• Save
Creating a SOA Application Gateway Center of Excellence
Upcoming SlideShare
Loading in...5

Creating a SOA Application Gateway Center of Excellence



In this session, we will describe a phased approach to establishing an enterprise SOA Appliance/Application Gateway Center of Excellence in a heterogeneous environment with varied tools. We will go ...

In this session, we will describe a phased approach to establishing an enterprise SOA Appliance/Application Gateway Center of Excellence in a heterogeneous environment with varied tools. We will go through a detailed best practices-based approach with pattern-based implementation to lay down the foundation of a DataPower CoE. This approach will include building the right resource model, determining the appropriate list of reusable artifacts, and selecting best-of-breed technology. We will also discuss balancing long-term visions with immediate goals, agile development and delivery, deployment topology, reusable common service patterns, frameworks, DataPower continuous integration and delivery, integrating with CentraSite, Venafi, Jenkins, RSA, WebMethods, CoE Road map, ESB, PCI, and API Integration.



Total Views
Views on SlideShare
Embed Views



0 Embeds 0

No embeds



Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
Post Comment
Edit your comment
  • Background Corporate OverviewIT OverviewBusiness case for SOA appliance Original stateReference ArchitectureFuture stateApproachGuiding PrinciplesAgile MethodologyCOE ApproachRole & Scope of Datapower 10 minsArchitecture logical architecturePhysical and HA, Monitoring and Disaster RecoveryDetailed ArchitectureCOE Modules – Implementation 15 minsReusable PatternsSecurityIntegrationGovernanceCompositeStandards and Guidelines DocumentationContinuous IntegrationClosing notes 5Take away
  • Add Security in the Gateway
  • Change to SOA Gateway

Creating a SOA Application Gateway Center of Excellence Creating a SOA Application Gateway Center of Excellence Presentation Transcript

  • Creating a SOA Application GatewayCenter of Excellence2013Enterprise Integration ServicesPrithvi Srinivasan – SOA/Integration Practice Director(PROLIFICS)Krishna Alluru – Manager IT(ESB)-(STAPLES)Tate Crumbley – Solutions Architect(STAPLES)
  • Enterprise Integration ServicesSOA Gateway COE - Agenda• Background– Corporate Overview– IT Overview– Business case for SOA appliance– Original state– Reference Architecture– Future state• Approach– Guiding Principles– Agile Methodology– COE Approach– Role & Scope of Datapower• Architecture• logical architecture• Physical and HA, Monitoring and Disaster Recovery• Detailed Architecture• COE Modules – Implementation– Reusable Patterns• Security• Integration• Governance• Composite– Standards and Guidelines Documentation– Continuous Integration• Closing notes– Take away
  • Background2013Enterprise Integration Services
  • Enterprise Integration ServicesBackground -Corporate Overview• Staples is the world’s largest office products company and second largestinternet retailer.• For 26 years, Staples has served theneeds of business customers and its visionis to provide every product businessesneed to succeed.• Through its world-class retail, online anddelivery capabilities, Staples offers officesupplies, technology products andservices, facilities and breakroom supplies,furniture, copy and print services and awide range of other product categories.• With thousands of associates worldwide dedicated to making it easy forbusinesses of all sizes, Staples operates throughout North and SouthAmerica, Europe, Asia, Australia and New Zealand.
  • Enterprise Integration ServicesBackground - IT Overview2400 FTE capacity in the global IT organizationMultiple data centers – domestic and internationalA portfolio exceeding 800 applicationsIT development, management and governance activitiesApplications• Manage and prioritize enterprise work• Reduce ‘lights on’ costs by consolidatingapplications• Migrate existing applications to commonenterprise servicesInfrastructure• Virtualization and enterprise governance• Standard service catalog with wellunderstood SLAs• Implement ITIL, CMDB methodologies andtools
  • Enterprise Integration ServicesBackground - Business Use casesSecurity• PCI Compliance• Protect Staples applications andinfrastructure from internal and externalsecurity threatsService Governance• Runtime representation of ServiceCatalogue• Staples APIAccelerators - Increased performancewithout compromising design
  • Enterprise Integration ServicesBackground - Staples Original State
  • Enterprise Integration ServicesBackground - Staples Reference ArchitectureGatewayGatewaySecuritySecurity
  • Enterprise Integration ServicesBackground - Staples Current StateBrokerBrokerISISDatabaseMWSOptimizeActiveTransferCentraSiteEnterprise Service BusMQMQReplicatedAMLAMLIS BrokerServiceConsumersHTTP/sSOAPSOAP_JMSServiceProvidersHTTP/sSOAPSOAP_JMSNativeFileFTPNativeIdentity RegistrySource Code ControlSiteScope ovoCactiITMonitoringXMLGatewayApplianceXMLGatewayAppliance
  • ImplementationApproach2013Enterprise Integration Services
  • Enterprise Integration ServicesApproach - Guiding Principles• Single point for management/control• Configuration driven development• Continuous delivery• Use tools based on their strengths,market usage and TCO• New Implementations follow existingdesign patterns & frameworks
  • Enterprise Integration ServicesApproach – Agile Development• Incremental delivery• Continuous integration• Working software through referenceimplementations• Architecture envisioning
  • Enterprise Integration ServicesApproach – COE• Central team for creating andmaintaining vision and plans• Reusability & Reduced time tomarket• Balance short term vs long term• Engineering Discipline
  • Enterprise Integration ServicesApproach - Role & Scope of Datapower
  • Architecture2013Enterprise Integration Services
  • Enterprise Integration ServicesArchitecture- Logical Design
  • Enterprise Integration ServicesArchitecture - Physical Architecture
  • Enterprise Integration ServicesArchitecture - Macro DesignRouting HTTP(s) MPGBusiness Service GroupSecurity DomainRouting DomainSOAP Sec MPGXML Sec MPGSec MQ-TextSec JSONRouting MQ MPGSOAP Sec MPGXML Sec MPGSec MQ-TextSec JSONBusiness Service GroupApplication Domain
  • COE Modules2013Enterprise Integration Services
  • Enterprise Integration ServicesReusable Patterns - Security• Service Perimeter Guard• Tamper Proof Validation (Signatures)• Data Confidentiality (Encryption)• SSL Termination• Message Screening/Threat Protection• Authentication/Authorization/Auditing
  • Enterprise Integration ServicesReusable Patterns - Integration• Protocol Bridging• Service Facade• Content-Based Route• Message Translator
  • Enterprise Integration ServicesReusable Patterns - Integration• Normalizer• Polling Consumer• Multi-Channel endpoint• Legacy Wrapper• Exception Shielding
  • Enterprise Integration ServicesReusable Patterns - Governance• Decoupled Contract• Service Level Agreement (SLA)Enforcer• Concurrent Contracts
  • Security GatewayEnterprise Integration ServicesReusable Patterns - CompositeSimple Patterns Used• Protocol Bridging• Service Façade• Polling Consumer• Authentication• Authorization• Auditing• Security Gateway• Content Filter
  • Internal ESB GatewayEnterprise Integration ServicesReusable Patterns - CompositeSimple Patterns Used• Protocol Bridging• Service Façade• Content-Based Router• Polling Consumer• Legacy Wrapper• Decoupled Contract• Concurrent Contracts• SLM Enforcer• Exception Shielding• Threat Protection• Authentication• Authorization• Auditing• Security Gateway
  • DMZ ESB GatewayEnterprise Integration ServicesReusable Patterns - CompositeSimple Patterns Used• Protocol Bridging• Service Façade• Content-Based Router• Exception Shielding• Threat Protection• Authentication• Authorization• Auditing• Tamper Proof Validation• Data Confidentiality• Security Gateway
  • Enterprise Integration ServicesStandards and Guidelines DocumentationInfrastructure Model for DataPower• DataPower physical infrastructure design with Multisite High Availability, Disaster Recovery• DataPower domains• Appliance Configuration• DataPower Network ConfigurationDataPower Best Practice Guidelines• Administration• Development• Configuration• Architecture• Deployment• Backup & RestorationStaples Enterprise Reusable Design Patterns – Security/Integration/Governance/Composite• Based on Staples requirements created predefined design & development patterns that canbe readily used by future developers to tackle project requirements
  • Standards and Guidelines DocumentationDataPower Build, Merge & Deployment automation Guides• Document that explains about creating DataPower code build and merging different codebuilds. Also, it provides tips and tricks to help automate the deployment of created codebuilds to single/multiple environmentsDataPower path to production• Release management solution to help release DataPower code in fast, secure andautomated manner.DataPower Support & Maintenance• Document and processes that can be used by support team to perform• Application support• Infrastructure support• Upgrades• Alerting & Monitoring• Backup & restoration of the appliance meta data and application meta data on a regularbasisReference Implementations• A sample reference implementation of each pattern is created in the Design patternsdocument
  • Continuous Integration• Ability deploy all ESB components as a single deployable unit• Continuous testing to validate backward compatibility and functional integrityEnterprise Integration Services
  • Closing Notes2013Enterprise Integration Services
  • Enterprise Integration ServicesClosing Notes-Take away• Clearly define the usage scope• Iterative releases• Stick to common patterns• Follow 80-20 rule• Use best practices• Socialize, training and documentation
  • Enterprise Integration ServicesSOA Gateway - COESlide 5 - http://www.ssihq.net/Slide 6 - http://rmi.orgSlide 11 - http://csr-news.net/main/2011/06/21/un-human-rights-council-adopts-guiding-principles-on-business-and-human-rights/Slide 12 - http://www.ormlondon.com/blog/is-there-an-agile-advantage/Slide 13 - http://frommilkitchen.wordpress.com/2010/12/10/center-of-excellence-coe/