APIs are the stable, versioned interface that makes information hiding real. Gateways centralize cross-cutting concerns; BFFs tailor per client; contracts and governance keep the estate safe and coherent.
Target REST level 2 unless hypermedia earns its keep. Put cross-cutting concerns in a gateway, and add a BFF when a client type's needs diverge sharply. Version every public API and gate deploys with consumer-driven contract tests. Govern naming, security, and deprecation centrally as the estate grows.
APIs are the stable, versioned interface that makes information hiding real. Gateways centralize cross-cutting concerns; BFFs tailor per client; contracts and governance keep the estate safe and coherent.
Target REST level 2 unless hypermedia earns its keep. Put cross-cutting concerns in a gateway, and add a BFF when a client type's needs diverge sharply. Version every public API and gate deploys with consumer-driven contract tests. Govern naming, security, and deprecation centrally as the estate grows.