SlideShare a Scribd company logo

Azure API Manegement Introduction and Integeration with BizTalk

Shailesh Dwivedi
Shailesh Dwivedi

Azure API Management (APIM) is a platform designed to create consistent API gateways for back-end services, facilitating the publication of APIs to developers and partners. It includes features like API security, traffic management, and analytics, allowing organizations to manage exposure and utilization of their data. APIM comprises several components including an API gateway, an Azure portal for administration, and a developer portal for user engagement.

Technology
1 of 37
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
Introduction to Azure API Management Azure API Management with Microsoft BizTalk
Who uses Azure APIM in their Business? 2
What is API Management? API Management (APIM) is a way to create consistent and modern API gateways for existing back-end services. API Management helps organizations publish APIs to external, partner, and internal developers to unlock the potential of their data and services. Businesses everywhere are looking to extend their operations as a digital platform, creating new channels, finding new customers and driving deeper engagement with existing ones. • To use API Management, administrators create APIs. • Each API consists of one or more operations, and each API can be added to one or more products. • To use an API, developers subscribe to a product that contains that API, and then they can call the API's operation 3
Microsoft Azure API Management Azure API MGMT Project existing or new services as APIs Publish APIs to developers, partners and citizens View Operational and Business insights through Analytics Developer Engagement 4
WEB USERS WEB SITE YOUR ORGANIZATION APP DEVELOPERS USERS MOBILE APPS SOCIAL APPS PARTNERS AND AFFILIATES API AZURE API MANAGEMENT DEVELOPER PORTAL REGISTRATION DOCUMENTATION INTERACTIVE API CONSOLE DEVELOPER ANALYTICS APP GALLERY FORUMS NEWS ISSUES WIKI API PROXY SCALING CACHING MONITORING TRAFFIC MANAGEMENT ADMIN PORTAL API PUBLISHING SUBSCRIPTION MANAGEMENT SECURITY MEDIATION CONTENT PUBLISHING SITE CUSTOMIZATION ISSUE MANAGEMENT ANALYTICS REPORTS Azure API Management – High Level Architecture 5
Microsoft Azure Enterprise integration on Azure with APIM 6
Microsoft Azure API Management Features 7
Microsoft Azure Feature comparison of Azure API Management tiers 8
Static IP OAuth 2.0 support Backup / Restore Certificate auth HTTP support Subscription per app Performance improvements (DevX and Proxy) Recent News/Updates Now in all Azure regions, including Australia! Delegation Improved Caching Custom Subscription Keys Compression Support Google Analytics Support Faster API setup Check Header Policy And more 9
Microsoft Azure API Management Components The system is made up of the following components: 1. The API gateway is the endpoint that: • Accepts API calls and routes them to your backends. • Verifies API keys, JWT tokens, certificates, and other credentials. • Enforces usage quotas and rate limits. • Transforms your API on the fly without code modifications. • Caches backend responses where set up. • Logs call metadata for analytics purposes. 2. The Azure portal is the administrative interface where you set up your API program. Use it to: • Define or import API schema. • Package APIs into products. • Set up policies like quotas or transformations on the APIs. • Get insights from analytics. • Manage users. 3. The Developer portal serves as the main web presence for developers, where they can: • Read API documentation. • Try out an API via the interactive console. • Create an account and subscribe to get API keys. • Access analytics on their own usage. 10
Microsoft Azure APIs and Operations • Each API represents a set of operations available to developers. • Each API contains a reference to the back-end service that implements the API, and its operations map to the operations implemented by the back-end service. • Operations in API Management are highly configurable, with control over URL mapping, query and path parameters, request and response content, and operation response caching. Rate limit, quotas, and IP restriction policies can also be implemented at the API or individual operation level. • Products are how APIs are surfaced to developers. • Products in API Management have one or more APIs, and are configured with a title, description, and terms of use. • Products can be Open or Protected. Protected products must be subscribed to before they can be used, while open products can be used without a subscription. Products 11
Microsoft Azure Azure Portal with APIM Interface 12
Microsoft Azure Azure Portal – Products Creation 13
Microsoft Azure Groups Groups are used to manage the visibility of products to developers. API Management has the following immutable system groups: • Administrators - Azure subscription administrators are members of this group. Administrators manage API Management service instances, creating the APIs, operations, and products that are used by developers. • Developers - Authenticated developer portal users fall into this group. Developers are the customers that build applications using your APIs. Developers are granted access to the developer portal and build applications that call the operations of an API. • Guests - Unauthenticated developer portal users, such as prospective customers visiting the developer portal of an API Management instance fall into this group. They can be granted certain read-only access, such as the ability to view APIs but not call them. • The developer portal is where developers can learn about your APIs, view and call operations, and subscribe to products. Developer portal 14
Microsoft Azure Azure Portal - Groups 15
Microsoft Azure APIM Developer Portal 16
Microsoft Azure Policies • Policies are a powerful capability of API Management that allow the Azure portal to change the behavior of the API through configuration. • Policies are a collection of statements that are executed sequentially on the request or response of an API.  Access restriction check  Advanced policies  Authentication policies  Caching policies  Cross domain policies  Transformation policies Types of Policies 17
Microsoft Azure Azure Portal – APIM with Policy Creation 18
Microsoft Azure Policies - Access restriction check  HTTP header - Enforces existence and/or value of a HTTP Header.  Limit call rate by subscription - Prevents API usage spikes by limiting call rate, on a per subscription basis.  Limit call rate by key - Prevents API usage spikes by limiting call rate, on a per key basis.  Restrict caller IPs - Filters (allows/denies) calls from specific IP addresses and/or address ranges.  Set usage quota by subscription - Allows you to enforce a renewable or lifetime call volume and/or bandwidth quota, on a per subscription basis.  Set usage quota by key - Allows you to enforce a renewable or lifetime call volume and/or bandwidth quota, on a per key basis.  Validate JWT - Enforces existence and validity of a JWT extracted from either a specified HTTP Header or a specified query parameter. 19
Microsoft Azure Advanced policies  Control flow - Conditionally applies policy statements based on the evaluation of Boolean expressions.  Forward request - Forwards the request to the backend service.  Limit concurrency - Prevents enclosed policies from executing by more than the specified number of requests at a time.  Log to Event Hub - Sends messages in the specified format to a message target defined by a Logger entity.  Mock response - Aborts pipeline execution and returns a mocked response directly to the caller.  Retry - Retries execution of the enclosed policy statements, if and until the condition is met. Execution will repeat at the specified time intervals and up to the specified retry count.  Return response - Aborts pipeline execution and returns the specified response directly to the caller.  Send one way request - Sends a request to the specified URL without waiting for a response.  Send request - Sends a request to the specified URL.  Set HTTP proxy - Allows you to route forwarded requests via an HTTP proxy.  Set variable - Persist a value in a named context variable for later access.  Set request method - Allows you to change the HTTP method for a request.  Set status code - Changes the HTTP status code to the specified value.  Trace - Adds custom traces into the API Inspector output, Application Insights telemetries, and Resource Logs.  Wait - Waits for enclosed Send request, Get value from cache, or Control flow policies to complete before proceeding. 20
Microsoft Azure Authentication policies  Authenticate with Basic - Authenticate with a backend service using Basic authentication.  Authenticate with client certificate - Authenticate with a backend service using client certificates.  Authenticate with managed identity - Authenticate with a backend service using a managed identity. Caching policies  Get from cache - Perform cache look up and return a valid cached response when available.  Store to cache - Caches response according to the specified cache control configuration.  Get value from cache - Retrieve a cached item by key.  Store value in cache - Store an item in the cache by key.  Remove value from cache - Remove an item in the cache by key. Cross domain policies  Allow cross-domain calls - Makes the API accessible from Adobe Flash and Microsoft Silverlight browser-based clients.  CORS - Adds cross-origin resource sharing (CORS) support to an operation or an API to allow cross-domain calls from browser-based clients.  JSONP - Adds JSON with padding (JSONP) support to an operation or an API to allow cross-domain calls from JavaScript browser-based clients. 21
Microsoft Azure Transformation policies  Convert JSON to XML - Converts request or response body from JSON to XML.  Convert XML to JSON - Converts request or response body from XML to JSON.  Find and replace string in body - Finds a request or response substring and replaces it with a different substring.  Mask URLs in content - Re-writes (masks) links in the response body so that they point to the equivalent link via the gateway.  Set backend service - Changes the backend service for an incoming request.  Set body - Sets the message body for incoming and outgoing requests.  Set HTTP header - Assigns a value to an existing response and/or request header or adds a new response and/or request header.  Set query string parameter - Adds, replaces value of, or deletes request query string parameter.  Rewrite URL - Converts a request URL from its public form to the form expected by the web service.  Transform XML using an XSLT - Applies an XSL transformation to XML in the request or response body. 22
Microsoft Azure 23 The policy definition is a simple XML document that describes a sequence of inbound and outbound statements. The XML can be edited directly in the definition window. A list of statements is provided to the right and statements applicable to the current scope are enabled and highlighted. The configuration is divided into inbound, backend, outbound, and on-error. The series of specified policy statements is executes in order for a request and a response <policies> <inbound> <!-- statements to be applied to the request go here --> </inbound> <backend> <!-- statements to be applied before the request is forwarded to the backend service go here -</backend> <outbound> <!-- statements to be applied to the response go here --> </outbound> <on-error> <!-- statements to be applied if there is an error condition go here --> </on-error> </policies> <policies> <inbound> <cross-domain /> <base /> <find-and-replace from="xyz" to="abc" /> </inbound> </policies> <ip-filter action="allow | forbid"> <address>address</address> <address-range from="address" to="address"/> </ip-filter> <rate-limit-by-key calls="3" renewal-period="15" counter-key="@(context.Subscription.Id)" /> Understanding policy configuration
Microsoft Azure 24 <policies> <inbound> <rate-limit-by-key calls="3" renewal-period="15" counter-key="@(context.Subscription.Id)" /> <base /> </inbound> <backend> <base /> </backend> <outbound> <set-header name="X-Powered-By" exists-action="delete" /> <set-header name="X-AspNet-Version" exists-action="delete" /> <find-and-replace from="://conferenceapi.azurewebsites.net:443" to="://apiphany.azure-api.net/conference"/> <find-and-replace from="://conferenceapi.azurewebsites.net" to="://apiphany.azure-api.net/conference"/> <base /> </outbound> <on-error> <base /> </on-error> </policies> <policies> <inbound> <base /> <rate-limit calls="20" renewal-period="90" /> </inbound> <outbound> <base /> </outbound> </policies> <choose> <when condition="@(context.Response.StatusCode == 200 && context.Product.Name.Equals("Starter"))"> <set-body>@{ var response = context.Response.Body.As<JObject>(); foreach (var key in new [] {"minutely", "hourly", "daily", "flags"}) { response.Property (key).Remove (); } return response.ToString(); } </set-body> </when> </choose> <log-to-eventhub logger-id="id of the logger entity" partition-id="index of the partition where messages are sent" partition-key="value used for partition assignment"> Expression returning a string to be logged </log-to-eventhub> <set-variable name="IsMobile" value="@(context.Request.Headers["User-Agent"].Contains("iPad") || context.Request.Headers["User- Agent"].Contains("iPhone"))" /
Microsoft Azure 25 <authentication-basic username="testuser" password="testpassword" /> <authentication-certificate thumbprint="CA06F56B258B7A0D4F2B05470939478651151984" /> <authentication-certificate certificate-id="544fe9ddf3b8f30fb490d90f" /> <policies> <inbound> <base /> <cache-lookup vary-by-developer="true | false" vary-by-developer-groups="true | false" downstream-caching-type="none | private | public" must-revalidate="true | false"> <vary-by-query-parameter>parameter name</vary-by-query-parameter> <!-- optional, can repeated several times --> </cache-lookup> </inbound> <outbound> <base /> <cache-store duration="3600" /> </outbound> </policies> <policies> <inbound> <base /> </inbound> <outbound> <base /> <json-to-xml apply="always" consider-accept- header="false" parse-date="false"/> </outbound> </policies> <policies> <inbound> <base /> <rewrite-uri template="/v2/US/hardware/{storenumber}&{ordernumber}?City=city&State=state" /> </inbound> <outbound> <base /> </outbound> </policies>
Microsoft Azure Analytics in APIM 26
Microsoft Azure Metrics in APIM 27
Microsoft Azure Alerts in APIM 28
Microsoft Azure Gateways , Virtual Network , Notification in APIM 29
Microsoft Azure  APIM with Calculator API  APIM with Logic Apps  Using Various Policies Demo 30
Azure API Management Integration with Microsoft BizTalk Server
Azure API Manegement Introduction and Integeration with BizTalk
Azure API Manegement Introduction and Integeration with BizTalk
DEMO 34
Microsoft Azure Step1 : Publish web service using BizTalk http://localhost/BizTalkWcfService/EmployeeDetails.svc?singleWsdl Step2 : Publish the API using BizTalk Admin Console BizTalk Server Configuration - 1 35
Microsoft Azure BizTalk Server Configuration - 2 36
Thanks! 37

More Related Content

What's hot (19)

PDF
Global Azure Bootcamp 2018 - Oh no my organization went Azure
Karim Vaes
 
PPTX
Azure Messaging Services 2
Azure Riyadh User Group
 
PPTX
Azure Messaging Services #1
Azure Riyadh User Group
 
PPTX
Azure Compute, Networking and Storage Overview
Azure Riyadh User Group
 
PDF
Develop enterprise-ready applications for Microsoft Teams
Markus Moeller
 
PPTX
Service Fabric – building tomorrows applications today
BizTalk360
 
PPTX
Migrate an Existing Application to Microsoft Azure
Chris Dufour
 
PDF
Jakarta EE und Microprofile sind bei Azure zu Hause
Edward Burns
 
PPTX
Demystifying azure networking for on premises-azure databases
Mohamed Wali
 
PPTX
Lets talk about: Azure Kubernetes Service (AKS)
Pedro Sousa
 
PDF
Azure web apps
Vaibhav Gujral
 
PPTX
Tokyo azure meetup #8 - Azure Update, August
Kanio Dimitrov
 
PDF
Azure Service Endpoints vs. Private Links
Matthias Güntert
 
PPTX
Azure functions serverless
Udaiappa Ramachandran
 
PPTX
Azure Database Services for MySQL PostgreSQL and MariaDB
Nicholas Vossburg
 
PPTX
Certification in Microsoft Azure
Daniel Toomey
 
PPTX
Innovation anywhere with microsoft azure arc
GoviccaSihombing
 
PPTX
Intro to Azure Static Web Apps
Moaid Hathot
 
PPTX
Intro to docker and kubernetes
Mohit Chhabra
 
Global Azure Bootcamp 2018 - Oh no my organization went Azure
Karim Vaes
 
Azure Messaging Services 2
Azure Riyadh User Group
 
Azure Messaging Services #1
Azure Riyadh User Group
 
Azure Compute, Networking and Storage Overview
Azure Riyadh User Group
 
Develop enterprise-ready applications for Microsoft Teams
Markus Moeller
 
Service Fabric – building tomorrows applications today
BizTalk360
 
Migrate an Existing Application to Microsoft Azure
Chris Dufour
 
Jakarta EE und Microprofile sind bei Azure zu Hause
Edward Burns
 
Demystifying azure networking for on premises-azure databases
Mohamed Wali
 
Lets talk about: Azure Kubernetes Service (AKS)
Pedro Sousa
 
Azure web apps
Vaibhav Gujral
 
Tokyo azure meetup #8 - Azure Update, August
Kanio Dimitrov
 
Azure Service Endpoints vs. Private Links
Matthias Güntert
 
Azure functions serverless
Udaiappa Ramachandran
 
Azure Database Services for MySQL PostgreSQL and MariaDB
Nicholas Vossburg
 
Certification in Microsoft Azure
Daniel Toomey
 
Innovation anywhere with microsoft azure arc
GoviccaSihombing
 
Intro to Azure Static Web Apps
Moaid Hathot
 
Intro to docker and kubernetes
Mohit Chhabra
 

Similar to Azure API Manegement Introduction and Integeration with BizTalk (20)

PPTX
Exposing services with Azure API Management
Callon Campbell
 
PPTX
Azure API Management to expose backend services securely
Dinusha Kumarasiri
 
PDF
Grand tour of Azure API Management.pdf
Sherman37
 
PPTX
Secure and Optimize APIs using Azure API Management
BizTalk360
 
PPTX
Azure API Management - why should I care?
Jouni Heikniemi
 
PDF
Azure Spring Clean 2024 event - Azure API Management: Architecting for Perfor...
Hamida Rebai Trabelsi
 
PPTX
Transformation through the API
Alex Danvy
 
PDF
API Management: La Puerta de enlace (por Francisco Nieto)
Jorge Millán Cabrera
 
PDF
APIs In Action -Harnessing the Power of Azure API Management: Building Robust...
Hamida Rebai Trabelsi
 
PDF
M meijer api management - tech-days 2015
Freelance Consultant / Manager / co-CTO
 
PPTX
Implement API Gateway using Azure API Management
Alexander Laysha
 
PDF
Everything you always wanted to know about API Management (but were afraid to...
Massimo Bonanni
 
PDF
AZ-204: Connect to and consume Azure services and third-party services - Part 1
AzureEzy1
 
PPTX
Build 2017 - P4034 - Agile app development with Azure API Management
Windows Developer
 
PDF
Global Azure Sydney 2025 - Anupam Ranku.pdf
Anupam Ranku
 
PPTX
API Management Part 1 - An Introduction to Azure API Management
BizTalk360
 
PPTX
Global Azure 2022 - Architecting Modern Serverless APIs with Azure Functions ...
Callon Campbell
 
PPTX
Azure API Management Update
BizTalk360
 
PDF
Improve API Security and Performance with Azure API Management.pdf
vivekbagri7
 
PDF
Azure API Management - Global Azure Bootcamp 2019
Sam Fernando
 
Exposing services with Azure API Management
Callon Campbell
 
Azure API Management to expose backend services securely
Dinusha Kumarasiri
 
Grand tour of Azure API Management.pdf
Sherman37
 
Secure and Optimize APIs using Azure API Management
BizTalk360
 
Azure API Management - why should I care?
Jouni Heikniemi
 
Azure Spring Clean 2024 event - Azure API Management: Architecting for Perfor...
Hamida Rebai Trabelsi
 
Transformation through the API
Alex Danvy
 
API Management: La Puerta de enlace (por Francisco Nieto)
Jorge Millán Cabrera
 
APIs In Action -Harnessing the Power of Azure API Management: Building Robust...
Hamida Rebai Trabelsi
 
M meijer api management - tech-days 2015
Freelance Consultant / Manager / co-CTO
 
Implement API Gateway using Azure API Management
Alexander Laysha
 
Everything you always wanted to know about API Management (but were afraid to...
Massimo Bonanni
 
AZ-204: Connect to and consume Azure services and third-party services - Part 1
AzureEzy1
 
Build 2017 - P4034 - Agile app development with Azure API Management
Windows Developer
 
Global Azure Sydney 2025 - Anupam Ranku.pdf
Anupam Ranku
 
API Management Part 1 - An Introduction to Azure API Management
BizTalk360
 
Global Azure 2022 - Architecting Modern Serverless APIs with Azure Functions ...
Callon Campbell
 
Azure API Management Update
BizTalk360
 
Improve API Security and Performance with Azure API Management.pdf
vivekbagri7
 
Azure API Management - Global Azure Bootcamp 2019
Sam Fernando
 
Ad

Recently uploaded (20)

PPSX
Usergroup - OutSystems Architecture.ppsx
Kurt Vandevelde
 
PDF
LLM Search Readiness Audit - Dentsu x SEO Square - June 2025.pdf
Nick Samuel
 
PPTX
Enabling the Digital Artisan – keynote at ICOCI 2025
Alan Dix
 
PPTX
Reimaginando la Ciberdefensa: De Copilots a Redes de Agentes
Cristian Garcia G.
 
PDF
Pipeline Industry IoT - Real Time Data Monitoring
Safe Software
 
PDF
How to Visualize the ​Spatio-Temporal Data Using CesiumJS​
SANGHEE SHIN
 
PDF
Unlocking FME Flow’s Potential: Architecture Design for Modern Enterprises
Safe Software
 
PPTX
MARTSIA: A Tool for Confidential Data Exchange via Public Blockchain - Pitch ...
Michele Kryston
 
PDF
Quantum AI Discoveries: Fractal Patterns Consciousness and Cyclical Universes
Saikat Basu
 
PDF
My Journey from CAD to BIM: A True Underdog Story
Safe Software
 
DOCX
Daily Lesson Log MATATAG ICT TEchnology 8
LOIDAALMAZAN3
 
PPTX
Smarter Governance with AI: What Every Board Needs to Know
OnBoard
 
PDF
''Taming Explosive Growth: Building Resilience in a Hyper-Scaled Financial Pl...
Fwdays
 
PPTX
New ThousandEyes Product Innovations: Cisco Live June 2025
ThousandEyes
 
PDF
Hyderabad MuleSoft In-Person Meetup (June 21, 2025) Slides
Ravi Tamada
 
PDF
The Future of Product Management in AI ERA.pdf
Alyona Owens
 
PDF
Simplify Your FME Flow Setup: Fault-Tolerant Deployment Made Easy with Packer...
Safe Software
 
PDF
GDG Cloud Southlake #44: Eyal Bukchin: Tightening the Kubernetes Feedback Loo...
James Anderson
 
PPTX
Mastering Authorization: Integrating Authentication and Authorization Data in...
Hitachi, Ltd. OSS Solution Center.
 
PDF
FME as an Orchestration Tool with Principles From Data Gravity
Safe Software
 
Usergroup - OutSystems Architecture.ppsx
Kurt Vandevelde
 
LLM Search Readiness Audit - Dentsu x SEO Square - June 2025.pdf
Nick Samuel
 
Enabling the Digital Artisan – keynote at ICOCI 2025
Alan Dix
 
Reimaginando la Ciberdefensa: De Copilots a Redes de Agentes
Cristian Garcia G.
 
Pipeline Industry IoT - Real Time Data Monitoring
Safe Software
 
How to Visualize the ​Spatio-Temporal Data Using CesiumJS​
SANGHEE SHIN
 
Unlocking FME Flow’s Potential: Architecture Design for Modern Enterprises
Safe Software
 
MARTSIA: A Tool for Confidential Data Exchange via Public Blockchain - Pitch ...
Michele Kryston
 
Quantum AI Discoveries: Fractal Patterns Consciousness and Cyclical Universes
Saikat Basu
 
My Journey from CAD to BIM: A True Underdog Story
Safe Software
 
Daily Lesson Log MATATAG ICT TEchnology 8
LOIDAALMAZAN3
 
Smarter Governance with AI: What Every Board Needs to Know
OnBoard
 
''Taming Explosive Growth: Building Resilience in a Hyper-Scaled Financial Pl...
Fwdays
 
New ThousandEyes Product Innovations: Cisco Live June 2025
ThousandEyes
 
Hyderabad MuleSoft In-Person Meetup (June 21, 2025) Slides
Ravi Tamada
 
The Future of Product Management in AI ERA.pdf
Alyona Owens
 
Simplify Your FME Flow Setup: Fault-Tolerant Deployment Made Easy with Packer...
Safe Software
 
GDG Cloud Southlake #44: Eyal Bukchin: Tightening the Kubernetes Feedback Loo...
James Anderson
 
Mastering Authorization: Integrating Authentication and Authorization Data in...
Hitachi, Ltd. OSS Solution Center.
 
FME as an Orchestration Tool with Principles From Data Gravity
Safe Software
 
Ad

Azure API Manegement Introduction and Integeration with BizTalk

  • 1. Introduction to Azure API Management Azure API Management with Microsoft BizTalk
  • 2. Who uses Azure APIM in their Business? 2
  • 3. What is API Management? API Management (APIM) is a way to create consistent and modern API gateways for existing back-end services. API Management helps organizations publish APIs to external, partner, and internal developers to unlock the potential of their data and services. Businesses everywhere are looking to extend their operations as a digital platform, creating new channels, finding new customers and driving deeper engagement with existing ones. • To use API Management, administrators create APIs. • Each API consists of one or more operations, and each API can be added to one or more products. • To use an API, developers subscribe to a product that contains that API, and then they can call the API's operation 3
  • 4. Microsoft Azure API Management Azure API MGMT Project existing or new services as APIs Publish APIs to developers, partners and citizens View Operational and Business insights through Analytics Developer Engagement 4
  • 5. WEB USERS WEB SITE YOUR ORGANIZATION APP DEVELOPERS USERS MOBILE APPS SOCIAL APPS PARTNERS AND AFFILIATES API AZURE API MANAGEMENT DEVELOPER PORTAL REGISTRATION DOCUMENTATION INTERACTIVE API CONSOLE DEVELOPER ANALYTICS APP GALLERY FORUMS NEWS ISSUES WIKI API PROXY SCALING CACHING MONITORING TRAFFIC MANAGEMENT ADMIN PORTAL API PUBLISHING SUBSCRIPTION MANAGEMENT SECURITY MEDIATION CONTENT PUBLISHING SITE CUSTOMIZATION ISSUE MANAGEMENT ANALYTICS REPORTS Azure API Management – High Level Architecture 5
  • 8. Microsoft Azure Feature comparison of Azure API Management tiers 8
  • 9. Static IP OAuth 2.0 support Backup / Restore Certificate auth HTTP support Subscription per app Performance improvements (DevX and Proxy) Recent News/Updates Now in all Azure regions, including Australia! Delegation Improved Caching Custom Subscription Keys Compression Support Google Analytics Support Faster API setup Check Header Policy And more 9
  • 10. Microsoft Azure API Management Components The system is made up of the following components: 1. The API gateway is the endpoint that: • Accepts API calls and routes them to your backends. • Verifies API keys, JWT tokens, certificates, and other credentials. • Enforces usage quotas and rate limits. • Transforms your API on the fly without code modifications. • Caches backend responses where set up. • Logs call metadata for analytics purposes. 2. The Azure portal is the administrative interface where you set up your API program. Use it to: • Define or import API schema. • Package APIs into products. • Set up policies like quotas or transformations on the APIs. • Get insights from analytics. • Manage users. 3. The Developer portal serves as the main web presence for developers, where they can: • Read API documentation. • Try out an API via the interactive console. • Create an account and subscribe to get API keys. • Access analytics on their own usage. 10
  • 11. Microsoft Azure APIs and Operations • Each API represents a set of operations available to developers. • Each API contains a reference to the back-end service that implements the API, and its operations map to the operations implemented by the back-end service. • Operations in API Management are highly configurable, with control over URL mapping, query and path parameters, request and response content, and operation response caching. Rate limit, quotas, and IP restriction policies can also be implemented at the API or individual operation level. • Products are how APIs are surfaced to developers. • Products in API Management have one or more APIs, and are configured with a title, description, and terms of use. • Products can be Open or Protected. Protected products must be subscribed to before they can be used, while open products can be used without a subscription. Products 11
  • 12. Microsoft Azure Azure Portal with APIM Interface 12
  • 13. Microsoft Azure Azure Portal – Products Creation 13
  • 14. Microsoft Azure Groups Groups are used to manage the visibility of products to developers. API Management has the following immutable system groups: • Administrators - Azure subscription administrators are members of this group. Administrators manage API Management service instances, creating the APIs, operations, and products that are used by developers. • Developers - Authenticated developer portal users fall into this group. Developers are the customers that build applications using your APIs. Developers are granted access to the developer portal and build applications that call the operations of an API. • Guests - Unauthenticated developer portal users, such as prospective customers visiting the developer portal of an API Management instance fall into this group. They can be granted certain read-only access, such as the ability to view APIs but not call them. • The developer portal is where developers can learn about your APIs, view and call operations, and subscribe to products. Developer portal 14
  • 17. Microsoft Azure Policies • Policies are a powerful capability of API Management that allow the Azure portal to change the behavior of the API through configuration. • Policies are a collection of statements that are executed sequentially on the request or response of an API.  Access restriction check  Advanced policies  Authentication policies  Caching policies  Cross domain policies  Transformation policies Types of Policies 17
  • 18. Microsoft Azure Azure Portal – APIM with Policy Creation 18
  • 19. Microsoft Azure Policies - Access restriction check  HTTP header - Enforces existence and/or value of a HTTP Header.  Limit call rate by subscription - Prevents API usage spikes by limiting call rate, on a per subscription basis.  Limit call rate by key - Prevents API usage spikes by limiting call rate, on a per key basis.  Restrict caller IPs - Filters (allows/denies) calls from specific IP addresses and/or address ranges.  Set usage quota by subscription - Allows you to enforce a renewable or lifetime call volume and/or bandwidth quota, on a per subscription basis.  Set usage quota by key - Allows you to enforce a renewable or lifetime call volume and/or bandwidth quota, on a per key basis.  Validate JWT - Enforces existence and validity of a JWT extracted from either a specified HTTP Header or a specified query parameter. 19
  • 20. Microsoft Azure Advanced policies  Control flow - Conditionally applies policy statements based on the evaluation of Boolean expressions.  Forward request - Forwards the request to the backend service.  Limit concurrency - Prevents enclosed policies from executing by more than the specified number of requests at a time.  Log to Event Hub - Sends messages in the specified format to a message target defined by a Logger entity.  Mock response - Aborts pipeline execution and returns a mocked response directly to the caller.  Retry - Retries execution of the enclosed policy statements, if and until the condition is met. Execution will repeat at the specified time intervals and up to the specified retry count.  Return response - Aborts pipeline execution and returns the specified response directly to the caller.  Send one way request - Sends a request to the specified URL without waiting for a response.  Send request - Sends a request to the specified URL.  Set HTTP proxy - Allows you to route forwarded requests via an HTTP proxy.  Set variable - Persist a value in a named context variable for later access.  Set request method - Allows you to change the HTTP method for a request.  Set status code - Changes the HTTP status code to the specified value.  Trace - Adds custom traces into the API Inspector output, Application Insights telemetries, and Resource Logs.  Wait - Waits for enclosed Send request, Get value from cache, or Control flow policies to complete before proceeding. 20
  • 21. Microsoft Azure Authentication policies  Authenticate with Basic - Authenticate with a backend service using Basic authentication.  Authenticate with client certificate - Authenticate with a backend service using client certificates.  Authenticate with managed identity - Authenticate with a backend service using a managed identity. Caching policies  Get from cache - Perform cache look up and return a valid cached response when available.  Store to cache - Caches response according to the specified cache control configuration.  Get value from cache - Retrieve a cached item by key.  Store value in cache - Store an item in the cache by key.  Remove value from cache - Remove an item in the cache by key. Cross domain policies  Allow cross-domain calls - Makes the API accessible from Adobe Flash and Microsoft Silverlight browser-based clients.  CORS - Adds cross-origin resource sharing (CORS) support to an operation or an API to allow cross-domain calls from browser-based clients.  JSONP - Adds JSON with padding (JSONP) support to an operation or an API to allow cross-domain calls from JavaScript browser-based clients. 21
  • 22. Microsoft Azure Transformation policies  Convert JSON to XML - Converts request or response body from JSON to XML.  Convert XML to JSON - Converts request or response body from XML to JSON.  Find and replace string in body - Finds a request or response substring and replaces it with a different substring.  Mask URLs in content - Re-writes (masks) links in the response body so that they point to the equivalent link via the gateway.  Set backend service - Changes the backend service for an incoming request.  Set body - Sets the message body for incoming and outgoing requests.  Set HTTP header - Assigns a value to an existing response and/or request header or adds a new response and/or request header.  Set query string parameter - Adds, replaces value of, or deletes request query string parameter.  Rewrite URL - Converts a request URL from its public form to the form expected by the web service.  Transform XML using an XSLT - Applies an XSL transformation to XML in the request or response body. 22
  • 23. Microsoft Azure 23 The policy definition is a simple XML document that describes a sequence of inbound and outbound statements. The XML can be edited directly in the definition window. A list of statements is provided to the right and statements applicable to the current scope are enabled and highlighted. The configuration is divided into inbound, backend, outbound, and on-error. The series of specified policy statements is executes in order for a request and a response <policies> <inbound> <!-- statements to be applied to the request go here --> </inbound> <backend> <!-- statements to be applied before the request is forwarded to the backend service go here -</backend> <outbound> <!-- statements to be applied to the response go here --> </outbound> <on-error> <!-- statements to be applied if there is an error condition go here --> </on-error> </policies> <policies> <inbound> <cross-domain /> <base /> <find-and-replace from="xyz" to="abc" /> </inbound> </policies> <ip-filter action="allow | forbid"> <address>address</address> <address-range from="address" to="address"/> </ip-filter> <rate-limit-by-key calls="3" renewal-period="15" counter-key="@(context.Subscription.Id)" /> Understanding policy configuration
  • 24. Microsoft Azure 24 <policies> <inbound> <rate-limit-by-key calls="3" renewal-period="15" counter-key="@(context.Subscription.Id)" /> <base /> </inbound> <backend> <base /> </backend> <outbound> <set-header name="X-Powered-By" exists-action="delete" /> <set-header name="X-AspNet-Version" exists-action="delete" /> <find-and-replace from="://conferenceapi.azurewebsites.net:443" to="://apiphany.azure-api.net/conference"/> <find-and-replace from="://conferenceapi.azurewebsites.net" to="://apiphany.azure-api.net/conference"/> <base /> </outbound> <on-error> <base /> </on-error> </policies> <policies> <inbound> <base /> <rate-limit calls="20" renewal-period="90" /> </inbound> <outbound> <base /> </outbound> </policies> <choose> <when condition="@(context.Response.StatusCode == 200 && context.Product.Name.Equals("Starter"))"> <set-body>@{ var response = context.Response.Body.As<JObject>(); foreach (var key in new [] {"minutely", "hourly", "daily", "flags"}) { response.Property (key).Remove (); } return response.ToString(); } </set-body> </when> </choose> <log-to-eventhub logger-id="id of the logger entity" partition-id="index of the partition where messages are sent" partition-key="value used for partition assignment"> Expression returning a string to be logged </log-to-eventhub> <set-variable name="IsMobile" value="@(context.Request.Headers["User-Agent"].Contains("iPad") || context.Request.Headers["User- Agent"].Contains("iPhone"))" /
  • 25. Microsoft Azure 25 <authentication-basic username="testuser" password="testpassword" /> <authentication-certificate thumbprint="CA06F56B258B7A0D4F2B05470939478651151984" /> <authentication-certificate certificate-id="544fe9ddf3b8f30fb490d90f" /> <policies> <inbound> <base /> <cache-lookup vary-by-developer="true | false" vary-by-developer-groups="true | false" downstream-caching-type="none | private | public" must-revalidate="true | false"> <vary-by-query-parameter>parameter name</vary-by-query-parameter> <!-- optional, can repeated several times --> </cache-lookup> </inbound> <outbound> <base /> <cache-store duration="3600" /> </outbound> </policies> <policies> <inbound> <base /> </inbound> <outbound> <base /> <json-to-xml apply="always" consider-accept- header="false" parse-date="false"/> </outbound> </policies> <policies> <inbound> <base /> <rewrite-uri template="/v2/US/hardware/{storenumber}&{ordernumber}?City=city&State=state" /> </inbound> <outbound> <base /> </outbound> </policies>
  • 29. Microsoft Azure Gateways , Virtual Network , Notification in APIM 29
  • 30. Microsoft Azure  APIM with Calculator API  APIM with Logic Apps  Using Various Policies Demo 30
  • 31. Azure API Management Integration with Microsoft BizTalk Server
  • 35. Microsoft Azure Step1 : Publish web service using BizTalk http://localhost/BizTalkWcfService/EmployeeDetails.svc?singleWsdl Step2 : Publish the API using BizTalk Admin Console BizTalk Server Configuration - 1 35
  • 36. Microsoft Azure BizTalk Server Configuration - 2 36