Upgrade to Pro — share decks privately, control downloads, hide ads and more …

APIStrat 2016 | On-prem support? That was so 19...

API Strategy & Practice Conference
November 04, 2016
Technology
0
98

APIStrat 2016 | On-prem support? That was so 1982 (Charlie Ozinga)

A large population of businesses and major enterprises continue to use on-premise services for a variety of reasons, from Public sector compliance to security concerns, to just plain old, archaic systems that cost too much to do anything about. That doesn't mean we have to continue to support these services like we did back in the 1980s.

The challenge we will face in 2016: how do you make those on-prem services work in the new and emerging API Economy? We will dig into on-prem connector proxies, what one needs to do to consume an API architecture in an on-prem environment and how to support an app when things go down.

API Strategy & Practice Conference

November 04, 2016
Tweet

More Decks by API Strategy & Practice Conference

See All by API Strategy & Practice Conference
APIStrat 2016 | The end of polling: why and how to transform a REST API into a Data Streaming API (Audrey Neveu)
apistrat
12
280
APIStrat 2016 | OpenAPI Trek: Beyond API Documentation (Arnaud Lauret)
apistrat
5
220
APIStrat 2016 | Flying Dreams: Real-Time Communication from the Edge of Space (Jonathan Barton, Neha Abrol)
apistrat
1
120
APIStrat 2016 | Effortless microservices in production with Kubernetes (Ken Wronkiewicz)
apistrat
0
130
Song by Tony Blank
apistrat
0
150
API Lifecycle Manager by Steve Fonseca
apistrat
2
220
APIs In The Enterprise: How Walgreens Formed It's Digital Business by Drew Schweinfurth
apistrat
1
360
Developers Are Difficult by Andrew Noonan
apistrat
0
120
The Future of APIs by Dion Hinchcliffe
apistrat
1
360

Other Decks in Technology

See All in Technology
マルチプロダクトな開発組織で 「開発生産性」に向き合うために試みたこと / Improving Multi-Product Dev Productivity
sugamasao
1
260
Redmine 6.0 新機能評価ガイド
vividtone
0
300
強いチームと開発生産性
onk
PRO
18
6.5k
Lexical Analysis
shigashiyama
1
140
いろんなものと両立する Kaggleの向き合い方
go5paopao
2
990
利きプロセススケジューラ
sat
PRO
4
2.7k
株式会社島津製作所_研究開発(集団協業と知的生産)の現場を支える、OSS知識基盤システムの導入
akahane92
1
190
freeeのモバイルエンジニアについて
freee
1
110
データ活用促進のためのデータ分析基盤の進化
takumakouno
2
660
形式手法の 10 メートル手前 #kernelvm / Kernel VM Study Hokuriku Part 7
ytaka23
5
770
AWS Lambdaと歩んだ“サーバーレス”と今後 #lambda_10years
yoshidashingo
1
120
マルチモーダルデータ基盤の課題と観点
neonankiti
1
110

Featured

See All Featured
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
169
50k
Into the Great Unknown - MozCon
thekraken
32
1.5k
KATA
mclloyd
29
14k
Large-scale JavaScript Application Architecture
addyosmani
510
110k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
31
2.7k
Why You Should Never Use an ORM
jnunemaker
PRO
54
9k
Speed Design
sergeychernyshev
24
600
Reflections from 52 weeks, 52 projects
jeffersonlam
346
20k
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
131
33k
Evolution of real-time – Irina Nazarova, EuRuKo, 2024
irinanazarova
4
370
No one is an island. Learnings from fostering a developers community.
thoeni
19
3k
Writing Fast Ruby
sferik
627
61k

Transcript

  1. On-Prem Support That was so 1982 [email protected] @CharlieOzinga

  2. On-Prem Support That was so ...

  3. On-Prem Support That was so 1982

  4. A long time ago... In an IT department far away,

    a company would own and maintain all of its own computer hardware, where it would install all the software it used. This was generally considered a terrible idea. Then came the Cloud, which promised to save time and effort just by adding “as a service” to everything...

  5. Moving to the Cloud (Like, the Cloud is totally way

    cool, dude)

  6. Everybody’s doing it ... ‘ The argument over whether to

    go cloud or not is over. Aside from a few businesses ... most companies now acknowledge that they will eventually be moving their applications to the cloud. ‘ ‘ If I could have simply deployed our software on the public cloud, ... I would have asked, “Where do I sign?” ‘ ‘ [moving to the cloud] is undoubtedly one of the biggest trends in the IT industry right now. ‘

  7. … or are they? ‘ Compute- and I/O-intensive big data

    workloads won't stray to the cloud yet as security and existing infrastructure keep analytics in the data center. ‘ ‘ Moving to the cloud should always be well evaluated and only done if it brings value ... not everything needs to be moved from On-Premises to the cloud. ‘

  8. Scorecard: Cloud •  Outsource IT •  Cost •  Upgrades • 

    Mobility •  Access*

  9. Scorecard: On-Prem •  Security (transmit, storage) •  Compliance (HIPAA, PCI,

    internal) •  Integration (w/ other software or processes) •  Inertia (tech debt, things that work) •  Cost (to scale)

  10. Conclusion: Cloud is still trending, but there will still be

    holdouts for the foreseeable future.

  11. Connecting … (14.4k baud modem sound goes here)

  12. Connecting: Cloud User connects directly to API via the magic

    of the Internet.

  13. Connecting: On-Prem (0) Nothing to connect to / is not

    reachable •  Intranet •  Firewall •  Desktop

  14. Connecting: On-Prem (1) On-Prem installs Ground2Cloud Client, which creates a

    tunnel to our hosted Ground2Cloud Server.

  15. Connecting: On-Prem (2) User connects to server, which is forwarded

    to API via tunnel.

  16. Conclusion: It’s theoretically possible to connect to on-prem APIs in

    the same way you connect to Cloud APIs.

  17. Challenges … (Like, what’s your damage?)

  18. Usability •  Multiple services on the same on- prem installation.

    •  Automatable. •  Easy to install and run. •  Have to monitor and detail client connections. •  Easy to upgrade.

  19. Usability •  Multiple services on the same on- prem installation.

    •  Automatable. •  Easy to install and run. •  Have to monitor and detail client connections. •  Easy to upgrade. •  Multi-tenant client •  Client API ◦  Manage tenants ◦  Stop / Start / Register •  Multi-tenant (per Org) server •  Server API ◦  Total registered users ◦  API success / error count

  20. Client + Server API $ curl localhost:8101/counts/requests ← server API

    {"count":432} $ curl localhost:8100/tenants ← client API { "success": true, "tenants": [ { "registered": true, "registeredId": "4001", ... } ] }
  21. None
  22. None

  23. Security •  Data must be secure at all stages of

    transit. •  Each user must be isolated. •  Registration / handshake process must be resistant to attacks.

  24. Security •  Data must be secure at all stages of

    transit. •  Each user must be isolated. •  Registration / handshake process must be resistant to attacks. •  Use SSH w/ TLS to establish communication and API connection. •  Keys for identity and SSH are generated on the client, and only public part shared with server. •  HTTP(S) proxy with its own cert, backend verifies service cert.

  25. Scalability / Stability •  ~10k of open sockets. •  ~1k

    requests / sec •  Listen ports not immediately being reaped. •  Network instability •  Silently dropped connections.

  26. Scalability / Stability •  ~10k of open sockets. •  ~1k

    requests / sec •  Listen ports not immediately being reaped. •  Network instability •  Silently dropped connections. •  Automatic retries. •  Self-healing connection and process restart. •  Runs as a service. •  Periodic heartbeat / loopback call. •  Port number shifting. •  HA / Distributed server stack.

  27. Conclusion: With a little work, it’s feasible to treat on-prem

    services like cloud services.

  28. Future work (When the Going Gets Tough, the Tough Get

    Going)

  29. Down the Road •  Events and notification ◦  Service /

    tunnel up/down ◦  Request failure notification •  Queueing (some) requests in the server •  Improved HA and scalability of server

  30. Conclusion: This section was only a single slide, so it

    doesn’t really need its own conclusion.

  31. Q + A [email protected] https://developers.cloud-elements.com/ -> “API Toolkit” -> “Ground2Cloud”

    http://cloud-elements.com

  32. (no, seriously, we’re done here)