How to Manage APIs in your Enterprise for Maximum Reusability and Governance
1. API Management &
Governance in an
Enterprise
30 March 2015
Principal Architect – Aditi + STC (a Harman company)
13 years of experience.
Architecting Enterprise solutions across retail, healthcare,
finance, e-commerce.
-Leveraging open source stack - Middleware, NoSQL over AWS
-Speaker @ WSo2 conferences, contribute to Java.net projects
2. Agenda
2
• ABOUT ADITI_STC
• APIs/SERVICES IN AN ENTERPRISE
• CHALLENGES FACED BY MANY
• GOVERNANCE ASPECTS ACROSS LIFECYCLE
• API MANAGER - what does it address
• GOVERNANCE REGISTRY – what does it address
• DEMO
4. We Provide Innovative Software Solutions
4
CLOUDDESIGN MOBILITY ANALYTICS
Member of
Open Handset
Alliance
Android
Device
Certification
Partner
Only Services
Company in
the OAA
Best IoT
partner
Windows
Azure
Partner of
the Year
5. SYMPHONY TELECA IS YOUR GLOBAL INNOVATION
AND DEVELOPMENT PARTNER
REPRESENTATIVE CLIENT
LIST
Over 600 clients globally
$400M+ in revenue
7,500 employees in 40 offices
Delivery centers in Argentina, China,
India, Poland, Russia, US
AWARDS
GROWING
AT 25% YOY
ü
ü
ü
ü
… at a Global scale
5
7. APIs – Integral part of Enterprise
7
They are everywhere…
• Shared/Utility services
• Mediation/ Broker
services
• Identity services
• Data services
• Business as a Service
• Mobile strategy
• … and many more
Within
Application
Across
applications
(within
enterprise)
Outside
Enterprise
(across
partners)
Maturity
Complexity
8. APIs – Silos & Un Managed?
8
Silos? Un Managed?
• Each LOB re-inventing the wheel?
• Cost savings?
• Time to market?
• Maintenance overhead?
• Catalog of services against functionality?
• Dependencies & associations within
services
• Who are the consumers of my service?
• Versioning? Sharing of assets?
12. API Manager – what challenges does it address?
12
A single platform to publish APIs, subscribe to them.
Also handles security, documentation & collaboration.
• Browse/Search for APIs
• Subscribe to APIs
• Forum, Feedback & Rating
• Production & Sandbox
• API Keys - OAuth
• Create APIs
• Publish APIs & Documentation
• Manage Throttling, Versioning
• Lifecycle – Prototype/ Publish
• Contact Info. & Statistics
Publisher
Store
• Gateway serves all API
invocations
• Takes care of throttling
• Key Mgr. handles security
Gateway
&
Key Mgr.
13. API Manager + BAM – runtime Governance
13
Platform to aggregate, analyze & report on API usage
data. – Who uses my APIs? How & When?
• Predefined OOTB reports
• Ability to write custom Hive
queries
• Create custom visualizations
using Toolbox.
• Connect API Manager to BAM
• Push Log data to BAM
• JSON format
• API to push data
Collect
data
Inbuilt &
custom
queries
• Use in Dev for debugging
purposes
• Single place to analyze logs
• Prod to measure subscription,
response time, usage pattern
• End consumer personalization
Dev &
Prod
usage
14. Governance Registry – what challenges does it address?
14
• A single platform across the Enterprise to manage
the APIs, Services, Policies and other artefacts.
• Foster trust, share & re-use, cost savings &
accelerate time to market.
• Create APIs, Services,
WSDLs
• Policies & Sequences
• Share across multiple apps by
mounting Governance registry
• Registry extension – model
types & their meta data
• Create consumers, providers
• Applications & Services
• Contact Info. & Statistics
Enterpris
e Map
(rxt &
metadata)
Artefacts
(upload &
share)
• Lifecycle – Prototype/ Publish
• Handlers for media types
Lifecycle
&
Handlers
Provider
(External)
Seq/URL
Consumer
(Department)
Applicatio
n(s) Service/
WSDL/
API
15. Governance Registry across Environments
15
Use keys instead of actual URLShared Governance Registry across Env.
Different Mount points.