates with Google Service Infrastructure to provide policy checks and telemetry reports.
ESPv2 is the next iteration of ESP. The current implementation of ESPv2 uses Envoy as a service proxy.
Google Cloud Endpoints and ESPv2 provide:
Easy Adoption: The API service can be implemented in any coding language using any IDLs.
Multiple Deployment Modes: Deploy ESPv2 as a sidecar for local backends or as a reverse proxy for remote backends.
Platform Flexibility: Support the deployment on any cloud or hybrid environment.
Superb Performance and Scalability: ESPv2 has low latency and high throughput.
ESPv2 includes two components:
Config Manager configures the data plane's Envoy filters dynamically via the Google Service Management API and flags specified by the API producer.
Envoy (with our custom filters) handles API calls using Service Infrastructure, Google's foundational platform for creating, managing, and consuming APIs and services.
ESPv2 provides powerful enterprise-ready features, such as:
Multiple Authentication Methods: Authenticate applications using API Keys. Authenticate users using any authentication platform that conforms to JSON Web Token RFC 7519. This includes Firebase Authentication, Auth0, Okta, Google ID tokens, and Google Service Accounts.
Quotas and Rate Limiting: Control the rate at which applications can call your APIs.
gRPC Transcoding: Allow clients to use HTTP/JSON to call backends that only support gRPC. ESPv2 will map HTTP/JSON requests (and their parameters) to gRPC methods (and their parameters and return types).
API Telemetry: Monitor API metrics such as error rates, response latencies, request size, etc. on Google Cloud Platform. ESPv2 also writes access logs for each request, providing insight into HTTP headers and response codes.
Application Observability: Understand and debug problems with your API or ESPv2 by viewing traces and application logs.
Multi Transport Protocols: ESPv2 supports HTTP/1.1, HTTP/2, web sockets, gRPC and gRPC-web.
Security: ESPv2 supports TLS for downstream and upstream, also mTLS for upstream connections, for both HTTP and gRPC.
Dynamic Routing: When deployed on non-serverless platforms (GCE, GKE, K8S) as a sidecar, ESPv2 routes all traffic to a single local backend. When deployed on serverless platforms (Cloud Run) as a reverse proxy, ESPv2 can route traffic across multiple remote upstream services.
Health Checks: ESPv2 can actively monitor your services.
The official Google Cloud Endpoints documentation contains tutorials and detailed documentation on deploying ESPv2 and managing API traffic.
Getting started with Extensible Service Proxy V2(ESPv2) tutorials:
Configuring ESPv2:
Understanding ESPv2:
ESPv2 is released as two docker images:
ESPv2 is the next iteration of ESP. Instead of an nginx-based data plane, ESPv2 uses Envoy. See the architecture overview for more info on ESPv2.
ESPv2 is designed to be mostly backwards-compatible with ESP (with the exception of a few startup flags). API producers do not need to modify the Endpoints Service Configuration to use ESPv2. Please refer to the migration guide for more details on the incompatible changes.
For serverless reverse proxy deployments, it is recommended to use ESPv2 instead of ESP. For sidecar deployments, either ESPv2 or ESP can be used, but ESPv2 will receive more features.
api: Envoy Filter Configurations developed in ESPv2
doc: Extended documentation (tutorials, architecture, use cases, etc.)
docker: Scripts for packaging ESPv2 in a Docker image for releases
examples: Examples to configure ESPv2
prow: Prow based test automation scripts
scripts: Scripts used for build and release ESPv2
src: ESPv2 source code, including Envoy Filters and Config Manager
tests: Integration and end-to-end tests for ESPv2
tools: Assorted tooling
Please join the google-cloud-endpoints Google group for announcements on ESPv2.
If you need support from the ESPv2 engineering team:
Your contributions are welcome:
Apache v2 - Google LLC