Your SlideShare is downloading. ×
0

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×
Saving this for later? Get the SlideShare app to save on your phone or tablet. Read anywhere, anytime – even offline.
Text the download link to your phone
Standard text messaging rates apply

WSO2 API Manager - WSO2 European Roadshow 2013

907

Published on

How WSO2 API Manager enables you to easily deploy (web)services and applications while granting access towards users and systems using OAuth and SAML. A presentation held by Yenlo during the WSO2 …

How WSO2 API Manager enables you to easily deploy (web)services and applications while granting access towards users and systems using OAuth and SAML. A presentation held by Yenlo during the WSO2 European Roadshow 2013.

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
907
On Slideshare
0
From Embeds
0
Number of Embeds
4
Actions
Shares
0
Downloads
0
Comments
0
Likes
0
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1. 6/26/13   1  ©  2007-­‐2013,  Yenlo  B.V.,  Hazerswoude-­‐Rijndijk,  The  Netherlands  -­‐  All  rights  reserved    European  Roadshow  2013  Pu#ng  the  pieces  together  
  • 2. 6/26/13   2  ©  2007-­‐2013,  Yenlo  B.V.,  Hazerswoude-­‐Rijndijk,  The  Netherlands  -­‐  All  rights  reserved    This  presentaHon  is  copyright  protected  (2013)  established  by  Yenlo  BV  Rijndijk  137,  2394  AG  Hazerswoude-­‐Rijndijk,  Netherlands.  No  part  of  this  document  may  be  reproduced  without  permission  from  Yenlo  BV  be  reproduced,  processed  and  /  or  made  public  by  means  of  print,  photocopy,  microfilm,  word  processing,  or  in  any  manner  whatsoever,  nor  be  stored  in  a  retrieval  system  without  the  express  permission  of  Yenlos  CEO  or  his  deputy.  
  • 3. 6/26/13   3  ©  2007-­‐2013,  Yenlo  B.V.,  Hazerswoude-­‐Rijndijk,  The  Netherlands  -­‐  All  rights  reserved    Delivering  API’s  in  a  secure  manner  using  the  WSO2  API  manager  and  Oauth,  a  real  life  use  case    Daniel  Palstra  Senior  WSO2  expert  @  Yenlo  
  • 4. 6/26/13   4  ©  2007-­‐2013,  Yenlo  B.V.,  Hazerswoude-­‐Rijndijk,  The  Netherlands  -­‐  All  rights  reserved    SoZware  development  SoZware  development  creates  the  components  that  give  our  customers  agility  and  focus  on  their  services.  This  can  be  achieved  by  linking  and  unlinking  informaHon  flows  which  in  turn  make  chain  integraHon  possible.  Keywords:  SOA,  BPEL,  ESB,  Security,  Governance,  Java,  Oracle    24/7  Managed  Services  New  technologies  tend  to  make  IT  environments  become  more  and  more  complex  nowadays.  The  business  and    consumer  expects  24/7  availability  and  stability.  To  achieve  this  Yenlo  offers,  using  “Economy  of  Scale”,  a  professional  and  affordable  soluHon  with  extensive  24/7  chain  monitoring  and  incident  tracking.  Keywords:  24/7,  complete  ICT  stacks,  monitoring  &  incident  management    Private  Cloud  HosHng  Customers  who  do  not  want  to  worry  about  their  IT  environment,  can  take  advantage  of  our  full  private  cloud  hosHng  soluHon.  They  then  benefit  from  economy  of  scale,  a  high  level  of  security  and  flexible  deployable  technology.  Keywords:  Flexibility,  Pay-­‐What-­‐You-­‐Use,  Completely  Private  &  Secure  
  • 5. ©  2007-­‐2013,  Yenlo  B.V.,  Hazerswoude-­‐Rijndijk,  The  Netherlands  -­‐  All  rights  reserved    Overview  •  Customer  case  •  Which  WSO2  products  •  AuthenHcaHon  and  AuthorizaHon  •   “AuthorizaHon  grant”  processing  •  API  Monitoring  
  • 6. ©  2007-­‐2013,  Yenlo  B.V.,  Hazerswoude-­‐Rijndijk,  The  Netherlands  -­‐  All  rights  reserved    Customer  Case  •  Wishes  to  provide  “energy  uHlizaHon”  API’s  •  Wishes  to  secure  API’s  based  on  available  standards  •  Wish  for  AuthorizaHon  Grant  processing  in  backend  apps  •  Centrally  host  AuthenHcaHon  and  AuthorizaHon  •  Monitor  API  usage  
  • 7. ©  2007-­‐2013,  Yenlo  B.V.,  Hazerswoude-­‐Rijndijk,  The  Netherlands  -­‐  All  rights  reserved    Which  WSO2  Products?  Publish  API’s  Build  full  lifecycle  API  Catalog  Secure  API’s  with  Oauth  2.0  OAuth  2.0  KeyManager  User  provisioning  Analyze  API  usage  data   Host  mulHple  API  dashboards  AuthenHcate  and  authorize  Virtualize  services  Aggregate  API  usage  data  Decoupling  services  
  • 8. ©  2007-­‐2013,  Yenlo  B.V.,  Hazerswoude-­‐Rijndijk,  The  Netherlands  -­‐  All  rights  reserved    API  Publisher  &  Store  
  • 9. ©  2007-­‐2013,  Yenlo  B.V.,  Hazerswoude-­‐Rijndijk,  The  Netherlands  -­‐  All  rights  reserved    AuthenHcaHon  &  AuthorizaHon  •  AuthenHcaHon  – WSO2  API  Store  – WSO2  API  Gateway  REST  API  (/token)  •  AuthorizaHon  – HTTP  AuthorizaHon  header  – OAuth  2.0  Bearer  token  •  AuthorizaHon  grant  – JSON  Web  Token  (JWT)  
  • 10. ©  2007-­‐2013,  Yenlo  B.V.,  Hazerswoude-­‐Rijndijk,  The  Netherlands  -­‐  All  rights  reserved    AuthenHcaHon  (1)  
  • 11. ©  2007-­‐2013,  Yenlo  B.V.,  Hazerswoude-­‐Rijndijk,  The  Netherlands  -­‐  All  rights  reserved    AuthenHcaHon  (2)  •  Using  WSO2  REST  API  (/token)  •  Provide  Consumer  Key  and  Consumer  Secret  •  AlternaHve  to  using  generated  OAuth  token  from  API  Store  curl  -­‐-­‐user  [ConsumerKey]:[ConsumerSecret]    -­‐k  -­‐d  "grant_type=password&username=[User]&password=[Password]"  -­‐H  "Content-­‐Type:applicaHon/x-­‐www-­‐form-­‐urlencoded"  hqps://api-­‐gw.yenlo.nl:9443/oauth2endpoints/token  
  • 12. ©  2007-­‐2013,  Yenlo  B.V.,  Hazerswoude-­‐Rijndijk,  The  Netherlands  -­‐  All  rights  reserved    Backend    API  AuthorizaHon  Any  REST  Client  API    Gateway  Backend    API’s  API  /  IS  Key  Manager  Oauth  2.0    Access  token   JWT  Token  Validate  Access  token  and  generate  JWT  token  
  • 13. ©  2007-­‐2013,  Yenlo  B.V.,  Hazerswoude-­‐Rijndijk,  The  Netherlands  -­‐  All  rights  reserved    AuthorizaHon  grant  processing  •  JSON  Web  Token  (JWT)  •  AddiHon  to  Oauth  2.0  specificaHon  •  HTTP  Header  •  Base64  encoded  •  Signed  •  Configurable  Claims  {"iss":"wso2.org/products/am","exp":1368623447604,"hLp://wso2.org/claims/subscriber  ":"daniel","hqp://wso2.org/claims/applicaHonname":"DefaultApplicaHon","hqp://wso2.org/claims/apicontext":"/taskservice","hqp://wso2.org/claims/version":"1.0.0","hqp://wso2.org/claims/Her":"Unlimited","hLp://wso2.org/claims/enduser":"daniel"}    
  • 14. ©  2007-­‐2013,  Yenlo  B.V.,  Hazerswoude-­‐Rijndijk,  The  Netherlands  -­‐  All  rights  reserved    Monitor  API  Usage  
  • 15. ©  2007-­‐2013,  Yenlo  B.V.,  Hazerswoude-­‐Rijndijk,  The  Netherlands  -­‐  All  rights  reserved    Summary  •  WSO2  API  Store/  Publisher  for  API  lifecycle  management  •  WSO2  API  Gateway  for  AuthenHcaHon  and  AuthorizaHon  •  OAuth  JWT  for  AuthorizaHon  Grant  processing  •  WSO2  BAM  for  monitoring  API  usage  
  • 16. 6/26/13   16  ©  2007-­‐2013,  Yenlo  B.V.,  Hazerswoude-­‐Rijndijk,  The  Netherlands  -­‐  All  rights  reserved    We  are  the  EMEA  partner  for:    Consultancy  &  Quickstarts  ImplementaHon  &  IntegraHon  projects  24/7  product  support  &  24/7  managed  services  
  • 17. 6/26/13   17  ©  2007-­‐2013,  Yenlo  B.V.,  Hazerswoude-­‐Rijndijk,  The  Netherlands  -­‐  All  rights  reserved    Do  you  have  any  quesHons?    Visit:    www.yenlo.eu  Mail:    info@yenlo.nl  Call:      +31  71  82  000  82  

×