This document summarizes a talk about changes in API management and governance as technologies evolve. It notes that while basic problems remain the same, mobility, cloud computing, and interconnectivity are driving changes. SOA governance needs to adapt from older standards like WSDL, SAML and WS-Security to looser approaches like JSON, OAuth and wiki-based documentation. New governance leverages tools like forums and portals. The talk promotes a solution like Layer 7's API developer portal that integrates familiar tools to effectively manage APIs in this new environment.
Spring Boot vs Quarkus the ultimate battle - DevoxxUK
API Management and OAuth for Web, Mobile and the Cloud: Scott Morrison's Presentation at Gartner AADI 2011
1. API Management and OAuth for
Web, Mobile and the Cloud
K Scott Morrison
CTO & Chief Architect
Nov 30, 2011
2. “Change has a considerable psychological
impact on the human mind.
To the fearful it is threatening because it
means that things may get worse.
To the hopeful it is encouraging because
things may get better.
To the confident it is inspiring because the
challenge exists to make things better.”
- King Whitney Jr.
28. APIs transform the Web into an
integration platform
Cloud
Servers
Legacy
Third party
web apps
Directory
Mobile
devices
Applications Browsers
Database
29. The API is the glue for the New
Enterprise Web
Enterprise
Network
40. Not Convinced Yet?
Take a look at XML
<!DOCTYPE x [ <!ENTITY y "a]>b"> ]>
<x>
<a b="&y;>" />
<![CDATA[[a>b <a>b <a]]>
<?x <a> <!-- <b> ?> c --> d
</x>
44. XML giving way to JSON
illustrates the theme of the
change
• Complex • Simple
• Highly standardized • Informal
• Vendor driven • Grassroots
• Barriers • Frictionless
58. So what was SOA governance again?
Old Governance New Governance
• People • People
• Process • Process
• Technology • I have lots of
this already…
59. To Summarize:
Old New
Documentation WSDL Wiki/Blog
Discovery Reg/Rep Search
Approval G10 Platform Email
Enforcement Gateway Gateway
User Provisioning IAM Portal
Community What’s that? Forum
60. The new way to manage
The new people to manage
62. “Technology is dominated by two types of
people:
those who understand what they do not
manage,
and those who manage what they do not
understand.”
- Archibald Putt
63. So how can you
understand completely and
manage effectively?
65. That’s why we built the Layer 7 API
Developer Portal
App
Firewall
API
Developer
Gateway
API
Portal
API Server
Enterprise
Network
66.
67. Let’s Summarize:
• Simple wins every time
• SOA is changing
• and so is SOA governance
• The new enterprise web is about
APIs
• Driven by cloud and mobility
• Solutions like Layer 7’s API Portal
integrate all the familiar tools to
effectively manage your APIs
68. For further information:
K. Scott Morrison
Chief Technology Officer & Chief Architect
Layer 7 Technologies
1100 Melville St, Suite 405
Vancouver, B.C. V6E 4A6
Canada
(800) 681-9377
smorrison@layer7tech.com
http://www.layer7tech.com
November 2011
69. Picture Credits
Big Ben by meanone97 – stock.exchg
Whiz Kids by Ron S. Gejman – ron.gejman.com
World Puzzle by juancho17 – stock.exchg
Rack Server by Pazado – stock.exchg
Analogue Erosion Control Device, Fall & wheat by Kevin
Hudkins - Flickr
Editor's Notes
Everyone here needs to choose.Ignore the middle groundAre you fearfulOr are you confident?
2 Drivers. #1 is cloud, #2 is mobile
Let me tell you all a secret
The new enterprise web is about integration
19.2B pages yahoo 2005346Mweb sites netcraft June 2011
Psych term, but look at examples
Psych term, but look at examples
Boil to its essence
Autobinding
Psych term, but look at examples
RUN TIME ESSENTIAL!
Developers hate these things
Run time governance is a first order problem now
What about identity?
But also internal users too
The new enterprise web is about integration
The new enterprise web is about integration
The new enterprise web is about integrationAsk yourself now, given the right tools, which side are you on?