cancel
Showing results for 
Search instead for 
Did you mean: 

Container-to-container communication in SAP BTP Cloud Foundry

JakobFra
Participant
633

Hi,

I have the following architecture for my use case that is deployed on SAP BTP Cloud Foundry:

Angular Frontend, Nodejs Backend and an @sap/approuter Application Router, using UAA Service for Authentication and Authorization purposes. As far as I understand the Approuter concept, it acts as a reverse proxy. However, since every deployed service gets a public URL by default, it is possible to bypass this proxy and to access each service directly by calling its URL. The native CF approach to prevent this is the usage of an internal domain (apps.internal by default) and setting up a network policy that allows direct container-to-container communication between two services within the cluster. However, network-policies are not supported by CF on SAP BTP. My question: is there any other way to setup a communication between approuter and backend service without exposing the backend via public URL to the internet?

Thanks for your support!

Regards.
Jakob

Accepted Solutions (1)

Accepted Solutions (1)

gregorw
Active Contributor

Unfortunately the current answer is no. I would suggest you post this as an Idea at SAP Extension Suite. You have my vote already.

JakobFra
Participant

Hi gregorw,

thanks for your feedback, even though I hoped to get a more promising response 😉 I followed your advice and submitted an according idea, feel free to upvote 😉

https://influence.sap.com/sap/ino/#/idea/275831/?section=sectionDetails

Regards,
Jakob

Answers (0)