Welcome to API Gateway
Plugin Hub

AI Prompt Decorator

The ai-prompt-decorator plugin decorates user prompts to LLMs by prefixing and appending pre-engineered prompts, streamlining API operation and content generation.

AI Prompt Template

The ai-prompt-template plugin supports pre-configured templates for user inputs to LLMs in a "fill in the blank" fashion, streamlining API management.

AI Proxy

The ai-proxy plugin simplifies access to LLM providers by converting plugin configurations into the required request format, optimizing API operation.

Graphql Proxy Cache

The graphql-proxy-cache plugin enables caching of responses for GraphQL queries, improving API performance.

Graphql Limit Count

The graphql-limit-count plugin employs a fixed window algorithm to restrict the rate of GraphQL requests based on the depth of queries or mutations, optimizing API performance and resource usage.

Limit Count

The limit-count plugin enforces API rate limiting with a fixed window algorithm, restricting requests within a time interval. Requests over the quota are rejected.

Limit Count Advanced

The limit-count-advanced plugin enforces API rate limiting with a fixed window or sliding window algorithm, restricting requests within a time window. Requests over the quota are rejected.

Limit Conn

The limit-conn plugin restricts the rate of requests by managing concurrent connections. Requests exceeding the threshold may be delayed or rejected, ensuring controlled API usage and preventing overload.

Limit Req

The limit-req plugin enforces API rate limiting with a leaky bucket algorithm to rate limit requests, enabling effective throttling to manage traffic flow.

OAS Validator

The oas-validator plugin ensures requests and responses comply with defined Open API schemas, enhancing API management and operational integrity.

Proxy Cache

The proxy-cache plugin caches responses based on keys, supporting disk and memory caching for GET, POST, and HEAD requests, enhancing API performance.

Proxy Mirror

The proxy-mirror plugin duplicates ingress traffic to API gateway, forwarding it to a designated upstream while keeping regular services uninterrupted.

Request ID

The request-id plugin adds a unique ID to each request proxied through the API gateway, facilitating effective tracking of API requests for better API management.

Proxy Buffering

The proxy-buffering plugin dynamically disables NGINX proxy buffering, optimizing performance with SSE and other streaming upstream services in API gateway.

Request Validation

The request-validation plugin checks requests for compliance before forwarding them to upstream services, enhancing security in API operations.

Traffic Label

The traffic-label plugin labels traffic based on user-defined rules, enabling actions based on labels and associated weights for improved API traffic management.

Workflow

The workflow plugin enables conditional execution of user-defined actions on client traffic based on specific rules, allowing granular API traffic management.

Traffic Split

The traffic-split plugin directs traffic to multiple upstream services based on conditions or weights, providing a flexible approach for API release strategies and traffic management.

Body Transformer

The body-transformer plugin converts request and response bodies between formats, such as JSON to XML, facilitating seamless data exchange.

Attach Consumer Label

The attach-consumer-label plugin attaches custom consumer labels to authenticated requests, for upstream services to implement additional business logics.

Exit transformer

The exit-transformer plugin customizes API gateway responses based on status codes, headers, and bodies. When set as a global plugin, it also customizes responses for non-existent routes.

Fault Injection

The fault-injection plugin tests application resiliency by simulating controlled faults or delays, making it ideal for chaos engineering and failure condition analysis.

degraphql

The degraphql plugin enables communication with upstream GraphQL services through standard HTTP requests by mapping GraphQL queries to HTTP endpoints, simplifying API integration.

Mocking

The mocking plugin simulates API responses without forwarding requests to upstream services, offering customization of status codes, response bodies, headers, and more for API testing and development.

gRPC Transcode

The grpc-transcode plugin converts between HTTP and gRPC requests and responses, facilitating seamless communication between different API protocols.

Proxy Rewrite

The proxy-rewrite plugin offers flexible options to rewrite requests that API gateway forwards to upstream services, enhancing API management.

Response Rewrite

The response-rewrite plugin allows rewriting of responses from API gateway and upstream services, providing flexibility in API responses.

SOAP

The soap plugin simplifies transformation between RESTful HTTP requests and SOAP requests, including their corresponding responses, for better API interoperability.

Authz Keycloak

The authz-keycloak plugin integrates with Keycloak for user authentication and authorization, enhancing API security and management.

Basic Auth

The basic-auth plugin provides basic access authentication, requiring clients to authenticate before accessing upstream resources, enhancing API security.

Forward Auth

The forward-auth plugin integrates with external authorization services, enhancing API security and access control.

HMAC Auth

The hmac-auth plugin supports HMAC authentication to ensure request integrity, preventing modifications during transmission and enhancing API security.

JWE Decrypt

The jwe-decrypt plugin decrypts JWE authorization headers in requests directed to routes or services, enhancing API security.

JWT Auth

The jwt-auth plugin supports the use of JSON Web Token (JWT) for client authentication before accessing upstream resources, enhancing API security measures.

Key Auth

The key-auth plugin allows clients to authenticate using an authentication key before accessing upstream resources, enhancing API security measures.

Multi Auth

The multi-auth plugin enables consumers using diverse authentication methods to share the same route or service, streamlining API lifecycle management.

OPA

The opa plugin integrates with Open Policy Agent, enabling unified policy definition and enforcement for authorization in API operations.

OpenID Connect

The openid-connect plugin integrates with OIDC providers like Keycloak and Auth0, simplifying user authentication in API management.

SAML Auth

The saml-auth plugin enables user authentication via SAML 2.0 in the API gateway by interacting with identity providers (IdP), enhancing API security.

ACL

The acl plugin controls access to upstream resources by verifying if the user is on the access control lists, enhancing API management.

Consumer Restriction

The consumer-restriction plugin implements access controls based on consumer name, route ID, service ID, or consumer group ID, enhancing API security.

CORS

The cors plugin enables cross-origin resource sharing, allowing servers to specify permitted origins and instructing browsers to load resources from those origins, enhancing API accessibility.

Data Mask

The data-mask plugin removes or replaces sensitive information in request headers, bodies, and URL queries, enhancing data privacy and security.

IP Restriction

The ip-restriction plugin restricts access to upstream resources based on an IP address whitelist or blacklist, improving API security.

UA Restriction

The ua-restriction plugin restricts access to upstream resources using an allowlist or denylist of user agents, preventing overload from web crawlers and enhancing API security.

ClickHouse Logger

The clickhouse-logger plugin pushes request and response logs to ClickHouse databases in batches, allowing for customizable log formats to enhance data management.

Datadog

The datadog plugin integrates with Datadog, sending metrics to DogStatsD in batches to improve API monitoring and API performance tracking.

Elasticsearch Logger

The elasticsearch-logger plugin pushes request and response logs in batches to Elasticsearch, allowing for customizable log formats to enhance data management.

HTTP Logger

The http-logger plugin pushes request and response logs as JSON objects to HTTP(S) servers in batches, allowing for customizable log formats to enhance data management.

Kafka Logger

The kafka-logger plugin pushes request and response logs as JSON objects to Apache Kafka clusters in batches, allowing for customizable log formats to enhance data management.

Loki Logger

The Loki-Logger plugin sends request and response logs as JSON objects to Grafana Loki in batches via the Loki HTTP API, allowing for customizable log formats to enhance data management.

Prometheus

The prometheus plugin integrates with Prometheus for metric collection and continuous monitoring, enhancing API observability.

RocketMQ Logger

The rocketmq-logger plugin pushes request and response logs as JSON objects to RocketMQ clusters in batches, allowing for customizable log formats to enhance data management.

Skywalking

The skywalking plugin integrates with Apache SkyWalking for effective request tracing, enhancing API observability.

SkyWalking Logger

The skywalking-logger pushes request and response logs as JSON objects to SkyWalking OAP server in batches, allowing for customizable log formats to enhance data management.

OpenTelemetry

The opentelemetry plugin instruments the API gateway, sending traces to the OpenTelemetry collector for monitoring API operations per OpenTelemetry specs.

splunk-hec-logging

The splunk-hec-logging plugin serializes request and response context information to Splunk Event Data format and push to your Splunk HTTP Event Collector (HEC) in batches, allowing for customizable log formats to enhance data management.

syslog

The syslog plugin pushes request and response logs as JSON objects to syslog servers in batches, allowing for customizable log formats to enhance data management.

Zipkin

The zipkin plugin instruments the API gateway to send traces to Zipkin or compatible collectors like Jaeger and Apache SkyWalking, enhancing request tracing capabilities.

Error Page

The error-page plugin customizes the error page displayed when APISIX encounters exceptions, enhancing user experience and business branding.

Real IP

The real-ip plugin enables the API gateway to fetch the client's real IP using the IP address from the HTTP header or query string, improving data quality.

Public API

The public-api plugin exposes internal API endpoints, allowing external access while maintaining control over API management and security.

AWS Lambda

The aws-lambda plugin simplifies APISIX integration with AWS Lambda and Amazon API gateway, supporting authentication via IAM user credentials and API keys.

Serverless Functions

The serverless function plugins (pre-function and post-function) allow execution of user-defined logic at the start or end of specified execution phases in API gateway.

MQTT Proxy

The mqtt-proxy plugin supports proxying and load balancing MQTT requests to MQTT servers, enhancing API operation and management.