$30 off During Our Annual Pro Sale. View Details »

Taking Control over your APIs with Azure API Management

Manuel Meyer
November 21, 2019

Taking Control over your APIs with Azure API Management

We live in the era of the API-Economy. You are not a serious business if you don't offer Application Programmer Interfaces (APIs) to your customers and partners and use fancy words, such as "B2C-Engagement" or "B2B-Partner-Integration". Building and publishing an API is easy nowadays, but maintaining and evolving them is NOT! This is where Azure API Management (APIM) comes to the rescue. Azure APIM introduces a common layer where you can publish, manage and organise your API's. APIM decouples the API definitions that you publish to your consumers from the implementations within your company. It supports you by generating a developer portal where your API consumers can register for, browse through and even test you APIs. Since all your public APIs are exposed through a common platform, you can inspect, transform and redirect the requests and responses. In this session we find out how we can use Azure API Management in your enterprise and take back control over our APIs.

Manuel Meyer

November 21, 2019
Tweet

More Decks by Manuel Meyer

Other Decks in Programming

Transcript

  1. Taking Control over your
    APIs with
    Azure API Management
    Manuel Meyer
    Azure Architect, Trivadis AG
    www.manuelmeyer.net
    @manumeyer1

    View Slide

  2. View Slide

  3. View Slide

  4. The «API Economy»
    „The API economy is an enabler for
    turning a business or organization into
    a platform“
    Gartner, 2016
    https://www.gartner.com/smarterwithgartner/welcome-to-the-api-economy/

    View Slide

  5. The «API Economy»
    „Make APIs the basis of
    your digital strategy“
    Gartner, 2017
    https://www.gartner.com/smarterwithgartner/the-road-to-the-api-economy/

    View Slide

  6. «The Digital Transformation runs on APIs»
    APIs
    Connected Experience
    Devices and Data

    View Slide

  7. Getting Started

    View Slide

  8. View Slide

  9. Getting Started
    ▪ Adapt
    ▪ Format, URLs, versioning, caching strategy
    ▪ Expose
    ▪ Discovery, subscriptions, documentation, samples
    ▪ Protect
    ▪ Authorization, quotas, rate limits
    ▪ Understand
    ▪ Usage, health, latency, activity, trends
    ▪ Manage
    ▪ Lifecycle, monitoring, alerting.

    View Slide

  10. «The Digital Transformation runs on APIs»
    APIs
    Connected Experience
    Devices and Data

    View Slide

  11. «The Digital Transformation runs on APIs»
    Connected Experience
    Devices and Data
    Publish
    Azure portal
    Mediate
    Gateway
    Consume
    Developer portal Developers
    (use APIs)
    Publishers
    (provide APIs)

    View Slide

  12. View Slide

  13. Publish
    Products
    contain
    APIs with Operations
    Groups
    contain
    Users (Devs)
    Products are visible to Groups
    Groups allow Developers to Subscribe to APIs.
    ProductsAPI
    DiscountsAPI
    BillingAPI
    Product: Sales
    Product: Accounting
    Group: PartnerDevs
    invite
    subscribe
    Group: Others

    View Slide

  14. Publish – Import API

    View Slide

  15. Publish – Configure API/Operations

    View Slide

  16. Publish – Test Operation

    View Slide

  17. View Slide

  18. View Slide

  19. Consume – Manage Users
    ▪ User Management
    ▪ Add User
    ▪ Invite via Email
    ▪ Self-Sign-Up (via Developer Portal)
    ▪ Subscriptions
    ▪ API Requires Subscription (yes/no)
    ▪ Subscription requires Admin Approval (yes/no).

    View Slide

  20. Consume – Developer Portal

    View Slide

  21. Consume – Developer Portal
    ▪ Sign-up/Sign-in/Change Password/Cancel
    ▪ Discover Products & APIs
    ▪ View Docs & Samples
    ▪ Request a Subscription
    ▪ Test APIs
    ▪ Fully Generated & Customizable
    ▪ Self-Hostable (new Portal only).

    View Slide

  22. View Slide

  23. View Slide

  24. Mediate - Analytics

    View Slide

  25. Mediate - Analytics

    View Slide

  26. Mediate - Analytics

    View Slide

  27. Mediate – Analytics with Application Insights

    View Slide

  28. Mediate – Analytics with Application Insights

    View Slide

  29. View Slide

  30. Mediate - Policies
    ▪ Access Restriction
    ▪ Check HTTP Header
    ▪ Limit call rate
    ▪ Restrict Caller Ips
    ▪ Set Usage Quota
    ▪ Validate JWT
    ▪ Advanced Policies
    ▪ Limit Concurrency
    ▪ Mock Response
    ▪ Retry
    ▪ Trace
    ▪ Set status Code
    ▪ Caching
    ▪ Get from cache
    ▪ Store to cache
    ▪ Transformation
    ▪ Convert JSON to XML
    ▪ Replace String
    ▪ Set Body
    ▪ Rewrite URL.

    View Slide

  31. Mediate – Add Policy

    View Slide

  32. Mediate – Add Policy

    View Slide

  33. Mediate – Complex Policies

    View Slide

  34. View Slide

  35. View Slide

  36. Setup - Simple
    http://microsoftintegration.guru/2018/01/06/considerations-for-hardening-apis-built-with-azure-api-management-azure-functions/

    View Slide

  37. Setup – Complex (VNET Integration)

    View Slide

  38. Setup – Complex (Azure Arc)

    View Slide

  39. Pricing
    ▪ Consumption Tier (limited functionality)
    ▪ Developer Tier (dev/test, 500 req/s): 40 EUR / Month
    ▪ Basic Tier (entry level prod, 1k req/s): 125 EUR / Month
    ▪ Standard (medium level prod, 2.5k req/s: 600 EUR / Month
    ▪ Premium (high volume, 4k req/s): 2350 EUR / Month
    ▪ Up to 10 units
    ▪ VNET Integration
    ▪ Multi-region Deployment
    ▪ Self-hosted Gateway

    View Slide

  40. Recap
    Connected Experience
    Devices and Data
    Publish
    Azure portal
    Mediate
    Gateway
    Consume
    Developer portal Developers
    (use APIs)
    Publishers
    (provide APIs)

    View Slide

  41. Thank you!
    Manuel Meyer
    www.manuelmeyer.net
    @manumeyer1
    [email protected]

    View Slide