SlideShare a Scribd company logo

API Management: La Puerta de enlace (por Francisco Nieto)

J
Jorge Millán Cabrera

Francisco Nieto discusses the transformative role of APIs as strategic business assets that can be leveraged for monetization and service expansion. The presentation emphasizes the importance of API management, detailing key concepts such as the architecture, security policies, and the differences between microservices and monolithic applications. Additionally, it highlights tools and practices for managing APIs effectively within a cloud-based environment.

Technology
Related topics:
API Management Trends
1 of 20
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
2017 - Madrid API Management Francisco Nieto Senior Integration Consultant, Kabel #GIBMad2017
Who I am? Francisco Nieto Senior Integration Consultant, Kabel MCPD. MCTS en Visual Studio, SQL, SharePoint, Dynamics CRM fnieto@kabel.es https://twitter.com/fnietoga +34 682 836 331 https://www.linkedin.com/in/francisco-nieto-garcia #GIBMad2017
#GIBMad2017
The rise of APIs “Application programming interfaces (APIs) have been elevated from a development technique to a business model driver and boardroom consideration. An organization’s core assets can be reused, shared, and monetized through APIs that can extend the reach of existing services or provide new revenue streams. APIs should be managed like a product - one built on top of a potentially complex technical footprint that includes legacy and third-party systems and data.” “API Economy” CloudHybrid IT Mobile Analytics IoT Microservices
• Scales by cloning the app on multiple servers/VMs/Containers Monolithic application approach Microservices application approach • A microservice application separates functionality into separate smaller services. • Scales out by deploying each service independently creating instances of these services across servers/VMs/containers • A monolith app contains domain specific functionality and is normally divided by functional layers such as web, business and data App 1 App 2App 1 #GIBMad2017
#GIBMad2017
Common scenarios What is? API Management #GIBMad2017
High Level Architecture
Publisher Portal #GIBMad2017
Entities #GIBMad2017
Security programmatically any operation analytics data, APIs, products SECURITY MANAGEMENT #GIBMad2017
https://docs.microsoft.com/en-us/azure/api-management/api- management-access-restriction-policies Access & Auth • Check header • Limit call rate • Restrict by IP • Set usage quota • Validate JWT • Authenticate with basic / client certificate Caching • Get from cache • Store to cache • Get value from cache • Store value in cache • Remove value from cache Cross domain Advanced • Control flow • Forward request • Log to Event Hub • Retry, Wait • Return response • Send request • Set status • Set variable Transformation • JSON to XML • XML to JSON • Find and replace • Set backend service • Set body • Set query string parameter • Rewrite URL Policies
Policy Expressions <rate-limit-by-key calls="10" renewal-period="60" counter-key="@(context.Request.IpAddress)" /> <quota-by-key calls="1000000" bandwidth="10000" renewal-period="2629800" counter-key="@(context.Request.IpAddress)" /> <policies> <inbound> <log-to-eventhub logger-id ='contoso-logger'> @( string.Join(",", DateTime.UtcNow, context.Deployment.ServiceName, context.RequestId, context.Request.IpAddress, context.Operation.Name) ) </log-to-eventhub> </inbound> <outbound> </outbound> </policies>
Policy Expressions (II) <policies> <inbound> <!-- statements to be applied to the request go here --> </inbound> <backend> <!-- statements to be applied before the request is forwarded to the backend service go here --> </backend> <outbound> <!-- statements to be applied to the response go here --> </outbound> <on-error> <!-- statements to be applied if there is an error condition go here --> </on-error> </policies> • System.Collections.Generic • System.Security.Cryptography • System.Text.RegularExpressions • System.Xml.Linq • Newtonsoft.Json.Linq … • Api • Deployment • LastError • Operation • Product • Request • Response • Subscription • User … https://docs.microsoft.com/en-us/azure/api-management/api- management-policy-expressions#CLRTypes
Policy Expressions (III)
Developer Portal • Sign up / Sign in • Request subscriptionbasics • Documentation, Definiton (swagger, WADL) • Test, Code samplesAPIs • View Products, APIs by Product • Report Issuemanage • Styles & Templates • Blogand more #GIBMad2017
• Easily import API Apps as APIs • mock-response policy • Users & Products can be managed from Azure Portal • SOAP to REST • PowerShell and .NET SDK support for the backend entity. • Diagnostics logs (batched hourly) • Integration with Azure Monitor • SSL3 is disabled, all versions of TLS are enabled by default • Role-Based Access Control • OMS Integration • Version APIs • work natively with Service Fabric • ARM templates • Manage API lifecycle • Import API from a Function App • Backlog • Visual studio Integration • Improved Policy Editor UI • Deploy gateway on-premises https://trello.com/b/FAA147vS/azure-api-management-product-roadmap
#GIBMad2017
Environment API Management Logic App Backend Internet Microsoft Azure GB.CustomerAPI GB.OrdersAPI gibmad17kb01 ordersapi gibmad17-sbus- kb01 Service Fabric GIB.ProductsAPI SQL Database GB.CurrencyConverter SOAP WSDL Dynamics 365 #GIBMad2017
Thanks… #GIBMAD2017

More Related Content

PDF
DevTest Labs en Azure (por Iván Cañizares)
Jorge Millán Cabrera
 
PDF
BizTalk Server 2016: What's new (por Mariano Robles)
Jorge Millán Cabrera
 
PDF
Logic Apps: El Poder de la nueva Integración (por Félix Mondelo)
Jorge Millán Cabrera
 
PDF
Un orquestador en la nube: Azure Data Factory (por Carlos Sacristán)
Jorge Millán Cabrera
 
PDF
Logic Apps y las posibilidades de Integración Cloud (por Felipe Senso, de Mic...
Jorge Millán Cabrera
 
PPTX
Enterprise Integration Pack & On-Premises Data Gateway
Daniel Toomey
 
PPTX
Azure API Management & API Apps [Global Integration Bootcamp 2017]
Ashley Knowles
 
PDF
How to use hybrid cloud to migrate and deploy unified business applications i...
Eric D. Schabell
 
DevTest Labs en Azure (por Iván Cañizares)
Jorge Millán Cabrera
 
BizTalk Server 2016: What's new (por Mariano Robles)
Jorge Millán Cabrera
 
Logic Apps: El Poder de la nueva Integración (por Félix Mondelo)
Jorge Millán Cabrera
 
Un orquestador en la nube: Azure Data Factory (por Carlos Sacristán)
Jorge Millán Cabrera
 
Logic Apps y las posibilidades de Integración Cloud (por Felipe Senso, de Mic...
Jorge Millán Cabrera
 
Enterprise Integration Pack & On-Premises Data Gateway
Daniel Toomey
 
Azure API Management & API Apps [Global Integration Bootcamp 2017]
Ashley Knowles
 
How to use hybrid cloud to migrate and deploy unified business applications i...
Eric D. Schabell
 

What's hot (20)

PPTX
Azure IPaaS: Integration Evolved! (Glenn Colpaert @TechdaysNL 2017)
Codit
 
PPTX
Cloud integration: what's in it for you? (Toon Vanhoutte & Massimo Crippa at ...
Codit
 
PPTX
Sap open connectors #sitcph
Daniel Graversen
 
PDF
R, Spark, Tensorflow, H20.ai Applied to Streaming Analytics
Kai Wähner
 
PDF
Cloud Developer Days - BigQuery
Wlodek Bielski
 
PPTX
BizTalk and Hybrid Integration
BizTalk360
 
PDF
Azure Service Operator - Provision Your Resources in a Cloud-Native Way
Nico Meisenzahl
 
PPTX
BizTalk Server 2016: What’s new
Mariano Robles Hernández
 
PDF
An overview of BigQuery
GirdhareeSaran
 
PDF
Hybrid Integration using BizTalk and Azure
BizTalk360
 
PPTX
Integration and IoT
BizTalk360
 
PDF
INJECT MACHINE LEARNING AND OTHER CLOUD SERVICES IN YOUR EXISTING APPLICATIONS
Wouter Janssens
 
PDF
APIdays Paris 2018 - From real-life challenges to industrial IoT solutions, i...
apidays
 
PDF
Serverless Days Milano - Developing Serverless applications with GraphQL
Marcia Villalba
 
PDF
APIdays Paris 2018 - Disagree with “I Agree”. Enforcing Better GDPR Complianc...
apidays
 
PPTX
What's inside "migrating to biz talk server 2020" Book (BizTalk360 Webinar)
BizTalk360
 
PPTX
Mule iON - OSS ESB to iPaaS
Ali Sadat
 
PDF
How to build & run a SaaS with a team of two
Eficode
 
PPTX
The citizen integrator
BizTalk360
 
PDF
Lessons Learned: From Java EE to Spring Cloud in the context of Activiti OSS
Mauricio (Salaboy) Salatino
 
Azure IPaaS: Integration Evolved! (Glenn Colpaert @TechdaysNL 2017)
Codit
 
Cloud integration: what's in it for you? (Toon Vanhoutte & Massimo Crippa at ...
Codit
 
Sap open connectors #sitcph
Daniel Graversen
 
R, Spark, Tensorflow, H20.ai Applied to Streaming Analytics
Kai Wähner
 
Cloud Developer Days - BigQuery
Wlodek Bielski
 
BizTalk and Hybrid Integration
BizTalk360
 
Azure Service Operator - Provision Your Resources in a Cloud-Native Way
Nico Meisenzahl
 
BizTalk Server 2016: What’s new
Mariano Robles Hernández
 
An overview of BigQuery
GirdhareeSaran
 
Hybrid Integration using BizTalk and Azure
BizTalk360
 
Integration and IoT
BizTalk360
 
INJECT MACHINE LEARNING AND OTHER CLOUD SERVICES IN YOUR EXISTING APPLICATIONS
Wouter Janssens
 
APIdays Paris 2018 - From real-life challenges to industrial IoT solutions, i...
apidays
 
Serverless Days Milano - Developing Serverless applications with GraphQL
Marcia Villalba
 
APIdays Paris 2018 - Disagree with “I Agree”. Enforcing Better GDPR Complianc...
apidays
 
What's inside "migrating to biz talk server 2020" Book (BizTalk360 Webinar)
BizTalk360
 
Mule iON - OSS ESB to iPaaS
Ali Sadat
 
How to build & run a SaaS with a team of two
Eficode
 
The citizen integrator
BizTalk360
 
Lessons Learned: From Java EE to Spring Cloud in the context of Activiti OSS
Mauricio (Salaboy) Salatino
 
Ad

Similar to API Management: La Puerta de enlace (por Francisco Nieto) (20)

PDF
Grand tour of Azure API Management.pdf
Sherman37
 
PDF
Azure API Manegement Introduction and Integeration with BizTalk
Shailesh Dwivedi
 
PDF
apidays LIVE JAKARTA - Enterprise API management in agile integration by Ragh...
apidays
 
PDF
[Workshop] API-driven Integration
WSO2
 
PDF
WSO2 API Platform: Vision and Roadmap
WSO2
 
PPTX
WSO2Con 2025 - AI-Driven API Design, Development, and Consumption with Enhanc...
WSO2
 
PPT
Six Steps To Build A Successful API
Chris Haddad
 
PPT
Six Steps to Build Successful APIs
WSO2
 
PDF
apidays LIVE Hong Kong 2021 - Enterprise Integration Patterns for OpenAPI Ini...
apidays
 
PDF
WSO2 API Manager 2.0 - Overview
Edgar Silva
 
PDF
WSO2 User Group Bangalore Meetup
WSO2
 
PPTX
Azure API Management to expose backend services securely
Dinusha Kumarasiri
 
PDF
How to Build, Manage, and Promote APIs
WSO2
 
PPTX
Handling NFRs for the API through OoTB API policies Part-1 | MuleSoft Mysore ...
MysoreMuleSoftMeetup
 
PDF
APIsecure 2023 - Exploring Advanced API Security Techniques and Technologies,...
apidays
 
PPTX
Implement API Gateway using Azure API Management
Alexander Laysha
 
PDF
WSO2 API Manager - Product Overview
WSO2
 
PDF
[WSO2 Summit Sydney 2019] Building a Successful API Strategy from Scratch and...
WSO2
 
PDF
Virtual Meetup - API Security Best Practices
Jimmy Attia
 
PDF
João Emilio Santos Bento da Silva - Estratégia de APIs
DevCamp Campinas
 
Grand tour of Azure API Management.pdf
Sherman37
 
Azure API Manegement Introduction and Integeration with BizTalk
Shailesh Dwivedi
 
apidays LIVE JAKARTA - Enterprise API management in agile integration by Ragh...
apidays
 
[Workshop] API-driven Integration
WSO2
 
WSO2 API Platform: Vision and Roadmap
WSO2
 
WSO2Con 2025 - AI-Driven API Design, Development, and Consumption with Enhanc...
WSO2
 
Six Steps To Build A Successful API
Chris Haddad
 
Six Steps to Build Successful APIs
WSO2
 
apidays LIVE Hong Kong 2021 - Enterprise Integration Patterns for OpenAPI Ini...
apidays
 
WSO2 API Manager 2.0 - Overview
Edgar Silva
 
WSO2 User Group Bangalore Meetup
WSO2
 
Azure API Management to expose backend services securely
Dinusha Kumarasiri
 
How to Build, Manage, and Promote APIs
WSO2
 
Handling NFRs for the API through OoTB API policies Part-1 | MuleSoft Mysore ...
MysoreMuleSoftMeetup
 
APIsecure 2023 - Exploring Advanced API Security Techniques and Technologies,...
apidays
 
Implement API Gateway using Azure API Management
Alexander Laysha
 
WSO2 API Manager - Product Overview
WSO2
 
[WSO2 Summit Sydney 2019] Building a Successful API Strategy from Scratch and...
WSO2
 
Virtual Meetup - API Security Best Practices
Jimmy Attia
 
João Emilio Santos Bento da Silva - Estratégia de APIs
DevCamp Campinas
 
Ad

Recently uploaded (20)

PDF
DevOps & Developer Experience Summer BBQ
AUGNYC
 
PDF
Chapter 2 Digital Image Fundamentals.pdf
Getnet Tigabie Askale -(GM)
 
PDF
madgavkar20181017ppt McKinsey Presentation.pdf
georgschmitzdoerner
 
PPTX
The-Ethical-Hackers-Imperative-Safeguarding-the-Digital-Frontier.pptx
sujalchauhan1305
 
PDF
CIFDAQ's Teaching Thursday: Moving Averages Made Simple
CIFDAQ
 
PDF
creating-agentic-ai-solutions-leveraging-aws.pdf
siddharthnetsavvies
 
PDF
NewMind AI Weekly Chronicles - July'25 - Week IV
NewMind AI
 
PDF
CIFDAQ's Market Wrap: Ethereum Leads, Bitcoin Lags, Institutions Shift
CIFDAQ
 
PDF
Transforming Manufacturing operations through Intelligent Integrations
TGH Software Solutions Pvt. Ltd.
 
PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
PPTX
breach-and-attack-simulation-cybersecurity-india-chennai-defenderrabbit-2025....
defencerabbit Team
 
PDF
Reimagining Insurance: Connected Data for Confident Decisions.pdf
Precisely
 
PDF
Doc9.....................................
SofiaCollazos
 
PDF
Test Bank, Solutions for Java How to Program, An Objects-Natural Approach, 12...
famaw19526
 
PDF
Event Presentation Google Cloud Next Extended 2025
minhtrietgect
 
PDF
Building High-Performance Oracle Teams: Strategic Staffing for Database Manag...
SMACT Works
 
PDF
REPORT: Heating appliances market in Poland 2024
SPIUG
 
PDF
BLW VOCATIONAL TRAINING SUMMER INTERNSHIP REPORT
codernjn73
 
PDF
Automating ArcGIS Content Discovery with FME: A Real World Use Case
Safe Software
 
PDF
SparkLabs Primer on Artificial Intelligence 2025
SparkLabs Group
 
DevOps & Developer Experience Summer BBQ
AUGNYC
 
Chapter 2 Digital Image Fundamentals.pdf
Getnet Tigabie Askale -(GM)
 
madgavkar20181017ppt McKinsey Presentation.pdf
georgschmitzdoerner
 
The-Ethical-Hackers-Imperative-Safeguarding-the-Digital-Frontier.pptx
sujalchauhan1305
 
CIFDAQ's Teaching Thursday: Moving Averages Made Simple
CIFDAQ
 
creating-agentic-ai-solutions-leveraging-aws.pdf
siddharthnetsavvies
 
NewMind AI Weekly Chronicles - July'25 - Week IV
NewMind AI
 
CIFDAQ's Market Wrap: Ethereum Leads, Bitcoin Lags, Institutions Shift
CIFDAQ
 
Transforming Manufacturing operations through Intelligent Integrations
TGH Software Solutions Pvt. Ltd.
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
breach-and-attack-simulation-cybersecurity-india-chennai-defenderrabbit-2025....
defencerabbit Team
 
Reimagining Insurance: Connected Data for Confident Decisions.pdf
Precisely
 
Doc9.....................................
SofiaCollazos
 
Test Bank, Solutions for Java How to Program, An Objects-Natural Approach, 12...
famaw19526
 
Event Presentation Google Cloud Next Extended 2025
minhtrietgect
 
Building High-Performance Oracle Teams: Strategic Staffing for Database Manag...
SMACT Works
 
REPORT: Heating appliances market in Poland 2024
SPIUG
 
BLW VOCATIONAL TRAINING SUMMER INTERNSHIP REPORT
codernjn73
 
Automating ArcGIS Content Discovery with FME: A Real World Use Case
Safe Software
 
SparkLabs Primer on Artificial Intelligence 2025
SparkLabs Group
 

API Management: La Puerta de enlace (por Francisco Nieto)

  • 1. 2017 - Madrid API Management Francisco Nieto Senior Integration Consultant, Kabel #GIBMad2017
  • 2. Who I am? Francisco Nieto Senior Integration Consultant, Kabel MCPD. MCTS en Visual Studio, SQL, SharePoint, Dynamics CRM [email protected] https://twitter.com/fnietoga +34 682 836 331 https://www.linkedin.com/in/francisco-nieto-garcia #GIBMad2017
  • 4. The rise of APIs “Application programming interfaces (APIs) have been elevated from a development technique to a business model driver and boardroom consideration. An organization’s core assets can be reused, shared, and monetized through APIs that can extend the reach of existing services or provide new revenue streams. APIs should be managed like a product - one built on top of a potentially complex technical footprint that includes legacy and third-party systems and data.” “API Economy” CloudHybrid IT Mobile Analytics IoT Microservices
  • 5. • Scales by cloning the app on multiple servers/VMs/Containers Monolithic application approach Microservices application approach • A microservice application separates functionality into separate smaller services. • Scales out by deploying each service independently creating instances of these services across servers/VMs/containers • A monolith app contains domain specific functionality and is normally divided by functional layers such as web, business and data App 1 App 2App 1 #GIBMad2017
  • 7. Common scenarios What is? API Management #GIBMad2017
  • 11. Security programmatically any operation analytics data, APIs, products SECURITY MANAGEMENT #GIBMad2017
  • 12. https://docs.microsoft.com/en-us/azure/api-management/api- management-access-restriction-policies Access & Auth • Check header • Limit call rate • Restrict by IP • Set usage quota • Validate JWT • Authenticate with basic / client certificate Caching • Get from cache • Store to cache • Get value from cache • Store value in cache • Remove value from cache Cross domain Advanced • Control flow • Forward request • Log to Event Hub • Retry, Wait • Return response • Send request • Set status • Set variable Transformation • JSON to XML • XML to JSON • Find and replace • Set backend service • Set body • Set query string parameter • Rewrite URL Policies
  • 13. Policy Expressions <rate-limit-by-key calls="10" renewal-period="60" counter-key="@(context.Request.IpAddress)" /> <quota-by-key calls="1000000" bandwidth="10000" renewal-period="2629800" counter-key="@(context.Request.IpAddress)" /> <policies> <inbound> <log-to-eventhub logger-id ='contoso-logger'> @( string.Join(",", DateTime.UtcNow, context.Deployment.ServiceName, context.RequestId, context.Request.IpAddress, context.Operation.Name) ) </log-to-eventhub> </inbound> <outbound> </outbound> </policies>
  • 14. Policy Expressions (II) <policies> <inbound> <!-- statements to be applied to the request go here --> </inbound> <backend> <!-- statements to be applied before the request is forwarded to the backend service go here --> </backend> <outbound> <!-- statements to be applied to the response go here --> </outbound> <on-error> <!-- statements to be applied if there is an error condition go here --> </on-error> </policies> • System.Collections.Generic • System.Security.Cryptography • System.Text.RegularExpressions • System.Xml.Linq • Newtonsoft.Json.Linq … • Api • Deployment • LastError • Operation • Product • Request • Response • Subscription • User … https://docs.microsoft.com/en-us/azure/api-management/api- management-policy-expressions#CLRTypes
  • 16. Developer Portal • Sign up / Sign in • Request subscriptionbasics • Documentation, Definiton (swagger, WADL) • Test, Code samplesAPIs • View Products, APIs by Product • Report Issuemanage • Styles & Templates • Blogand more #GIBMad2017
  • 17. • Easily import API Apps as APIs • mock-response policy • Users & Products can be managed from Azure Portal • SOAP to REST • PowerShell and .NET SDK support for the backend entity. • Diagnostics logs (batched hourly) • Integration with Azure Monitor • SSL3 is disabled, all versions of TLS are enabled by default • Role-Based Access Control • OMS Integration • Version APIs • work natively with Service Fabric • ARM templates • Manage API lifecycle • Import API from a Function App • Backlog • Visual studio Integration • Improved Policy Editor UI • Deploy gateway on-premises https://trello.com/b/FAA147vS/azure-api-management-product-roadmap
  • 19. Environment API Management Logic App Backend Internet Microsoft Azure GB.CustomerAPI GB.OrdersAPI gibmad17kb01 ordersapi gibmad17-sbus- kb01 Service Fabric GIB.ProductsAPI SQL Database GB.CurrencyConverter SOAP WSDL Dynamics 365 #GIBMad2017