What does an API proxy application NOT do?

An API proxy application is designed to act as a gateway between clients and backend services, performing various critical functions. Among its capabilities, it helps in managing how requests and responses are handled, applying policies, and monitoring traffic.

The statement regarding applying runtime policies to enforce governance is not accurate in the context of what an API proxy primarily performs. While governance may involve defining policies, it is typically executed outside the direct responsibilities of the API proxy itself. Instead, the actual application of runtime policies usually occurs at a higher level or in a dedicated governance tool, rather than being an intrinsic function of every API proxy.

On the other hand, the API proxy does indeed determine which response and request events are allowed to pass through between the client and the backend service. It manages traffic flow, applies essential checks, and supports metering to understand how much traffic is being handled. Thus, applying runtime policies for governance is the aspect that an API proxy does not specifically manage on its own.