Upgrade to Pro — share decks privately, control downloads, hide ads and more …

APIsecure 2023 - API orchestration: to build re...

APIsecure 2023 - API orchestration: to build resilient applications, Cherish Santoshi (Orkes)

APIsecure 2023 - The world's first and only API security conference
March 14 & 15, 2023

API orchestration: to build resilient applications
Cherish Santoshi, Sr. Developer Relations Engineer at Orkes

------

Check out our conferences at https://www.apidays.global/

Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8

Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io

Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/

apidays

March 21, 2023
Tweet

More Decks by apidays

Other Decks in Programming

Transcript

  1. API Orchestration to build resilient apps Cherish Santoshi Developer Relations

    Engineer at Orkes CherishSantoshi CherishSantoshi
  2. Typical API Architecture On Premises Cloud Developer Services Developer Portal

    • Internal • External • Partner Management Services API Management Service Management Platform Management Security Services API & WS Security • Authentication • Authorization • Threat Protection • Data Privacy • PCIDSS Analytics Services API Analytics • Operational • Consumer • Business Customer’s BI Federation Single Sign-On Access Control Mobile Web Partners Services Social IoT Interaction Layer API & Service Gateway Micro Orchestration Mediation Transformation Traffic Management Traditional Integration Layer Service Mediation Messaging Connectivity Application Layer Business Rules Business Process Orchestration Service Orchestration Sense & Response Information Management layer
  3. Orchestration layer Client Applications End users Security Layer Caching Layer

    Representation layer Backend Systems API Implementations Orchestration Layer
  4. NoSQL Database Oracle Database MySQL Database InfluxDB Database Microservice 1

    (Python) Microservice 2 (Java) Microservice 3 (Node.js) Microservice 4 (Go) Server Stub Server Stub Server Stub Server Stub API (Orchestrator) Client 2 Client 1 Client 3 Distributed APIs
  5. What is API Orchestration API orchestration refers to the process

    of integrating and managing multiple APIs to perform a unified task and create a seamless user experience. API orchestration can involve splitting, merging, or routing data to different APIs, depending on the desired outcome.
  6. How does an Orchestration layer help? Data Transformation Runtime management

    Integrating language systems Authentication and RBAC Observability and debugging in Distributed applications 1. 2. 3. 4. 5.
  7. Data Transformation Not every request for data is delivered or

    received using a common format. Both the client and the server could need the data answers to be transmitted in a certain format, requiring data transformation to enable communication in a standard call format. Using its transformation capabilities, the orchestration layer can intervene to guarantee that payloads are prepared appropriately.
  8. Runtime management The orchestration layer can intervene before requests reach

    your API backend by treating each component of your application as a collection of microservices. Regarding security, this has a lot of benefits (runtime policies checking for malicious code threats). As a result, protocols, data validation, and error handling/logging are standardised.
  9. Integrating legacy system Language agnostic Orchestration platforms like Conductor can

    help you connect with your legacy systems. Mixing of API types, such as REST and SOAP, can lead to major headaches when trying to use multiple APIs together. In steps, the orchestration layer normalises the data structures. This manages the flow of data and lets you communicate with the most neglected APIs and microservices.
  10. Role-based permissions systems can be deployed since the orchestration layer

    can handle the authentication flow between microservices. This enables you to grant chosen people that fit a particular role access to only specific data. Authentication and Role Based Access Control
  11. OSS Traction Media & Entertainment Telco, Security, Networking Retail, Logistics,

    Supply Chain, Travel E-Commerce HealthCare, Insurance Platforms, Dev Experience, App Modernization, Cloud Migration Fintech, Banking, Real Estate, Mortgage
  12. 1. Try building a workflow at https://play.orkes.io/ 2. Join the

    Netflix conductor OSS repo: github.com/Netflix/conductor 3. Join our community