SlideShare a Scribd company logo

One Gateway to Rule them All: Building a Federated API Management Platform

Sven Bernhardt
Sven Bernhardt

Presentation held at DOAG 2023 in Nuremberg. There is no alternative for companies today to introduce an API strategy and set up an API management platform if they want to remain successful in the long term. In times of hybrid, multi-cloud architectures, characteristics such as efficiency, flexibility and manageability are required. A federated API management approach offers all of this. Kong offers an API gateway that is flexible and extensible and is therefore ideally suited for setting up such an approach. This presentation will introduce how Kong can be used to build an API platform that can be used to securely deploy and manage APIs across multiple environments. In this context, I will cover the following aspects: - Federated API Management: what it is and how it differs from other approaches - Features of the Kong API gateway and its capabilities - Strategies for managing APIs across multiple environments with Kong - Implementation details and good practices for building a federated API management platform with Kong The goal of the presentation is to convey the benefits of a federated approach by demonstrating how API development and management can be unified across multiple environments, reducing complexity and overhead and improving overall security and compliance.

Technology
1 of 39
Download to read offline
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 1 Building a Federated API Management Platform Nuremberg, 2023-11-22 Sven Bernhardt ONE GATEWAY TO RULE THEM ALL
© OPITZ CONSULTING 2023 / Öffentlich THAT‘S ME One Gateway to rule them all 2 Sven Bernhardt Cloud-Native enthusiast, API & integration geek. Always curious how new technologies and concepts can help to make things more valuable and efficient. @sbernhardt https://svenbernhardt.wordpress.com/ Chief Architect / Integration Evangelist OPITZ CONSULTING Deutschland GmbH
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 3 WHERE WE ARE 01 APIS & GATEWAYS 02 CONCLUSION 04 API PLATFORMS 03
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 4 WHERE WE ARE 01
© OPITZ CONSULTING 2023 / Öffentlich THE WORLD IS CLOUD-NATIVE … One Gateway to rule them all 5 ¢ Characteristics of Cloud-native apps: ¢ Loose coupling ¢ Resilient and fault-tolerant ¢ Scalable ¢ Manageable ¢ Observable “… loosely coupled systems that are resilient, manageable, and observable. Combined with robust automation, they allow engineers to make high-impact changes frequently and predictably with minimal toil.” (CNCF definition Cloud-native) Cloud-native Microservices & APIs CI / CD DevOps Containers
© OPITZ CONSULTING 2023 / Öffentlich … AND OFTEN AT LEAST HYBRID OR HYBRID, MULTI-CLOUD One Gateway to rule them all 6 ¢ Shift to the Cloud continues ¢ Trend leads toward using multiple Clouds (Best-of-breed approach) ¢ On-prem systems are replaced or complemented by SaaS offerings
© OPITZ CONSULTING 2023 / Öffentlich MOVE TO THE CLOUD AND CLOUD-NATIVE PRINCIPLES FURTHERS TREND TO DECENTRALIZATION One Gateway to rule them all 7 Centralized STATIC ON-PREM MONOLITH VIRTUAL MACHINES MANUAL CHANGE PROCESS Decentralized DYNAMIC CLOUD / MULTI-CLOUD MICROSERVICES / SERVERLESS CONTAINERS, KUBERNETES AUTOMATED CI/CD TOOL CHAIN # Services & APIs CONTROL AND VISIBILITY
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all Gen 0 ESB Gen 1 XML Appliances Gen 2 REST & API Gateways Gen 3 µGateways Timeline 2006 2011 2014 API GATEWAY EVOLUTION: FROM SIMPLE REVERSE PROXIES TO MICROGATEWAYS 8
© OPITZ CONSULTING 2023 / Öffentlich WE’RE FACING A MAJOR TECHNOLOGY TRANSITION THAT WE SHOULD ACTIVELY SHAPE One Gateway to rule them all 9 Source: https://www.youtube.com/watch?v=D41cLljxZ-U&list=PLg_AhYkg50vi_DVrEqKPX11blSwom6YUr&index=4
© OPITZ CONSULTING 2023 / Öffentlich HAVING AN API VISION THAT DEFINES THE WHY, HOW AND WHAT IS IMPORTANT TO SUCCEED! One Gateway to rule them all 10 ¢ When thinking about APIs, it should have a business impact ¢ APIs are digital products and should be handled as such ¢ Product orientation mainly impacts people and the organization ¢ Technology is a vehicle that enables sustainable Product management ¢ API Vision needs to ensure that change happens in a balanced way People Organization Technologies
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 11 APIS & GATEWAYS 02
© OPITZ CONSULTING 2023 / Öffentlich API-PRODUCTS ARE USED TO COMPREHENSIBLE INTERACT WITH THE OPERATIONAL DATA WITHIN A DOMAIN One Gateway to rule them all ¢ Characteristics of an API product: ¢ User experience (UX) ¢ Reliability ¢ API products are consumer-centric ¢ API products may have different In- /Output Ports: ¢ Sync for User-centric interactions ¢ Async for System-centric interactions (e.g. Cross-Domain interactions) API Contract (e.g. Open API) 12
© OPITZ CONSULTING 2023 / Öffentlich REALIZE THAT APIS ARE SUBJECT TO A LIFECYCLE One Gateway to rule them all 13 ¢ A stable API lifecycle is an essential part of an effective API governance strategy ¢ API lifecycle ¢ Reaches from idea to „ready to use API“ ¢ Supports fast innovation lifecycles ¢ Helps to implement API-first strategy ¢ There are different lifecycles for producers & consumers – but related ¢ Benefits ¢ Increased productivity ¢ Greater visibility ¢ Organizational alignment Design Review & build Deploy Promote, deprecate, retire Operate & observe Learn & evolve API ideation & planning Back to design due to consumer feedback during development
© OPITZ CONSULTING 2023 / Öffentlich API CONTRACTS NEED TO DELIVER A GREAT USER EXPERIENCE (UX) One Gateway to rule them all ¢ Focus on potential consumers ¢ How will a consumer use my API? ¢ What kind of resources and operations are needed by the consumers? ¢ APIs should be consumer-centric and thus be consumable ¢ Well-designed, secured and compliant ¢ Documented, discoverable and accessible ¢ Performant, reliable and scalable Source: https://konghq.com/blog/what-is-apiops/ Compliant Functional Findable The intersection of the three characteristics defines consumable APIs! When we talk about APIs, we don't necessarily mean REST APIs! 14
© OPITZ CONSULTING 2023 / Öffentlich ESTABLISH API GATEWAY AS A SINGLE ENTRY POINT TO AN ENTERPRISES BACKEND SERVICES One Gateway to rule them all 15 ¢ Cares about APIs at runtime ¢ Allow for consistent Governance ¢ Increase transparency ¢ API usage ¢ APIs available ¢ Conform with security standards ¢ Increase Developer Productivity Managing APIs means more than just having an API Gateway in place! Things (mostly) automated API lifecycle as well as community management.
© OPITZ CONSULTING 2023 / Öffentlich API GATEWAY AS A SHARED POLICY LAYER One Gateway to rule them all 16 Business Logic (B) Policy (P) OTHER MONOLITH Routing Load Balancing Authentication Authorization Logs & Metrics Rate Limiting Caching Validation Transformation MICROSERVICES MULTI-CLOUD & KUBERNETES ON-PREMISE HOSTING B Shared Policy Layer (API Gateway) B B B B B B B B B Serverless (e.g. AWS Lambda) More applications and services More languages and protocols REST} { More deployment types 3RD-PARTY
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 17 CHALLENGE: BALANCE BETWEEN SPEED AND CONSISTENCE https://opitzcloud.canto.global/b/I3FO4
© OPITZ CONSULTING 2023 / Öffentlich DECENTRALISED API MANAGEMENT: FOCUS ON SPEED One Gateway to rule them all 18 API Platform Dev Team 1 Dev Team 2 Dev Team n API Standard 1 API Standard 2 API Standard n Decreasing consistency
© OPITZ CONSULTING 2023 / Öffentlich CENTRALISED API MANAGEMENT: FOCUS ON CONSISTENCE One Gateway to rule them all 19 API Platform Dev Team 1 Dev Team 2 Dev Team n API Platform Team Review loop Review loop Review loop API Guidelines API Guidelines API Guidelines Decreased speed
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 20 AUTOMATION TO BALANCE SPEED AND CONSISTENCE https://opitzcloud.canto.global/b/OQR0O
© OPITZ CONSULTING 2023 / Öffentlich APIOPS APPROACH: FOCUS ON SPEED AND CONSISTENCE One Gateway to rule them all 21 API Platform Dev Team 1 Dev Team 2 Dev Team n API Platform Team API Guidelines API Guidelines API Guidelines Automated deployment Governance layer Defines Guidelines, Rules & Restrictions Automated, direct feedback Automated, direct feedback Automated, direct feedback
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 22 API PLATFORMS 03
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 23 CHARACTERISTICS OF A MODERN API PLATFORM Modern Tooling: Use modern engineering tools and techniques, infrastructure as code and automation Easy Onboarding: Low ramp for new internal teams to onboard to the platform Minimize cognitive load: Empower developers to foucs on delivering core business value Continually evolve: The Platform should be flexible enough to support new use cases (Desing4Change) 01 02 03 04
© OPITZ CONSULTING 2023 / Öffentlich WHEN TALKING ABOUT PLATFORMS WE NEED TO TALK ABOUT PLATFORM ENGINEERING One Gateway to rule them all 24 What is Platform Engineering? “Platform engineering is an emerging technology (concept) that can accelerate the delivery of applications and the pace at which they produce business value.” Gartner
© OPITZ CONSULTING 2023 / Öffentlich A MODERN API PLATFORM NEEDS TO BE READY TO ADDRESS CHALLENGES IN MORE AND MORE DISTRIBUTED WORLD One Gateway to rule them all ¢ Postulate: Modern architectures are at least hybrid and may be hybrid, multi-cloud ¢ Ideally, a distributed API platform is unified ¢ Increases efficiency in operating ¢ Allow to easily evolve the platform ¢ Different models to organize an API Platform ¢ Siloed ¢ Centralized ¢ Federated 25
© OPITZ CONSULTING 2023 / Öffentlich SILOED MODEL One Gateway to rule them all 26 ¢ Deployment blueprints (IaC) provided by Platform team ¢ Fully isolated platform for each Product / Domain team ¢ No dependency on the central team ¢ Maintenance, Updating / Patching ¢ Security, Hardening ¢ Product / Domain teams are not bound to central governance processes ¢ Reusage and sharing between teams is limited
© OPITZ CONSULTING 2023 / Öffentlich CENTRALIZED MODEL One Gateway to rule them all 27 ¢ The platform team is responsible for the API platform ¢ Maintenance, Updating / Patching ¢ Security, Hardening ¢ Scaling ¢ Deployed API gateways are shared between teams ¢ A shared Platform team can become a bottleneck ¢ Limited ability to implement strict isolation between different business units
© OPITZ CONSULTING 2023 / Öffentlich WHAT DOES “FEDERATION” MEAN? One Gateway to rule them all 28 ¢ Characteristics ¢ Central federal governance unit ¢ Defines guidelines ¢ Defines binding rules ¢ Self-governing sub-units ¢ Using guidelines, but are free to implement ¢ Internal autonomy ¢ Clear delineation of responsibilities ¢ Shared ¢ Exclusive (executed by central unit) ¢ Decisions made by sub-units cannot be overruled by the central unit “A federation (a federal state) is a political entity characterized by a union of partially self-governing provinces, states, or other regions under a central federal government (federalism). Alternatively, a federation is a form of government in which sovereign power is formally divided between a central authority and several constituent regions so that each region retains some degree of control over its internal affairs.” (Def. Federation (political), Source: Wikipedia)
© OPITZ CONSULTING 2023 / Öffentlich FEDERATED MODEL One Gateway to rule them all 29 ¢ One centralized Control plane run by a Platform team ¢ Used by all teams within an organization ¢ Multi-tenancy ¢ Multiple API gateways (Data planes) ¢ Managed by Product / Domain teams ¢ Helps teams become more independent ¢ Configuration managed within the teams ¢ Golden images provided by a Platform team ¢ Updates / Security (Hardening) managed centrally ¢ Automated provisioning (IaC) Source: https://konghq.com/blog/enterprise/federated-api-management
© OPITZ CONSULTING 2023 / Öffentlich CHALLENGES FOR FEDERATED MODELS IN HETEROGENEOUS ARCHITECTURES One Gateway to rule them all 30 ¢ Some API vendors offer federated API platforms for heterogeneous architectures ¢ Heterogeneous approach ¢ Different Gateways from different vendors ¢ No standard for communication between CP and DPs ¢ Limited feature support (e.g. just syncing API contracts, not configuration)
© OPITZ CONSULTING 2023 / Öffentlich WHAT IS KONG? One Gateway to rule them all 31 ¢ Lightweight, fast, and flexible cloud native API gateway ¢ Facts: ¢ 400B+ API Calls ¢ 312M+ Downloads ¢ 35K+ GitHub stars ¢ Characteristics: ¢ Fully automated (APIOps) ¢ Deployment agnostic ¢ Highly extensible
© OPITZ CONSULTING 2023 / Öffentlich FEDERATED API MANAGEMENT WITH KONG One Gateway to rule them all 32
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 33 DEMO
© OPITZ CONSULTING 2023 / Öffentlich DEMO SETUP One Gateway to rule them all 34 ¢ Hybrid and Multi-Cloud architecture ¢ Data Planes distributed over ¢ Oracle Cloud (Compute) ¢ AWS (EC2) ¢ On-prem (Dockerized deployment) ¢ K8s example Kong Ingress Controller ¢ Oracle Container Engine For Kubernetes (OKE) ¢ All managed through Kong Konnect
© OPITZ CONSULTING 2023 / Öffentlich DEMO OVERVIEW One Gateway to rule them all 35 OCI AWS Kong Konnect On-Premises Cloud Kong Ingress Controller (KIC) manages manages manages Management Plane
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 36 CONCLUSION 04
© OPITZ CONSULTING 2023 / Öffentlich KEY TAKEAWAYS One Gateway to rule them all 37 ¢ APIs need to be managed ¢ Collaboration is key for good API products ¢ It’s all about community ¢ To be able to efficiently manage your APIs a platform is needed ¢ Focus on Developer Experience (DX) ¢ Focus on Automation ¢ Focus on Standardization ¢ The federated model provides flexibility, but also requires buy-in from Product teams
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 38 Q & A
© OPITZ CONSULTING 2023 / Öffentlich INTEGRATION IS THE FOUNDATION FOR IT-MODERNIZATION One Gateway to rule them all Sven Bernhardt Chief Architect sven.bernhardt@opitz- consulting.com www.opitz-consulting.com Thanks for your attention! Questions left? Contact me! 39

Recommended

Efficient API delivery with APIOps
Efficient API delivery with APIOpsEfficient API delivery with APIOps
Efficient API delivery with APIOpsSven Bernhardt
 
Efficient API delivery with APIOps
Efficient API delivery with APIOpsEfficient API delivery with APIOps
Efficient API delivery with APIOpsSven Bernhardt
 
Elevating Development: Embracing APIOps for Enhanced Developer Productivity
Elevating Development: Embracing APIOps for Enhanced Developer ProductivityElevating Development: Embracing APIOps for Enhanced Developer Productivity
Elevating Development: Embracing APIOps for Enhanced Developer ProductivitySven Bernhardt
 
API Gateway or Service Mesh - Complementary or excluding concepts
API Gateway or Service Mesh - Complementary or excluding conceptsAPI Gateway or Service Mesh - Complementary or excluding concepts
API Gateway or Service Mesh - Complementary or excluding conceptsSven Bernhardt
 
Mit APIs auf der Überholspur zur produktorientierten Organisation
Mit APIs auf der Überholspur zur produktorientierten OrganisationMit APIs auf der Überholspur zur produktorientierten Organisation
Mit APIs auf der Überholspur zur produktorientierten OrganisationFabian Hardt
 
Integration architectures based on Microservices, APIs and events
Integration architectures based on Microservices, APIs and eventsIntegration architectures based on Microservices, APIs and events
Integration architectures based on Microservices, APIs and eventsSven Bernhardt
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCISven Bernhardt
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCISven Bernhardt
 

Recommended

Efficient API delivery with APIOps
Efficient API delivery with APIOpsEfficient API delivery with APIOps
Efficient API delivery with APIOpsSven Bernhardt
 
Efficient API delivery with APIOps
Efficient API delivery with APIOpsEfficient API delivery with APIOps
Efficient API delivery with APIOpsSven Bernhardt
 
Elevating Development: Embracing APIOps for Enhanced Developer Productivity
Elevating Development: Embracing APIOps for Enhanced Developer ProductivityElevating Development: Embracing APIOps for Enhanced Developer Productivity
Elevating Development: Embracing APIOps for Enhanced Developer ProductivitySven Bernhardt
 
API Gateway or Service Mesh - Complementary or excluding concepts
API Gateway or Service Mesh - Complementary or excluding conceptsAPI Gateway or Service Mesh - Complementary or excluding concepts
API Gateway or Service Mesh - Complementary or excluding conceptsSven Bernhardt
 
Mit APIs auf der Überholspur zur produktorientierten Organisation
Mit APIs auf der Überholspur zur produktorientierten OrganisationMit APIs auf der Überholspur zur produktorientierten Organisation
Mit APIs auf der Überholspur zur produktorientierten OrganisationFabian Hardt
 
Integration architectures based on Microservices, APIs and events
Integration architectures based on Microservices, APIs and eventsIntegration architectures based on Microservices, APIs and events
Integration architectures based on Microservices, APIs and eventsSven Bernhardt
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCISven Bernhardt
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCISven Bernhardt
 
API design-first and Microservices
API design-first and MicroservicesAPI design-first and Microservices
API design-first and MicroservicesSven Bernhardt
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCISven Bernhardt
 
API Gateway or Service mesh - Complementary or excluding concepts
API Gateway or Service mesh - Complementary or excluding conceptsAPI Gateway or Service mesh - Complementary or excluding concepts
API Gateway or Service mesh - Complementary or excluding conceptsSven Bernhardt
 
Cloud-native Application Development - The new normal
Cloud-native Application Development - The new normalCloud-native Application Development - The new normal
Cloud-native Application Development - The new normalSven Bernhardt
 
Declarative observability management for Microservice architectures
Declarative observability management for Microservice architecturesDeclarative observability management for Microservice architectures
Declarative observability management for Microservice architecturesSven Bernhardt
 
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"OPITZ CONSULTING Deutschland
 
Cloud-native is just part of the game
Cloud-native is just part of the gameCloud-native is just part of the game
Cloud-native is just part of the gameSven Bernhardt
 
API-first design - Basis for an consistent API-Management approach
API-first design - Basis for an consistent API-Management approachAPI-first design - Basis for an consistent API-Management approach
API-first design - Basis for an consistent API-Management approachSven Bernhardt
 
Analytics meets Integration – Modern Development mit Data APIs
Analytics meets Integration – Modern Development mit Data APIsAnalytics meets Integration – Modern Development mit Data APIs
Analytics meets Integration – Modern Development mit Data APIsFabian Hardt
 
API first Design and Microservices
API first Design and MicroservicesAPI first Design and Microservices
API first Design and MicroservicesSven Bernhardt
 
Kong 101 - Jumpstart into the world of APIs
Kong 101 - Jumpstart into the world of APIsKong 101 - Jumpstart into the world of APIs
Kong 101 - Jumpstart into the world of APIsSven Bernhardt
 
Service integration made easy with Open Source Kuma
Service integration made easy with Open Source KumaService integration made easy with Open Source Kuma
Service integration made easy with Open Source KumaSven Bernhardt
 
MuleSoft Meetup Valletta 1.0
MuleSoft Meetup Valletta 1.0MuleSoft Meetup Valletta 1.0
MuleSoft Meetup Valletta 1.0Anastasiia Linnas
 
Evolution of API-driven architectures
Evolution of API-driven architecturesEvolution of API-driven architectures
Evolution of API-driven architecturesSven Bernhardt
 
Evolution of API-driven Architectures
Evolution of API-driven ArchitecturesEvolution of API-driven Architectures
Evolution of API-driven ArchitecturesOPITZ CONSULTING Deutschland
 
Cloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle CloudCloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle CloudSven Bernhardt
 
Cloud-native Application Development on OCI
Cloud-native Application Development on OCICloud-native Application Development on OCI
Cloud-native Application Development on OCISven Bernhardt
 
Analytics meets Integration - Modern Development with Data APIs
Analytics meets Integration - Modern Development with Data APIsAnalytics meets Integration - Modern Development with Data APIs
Analytics meets Integration - Modern Development with Data APIsSven Bernhardt
 
API First - Best Practices for consistent API management
API First - Best Practices for consistent API managementAPI First - Best Practices for consistent API management
API First - Best Practices for consistent API managementSven Bernhardt
 
API Management and why it matters (Oracle API Platform)
API Management and why it matters (Oracle API Platform) API Management and why it matters (Oracle API Platform)
API Management and why it matters (Oracle API Platform) OPITZ CONSULTING Deutschland
 
Effective and simple - integration architectures with Apache Camel and Quarkus
Effective and simple - integration architectures with Apache Camel and QuarkusEffective and simple - integration architectures with Apache Camel and Quarkus
Effective and simple - integration architectures with Apache Camel and QuarkusSven Bernhardt
 
Modernization options for Oracle Forms applications
Modernization options for Oracle Forms applicationsModernization options for Oracle Forms applications
Modernization options for Oracle Forms applicationsSven Bernhardt
 

More Related Content

Similar to One Gateway to Rule them All: Building a Federated API Management Platform

API design-first and Microservices
API design-first and MicroservicesAPI design-first and Microservices
API design-first and MicroservicesSven Bernhardt
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCISven Bernhardt
 
API Gateway or Service mesh - Complementary or excluding concepts
API Gateway or Service mesh - Complementary or excluding conceptsAPI Gateway or Service mesh - Complementary or excluding concepts
API Gateway or Service mesh - Complementary or excluding conceptsSven Bernhardt
 
Cloud-native Application Development - The new normal
Cloud-native Application Development - The new normalCloud-native Application Development - The new normal
Cloud-native Application Development - The new normalSven Bernhardt
 
Declarative observability management for Microservice architectures
Declarative observability management for Microservice architecturesDeclarative observability management for Microservice architectures
Declarative observability management for Microservice architecturesSven Bernhardt
 
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"OPITZ CONSULTING Deutschland
 
Cloud-native is just part of the game
Cloud-native is just part of the gameCloud-native is just part of the game
Cloud-native is just part of the gameSven Bernhardt
 
API-first design - Basis for an consistent API-Management approach
API-first design - Basis for an consistent API-Management approachAPI-first design - Basis for an consistent API-Management approach
API-first design - Basis for an consistent API-Management approachSven Bernhardt
 
Analytics meets Integration – Modern Development mit Data APIs
Analytics meets Integration – Modern Development mit Data APIsAnalytics meets Integration – Modern Development mit Data APIs
Analytics meets Integration – Modern Development mit Data APIsFabian Hardt
 
API first Design and Microservices
API first Design and MicroservicesAPI first Design and Microservices
API first Design and MicroservicesSven Bernhardt
 
Kong 101 - Jumpstart into the world of APIs
Kong 101 - Jumpstart into the world of APIsKong 101 - Jumpstart into the world of APIs
Kong 101 - Jumpstart into the world of APIsSven Bernhardt
 
Service integration made easy with Open Source Kuma
Service integration made easy with Open Source KumaService integration made easy with Open Source Kuma
Service integration made easy with Open Source KumaSven Bernhardt
 
MuleSoft Meetup Valletta 1.0
MuleSoft Meetup Valletta 1.0MuleSoft Meetup Valletta 1.0
MuleSoft Meetup Valletta 1.0Anastasiia Linnas
 
Evolution of API-driven architectures
Evolution of API-driven architecturesEvolution of API-driven architectures
Evolution of API-driven architecturesSven Bernhardt
 
Cloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle CloudCloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle CloudSven Bernhardt
 
Cloud-native Application Development on OCI
Cloud-native Application Development on OCICloud-native Application Development on OCI
Cloud-native Application Development on OCISven Bernhardt
 
Analytics meets Integration - Modern Development with Data APIs
Analytics meets Integration - Modern Development with Data APIsAnalytics meets Integration - Modern Development with Data APIs
Analytics meets Integration - Modern Development with Data APIsSven Bernhardt
 
API First - Best Practices for consistent API management
API First - Best Practices for consistent API managementAPI First - Best Practices for consistent API management
API First - Best Practices for consistent API managementSven Bernhardt
 
API Management and why it matters (Oracle API Platform)
API Management and why it matters (Oracle API Platform) API Management and why it matters (Oracle API Platform)
API Management and why it matters (Oracle API Platform) OPITZ CONSULTING Deutschland
 

Similar to One Gateway to Rule them All: Building a Federated API Management Platform (20)

API design-first and Microservices
API design-first and MicroservicesAPI design-first and Microservices
API design-first and Microservices
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCI
 
API Gateway or Service mesh - Complementary or excluding concepts
API Gateway or Service mesh - Complementary or excluding conceptsAPI Gateway or Service mesh - Complementary or excluding concepts
API Gateway or Service mesh - Complementary or excluding concepts
 
Cloud-native Application Development - The new normal
Cloud-native Application Development - The new normalCloud-native Application Development - The new normal
Cloud-native Application Development - The new normal
 
Declarative observability management for Microservice architectures
Declarative observability management for Microservice architecturesDeclarative observability management for Microservice architectures
Declarative observability management for Microservice architectures
 
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
 
Cloud-native is just part of the game
Cloud-native is just part of the gameCloud-native is just part of the game
Cloud-native is just part of the game
 
API-first design - Basis for an consistent API-Management approach
API-first design - Basis for an consistent API-Management approachAPI-first design - Basis for an consistent API-Management approach
API-first design - Basis for an consistent API-Management approach
 
Analytics meets Integration – Modern Development mit Data APIs
Analytics meets Integration – Modern Development mit Data APIsAnalytics meets Integration – Modern Development mit Data APIs
Analytics meets Integration – Modern Development mit Data APIs
 
API first Design and Microservices
API first Design and MicroservicesAPI first Design and Microservices
API first Design and Microservices
 
Kong 101 - Jumpstart into the world of APIs
Kong 101 - Jumpstart into the world of APIsKong 101 - Jumpstart into the world of APIs
Kong 101 - Jumpstart into the world of APIs
 
Service integration made easy with Open Source Kuma
Service integration made easy with Open Source KumaService integration made easy with Open Source Kuma
Service integration made easy with Open Source Kuma
 
MuleSoft Meetup Valletta 1.0
MuleSoft Meetup Valletta 1.0MuleSoft Meetup Valletta 1.0
MuleSoft Meetup Valletta 1.0
 
Evolution of API-driven architectures
Evolution of API-driven architecturesEvolution of API-driven architectures
Evolution of API-driven architectures
 
Evolution of API-driven Architectures
Evolution of API-driven ArchitecturesEvolution of API-driven Architectures
Evolution of API-driven Architectures
 
Cloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle CloudCloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle Cloud
 
Cloud-native Application Development on OCI
Cloud-native Application Development on OCICloud-native Application Development on OCI
Cloud-native Application Development on OCI
 
Analytics meets Integration - Modern Development with Data APIs
Analytics meets Integration - Modern Development with Data APIsAnalytics meets Integration - Modern Development with Data APIs
Analytics meets Integration - Modern Development with Data APIs
 
API First - Best Practices for consistent API management
API First - Best Practices for consistent API managementAPI First - Best Practices for consistent API management
API First - Best Practices for consistent API management
 
API Management and why it matters (Oracle API Platform)
API Management and why it matters (Oracle API Platform) API Management and why it matters (Oracle API Platform)
API Management and why it matters (Oracle API Platform)
 

More from Sven Bernhardt

Effective and simple - integration architectures with Apache Camel and Quarkus
Effective and simple - integration architectures with Apache Camel and QuarkusEffective and simple - integration architectures with Apache Camel and Quarkus
Effective and simple - integration architectures with Apache Camel and QuarkusSven Bernhardt
 
Modernization options for Oracle Forms applications
Modernization options for Oracle Forms applicationsModernization options for Oracle Forms applications
Modernization options for Oracle Forms applicationsSven Bernhardt
 
Build and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using KumaBuild and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using KumaSven Bernhardt
 
Build and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using KumaBuild and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using KumaSven Bernhardt
 
Torch the light - Implementing Observability for Microservice Architectures
Torch the light - Implementing Observability for Microservice ArchitecturesTorch the light - Implementing Observability for Microservice Architectures
Torch the light - Implementing Observability for Microservice ArchitecturesSven Bernhardt
 
Modern Integration based on OCI Cloud-native Services
Modern Integration based on OCI Cloud-native ServicesModern Integration based on OCI Cloud-native Services
Modern Integration based on OCI Cloud-native ServicesSven Bernhardt
 
Service Mesh Advanced Use Cases
Service Mesh Advanced Use CasesService Mesh Advanced Use Cases
Service Mesh Advanced Use CasesSven Bernhardt
 
Rumble in the Jungle - API Kickstart with Kong
Rumble in the Jungle - API Kickstart with KongRumble in the Jungle - API Kickstart with Kong
Rumble in the Jungle - API Kickstart with KongSven Bernhardt
 
Implementing Cloud-native apps on OCI
Implementing Cloud-native apps on OCIImplementing Cloud-native apps on OCI
Implementing Cloud-native apps on OCISven Bernhardt
 
Cloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle CloudCloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle CloudSven Bernhardt
 
Flexible, hybrid API-led software architectures with Kong
Flexible, hybrid API-led software architectures with KongFlexible, hybrid API-led software architectures with Kong
Flexible, hybrid API-led software architectures with KongSven Bernhardt
 
Next Gen Big Data Plattform mit Hadoop, APIs und Kubernetes
Next Gen Big Data Plattform mit Hadoop, APIs und KubernetesNext Gen Big Data Plattform mit Hadoop, APIs und Kubernetes
Next Gen Big Data Plattform mit Hadoop, APIs und KubernetesSven Bernhardt
 
Cloud-Native Microservices using Helidon
Cloud-Native Microservices using HelidonCloud-Native Microservices using Helidon
Cloud-Native Microservices using HelidonSven Bernhardt
 

More from Sven Bernhardt (13)

Effective and simple - integration architectures with Apache Camel and Quarkus
Effective and simple - integration architectures with Apache Camel and QuarkusEffective and simple - integration architectures with Apache Camel and Quarkus
Effective and simple - integration architectures with Apache Camel and Quarkus
 
Modernization options for Oracle Forms applications
Modernization options for Oracle Forms applicationsModernization options for Oracle Forms applications
Modernization options for Oracle Forms applications
 
Build and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using KumaBuild and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using Kuma
 
Build and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using KumaBuild and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using Kuma
 
Torch the light - Implementing Observability for Microservice Architectures
Torch the light - Implementing Observability for Microservice ArchitecturesTorch the light - Implementing Observability for Microservice Architectures
Torch the light - Implementing Observability for Microservice Architectures
 
Modern Integration based on OCI Cloud-native Services
Modern Integration based on OCI Cloud-native ServicesModern Integration based on OCI Cloud-native Services
Modern Integration based on OCI Cloud-native Services
 
Service Mesh Advanced Use Cases
Service Mesh Advanced Use CasesService Mesh Advanced Use Cases
Service Mesh Advanced Use Cases
 
Rumble in the Jungle - API Kickstart with Kong
Rumble in the Jungle - API Kickstart with KongRumble in the Jungle - API Kickstart with Kong
Rumble in the Jungle - API Kickstart with Kong
 
Implementing Cloud-native apps on OCI
Implementing Cloud-native apps on OCIImplementing Cloud-native apps on OCI
Implementing Cloud-native apps on OCI
 
Cloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle CloudCloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle Cloud
 
Flexible, hybrid API-led software architectures with Kong
Flexible, hybrid API-led software architectures with KongFlexible, hybrid API-led software architectures with Kong
Flexible, hybrid API-led software architectures with Kong
 
Next Gen Big Data Plattform mit Hadoop, APIs und Kubernetes
Next Gen Big Data Plattform mit Hadoop, APIs und KubernetesNext Gen Big Data Plattform mit Hadoop, APIs und Kubernetes
Next Gen Big Data Plattform mit Hadoop, APIs und Kubernetes
 
Cloud-Native Microservices using Helidon
Cloud-Native Microservices using HelidonCloud-Native Microservices using Helidon
Cloud-Native Microservices using Helidon
 

Recently uploaded

Future Visions: Predictions to Guide and Time Tech Innovation, Peter Udo Diehl
Future Visions: Predictions to Guide and Time Tech Innovation, Peter Udo DiehlFuture Visions: Predictions to Guide and Time Tech Innovation, Peter Udo Diehl
Future Visions: Predictions to Guide and Time Tech Innovation, Peter Udo DiehlPeter Udo Diehl
 
Speed Wins: From Kafka to APIs in Minutes
Speed Wins: From Kafka to APIs in MinutesSpeed Wins: From Kafka to APIs in Minutes
Speed Wins: From Kafka to APIs in Minutesconfluent
 
The Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdf
The Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdfThe Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdf
The Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdfFIDO Alliance
 
Salesforce Adoption – Metrics, Methods, and Motivation, Antone Kom
Salesforce Adoption – Metrics, Methods, and Motivation, Antone KomSalesforce Adoption – Metrics, Methods, and Motivation, Antone Kom
Salesforce Adoption – Metrics, Methods, and Motivation, Antone KomCzechDreamin
 
Simplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdf
Simplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdfSimplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdf
Simplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdfFIDO Alliance
 
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...FIDO Alliance
 
Powerful Start- the Key to Project Success, Barbara Laskowska
Powerful Start- the Key to Project Success, Barbara LaskowskaPowerful Start- the Key to Project Success, Barbara Laskowska
Powerful Start- the Key to Project Success, Barbara LaskowskaCzechDreamin
 
A Business-Centric Approach to Design System Strategy
A Business-Centric Approach to Design System StrategyA Business-Centric Approach to Design System Strategy
A Business-Centric Approach to Design System StrategyUXDXConf
 
The Metaverse: Are We There Yet?
The Metaverse: Are We There Yet?The Metaverse: Are We There Yet?
The Metaverse: Are We There Yet?Mark Billinghurst
 
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdfHow Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdfFIDO Alliance
 
Demystifying gRPC in .Net by John Staveley
Demystifying gRPC in .Net by John StaveleyDemystifying gRPC in .Net by John Staveley
Demystifying gRPC in .Net by John StaveleyJohn Staveley
 
Free and Effective: Making Flows Publicly Accessible, Yumi Ibrahimzade
Free and Effective: Making Flows Publicly Accessible, Yumi IbrahimzadeFree and Effective: Making Flows Publicly Accessible, Yumi Ibrahimzade
Free and Effective: Making Flows Publicly Accessible, Yumi IbrahimzadeCzechDreamin
 
AI revolution and Salesforce, Jiří Karpíšek
AI revolution and Salesforce, Jiří KarpíšekAI revolution and Salesforce, Jiří Karpíšek
AI revolution and Salesforce, Jiří KarpíšekCzechDreamin
 
Introduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdf
Introduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdfIntroduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdf
Introduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdfFIDO Alliance
 
Integrating Telephony Systems with Salesforce: Insights and Considerations, B...
Integrating Telephony Systems with Salesforce: Insights and Considerations, B...Integrating Telephony Systems with Salesforce: Insights and Considerations, B...
Integrating Telephony Systems with Salesforce: Insights and Considerations, B...CzechDreamin
 
TopCryptoSupers 12thReport OrionX May2024
TopCryptoSupers 12thReport OrionX May2024TopCryptoSupers 12thReport OrionX May2024
TopCryptoSupers 12thReport OrionX May2024Stephen Perrenod
 
How we scaled to 80K users by doing nothing!.pdf
How we scaled to 80K users by doing nothing!.pdfHow we scaled to 80K users by doing nothing!.pdf
How we scaled to 80K users by doing nothing!.pdfSrushith Repakula
 
Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...
Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...
Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...CzechDreamin
 
TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...
TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...
TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...marcuskenyatta275
 
1111 ChatGPT Prompts PDF Free Download - Prompts for ChatGPT
1111 ChatGPT Prompts PDF Free Download - Prompts for ChatGPT1111 ChatGPT Prompts PDF Free Download - Prompts for ChatGPT
1111 ChatGPT Prompts PDF Free Download - Prompts for ChatGPTiSEO AI
 

Recently uploaded (20)

Future Visions: Predictions to Guide and Time Tech Innovation, Peter Udo Diehl
Future Visions: Predictions to Guide and Time Tech Innovation, Peter Udo DiehlFuture Visions: Predictions to Guide and Time Tech Innovation, Peter Udo Diehl
Future Visions: Predictions to Guide and Time Tech Innovation, Peter Udo Diehl
 
Speed Wins: From Kafka to APIs in Minutes
Speed Wins: From Kafka to APIs in MinutesSpeed Wins: From Kafka to APIs in Minutes
Speed Wins: From Kafka to APIs in Minutes
 
The Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdf
The Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdfThe Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdf
The Value of Certifying Products for FDO _ Paul at FIDO Alliance.pdf
 
Salesforce Adoption – Metrics, Methods, and Motivation, Antone Kom
Salesforce Adoption – Metrics, Methods, and Motivation, Antone KomSalesforce Adoption – Metrics, Methods, and Motivation, Antone Kom
Salesforce Adoption – Metrics, Methods, and Motivation, Antone Kom
 
Simplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdf
Simplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdfSimplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdf
Simplified FDO Manufacturing Flow with TPMs _ Liam at Infineon.pdf
 
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
Secure Zero Touch enabled Edge compute with Dell NativeEdge via FDO _ Brad at...
 
Powerful Start- the Key to Project Success, Barbara Laskowska
Powerful Start- the Key to Project Success, Barbara LaskowskaPowerful Start- the Key to Project Success, Barbara Laskowska
Powerful Start- the Key to Project Success, Barbara Laskowska
 
A Business-Centric Approach to Design System Strategy
A Business-Centric Approach to Design System StrategyA Business-Centric Approach to Design System Strategy
A Business-Centric Approach to Design System Strategy
 
The Metaverse: Are We There Yet?
The Metaverse: Are We There Yet?The Metaverse: Are We There Yet?
The Metaverse: Are We There Yet?
 
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdfHow Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
How Red Hat Uses FDO in Device Lifecycle _ Costin and Vitaliy at Red Hat.pdf
 
Demystifying gRPC in .Net by John Staveley
Demystifying gRPC in .Net by John StaveleyDemystifying gRPC in .Net by John Staveley
Demystifying gRPC in .Net by John Staveley
 
Free and Effective: Making Flows Publicly Accessible, Yumi Ibrahimzade
Free and Effective: Making Flows Publicly Accessible, Yumi IbrahimzadeFree and Effective: Making Flows Publicly Accessible, Yumi Ibrahimzade
Free and Effective: Making Flows Publicly Accessible, Yumi Ibrahimzade
 
AI revolution and Salesforce, Jiří Karpíšek
AI revolution and Salesforce, Jiří KarpíšekAI revolution and Salesforce, Jiří Karpíšek
AI revolution and Salesforce, Jiří Karpíšek
 
Introduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdf
Introduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdfIntroduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdf
Introduction to FDO and How It works Applications _ Richard at FIDO Alliance.pdf
 
Integrating Telephony Systems with Salesforce: Insights and Considerations, B...
Integrating Telephony Systems with Salesforce: Insights and Considerations, B...Integrating Telephony Systems with Salesforce: Insights and Considerations, B...
Integrating Telephony Systems with Salesforce: Insights and Considerations, B...
 
TopCryptoSupers 12thReport OrionX May2024
TopCryptoSupers 12thReport OrionX May2024TopCryptoSupers 12thReport OrionX May2024
TopCryptoSupers 12thReport OrionX May2024
 
How we scaled to 80K users by doing nothing!.pdf
How we scaled to 80K users by doing nothing!.pdfHow we scaled to 80K users by doing nothing!.pdf
How we scaled to 80K users by doing nothing!.pdf
 
Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...
Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...
Behind the Scenes From the Manager's Chair: Decoding the Secrets of Successfu...
 
TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...
TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...
TEST BANK For, Information Technology Project Management 9th Edition Kathy Sc...
 
1111 ChatGPT Prompts PDF Free Download - Prompts for ChatGPT
1111 ChatGPT Prompts PDF Free Download - Prompts for ChatGPT1111 ChatGPT Prompts PDF Free Download - Prompts for ChatGPT
1111 ChatGPT Prompts PDF Free Download - Prompts for ChatGPT
 

One Gateway to Rule them All: Building a Federated API Management Platform

  • 1. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 1 Building a Federated API Management Platform Nuremberg, 2023-11-22 Sven Bernhardt ONE GATEWAY TO RULE THEM ALL
  • 2. © OPITZ CONSULTING 2023 / Öffentlich THAT‘S ME One Gateway to rule them all 2 Sven Bernhardt Cloud-Native enthusiast, API & integration geek. Always curious how new technologies and concepts can help to make things more valuable and efficient. @sbernhardt https://svenbernhardt.wordpress.com/ Chief Architect / Integration Evangelist OPITZ CONSULTING Deutschland GmbH
  • 3. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 3 WHERE WE ARE 01 APIS & GATEWAYS 02 CONCLUSION 04 API PLATFORMS 03
  • 4. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 4 WHERE WE ARE 01
  • 5. © OPITZ CONSULTING 2023 / Öffentlich THE WORLD IS CLOUD-NATIVE … One Gateway to rule them all 5 ¢ Characteristics of Cloud-native apps: ¢ Loose coupling ¢ Resilient and fault-tolerant ¢ Scalable ¢ Manageable ¢ Observable “… loosely coupled systems that are resilient, manageable, and observable. Combined with robust automation, they allow engineers to make high-impact changes frequently and predictably with minimal toil.” (CNCF definition Cloud-native) Cloud-native Microservices & APIs CI / CD DevOps Containers
  • 6. © OPITZ CONSULTING 2023 / Öffentlich … AND OFTEN AT LEAST HYBRID OR HYBRID, MULTI-CLOUD One Gateway to rule them all 6 ¢ Shift to the Cloud continues ¢ Trend leads toward using multiple Clouds (Best-of-breed approach) ¢ On-prem systems are replaced or complemented by SaaS offerings
  • 7. © OPITZ CONSULTING 2023 / Öffentlich MOVE TO THE CLOUD AND CLOUD-NATIVE PRINCIPLES FURTHERS TREND TO DECENTRALIZATION One Gateway to rule them all 7 Centralized STATIC ON-PREM MONOLITH VIRTUAL MACHINES MANUAL CHANGE PROCESS Decentralized DYNAMIC CLOUD / MULTI-CLOUD MICROSERVICES / SERVERLESS CONTAINERS, KUBERNETES AUTOMATED CI/CD TOOL CHAIN # Services & APIs CONTROL AND VISIBILITY
  • 8. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all Gen 0 ESB Gen 1 XML Appliances Gen 2 REST & API Gateways Gen 3 µGateways Timeline 2006 2011 2014 API GATEWAY EVOLUTION: FROM SIMPLE REVERSE PROXIES TO MICROGATEWAYS 8
  • 9. © OPITZ CONSULTING 2023 / Öffentlich WE’RE FACING A MAJOR TECHNOLOGY TRANSITION THAT WE SHOULD ACTIVELY SHAPE One Gateway to rule them all 9 Source: https://www.youtube.com/watch?v=D41cLljxZ-U&list=PLg_AhYkg50vi_DVrEqKPX11blSwom6YUr&index=4
  • 10. © OPITZ CONSULTING 2023 / Öffentlich HAVING AN API VISION THAT DEFINES THE WHY, HOW AND WHAT IS IMPORTANT TO SUCCEED! One Gateway to rule them all 10 ¢ When thinking about APIs, it should have a business impact ¢ APIs are digital products and should be handled as such ¢ Product orientation mainly impacts people and the organization ¢ Technology is a vehicle that enables sustainable Product management ¢ API Vision needs to ensure that change happens in a balanced way People Organization Technologies
  • 11. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 11 APIS & GATEWAYS 02
  • 12. © OPITZ CONSULTING 2023 / Öffentlich API-PRODUCTS ARE USED TO COMPREHENSIBLE INTERACT WITH THE OPERATIONAL DATA WITHIN A DOMAIN One Gateway to rule them all ¢ Characteristics of an API product: ¢ User experience (UX) ¢ Reliability ¢ API products are consumer-centric ¢ API products may have different In- /Output Ports: ¢ Sync for User-centric interactions ¢ Async for System-centric interactions (e.g. Cross-Domain interactions) API Contract (e.g. Open API) 12
  • 13. © OPITZ CONSULTING 2023 / Öffentlich REALIZE THAT APIS ARE SUBJECT TO A LIFECYCLE One Gateway to rule them all 13 ¢ A stable API lifecycle is an essential part of an effective API governance strategy ¢ API lifecycle ¢ Reaches from idea to „ready to use API“ ¢ Supports fast innovation lifecycles ¢ Helps to implement API-first strategy ¢ There are different lifecycles for producers & consumers – but related ¢ Benefits ¢ Increased productivity ¢ Greater visibility ¢ Organizational alignment Design Review & build Deploy Promote, deprecate, retire Operate & observe Learn & evolve API ideation & planning Back to design due to consumer feedback during development
  • 14. © OPITZ CONSULTING 2023 / Öffentlich API CONTRACTS NEED TO DELIVER A GREAT USER EXPERIENCE (UX) One Gateway to rule them all ¢ Focus on potential consumers ¢ How will a consumer use my API? ¢ What kind of resources and operations are needed by the consumers? ¢ APIs should be consumer-centric and thus be consumable ¢ Well-designed, secured and compliant ¢ Documented, discoverable and accessible ¢ Performant, reliable and scalable Source: https://konghq.com/blog/what-is-apiops/ Compliant Functional Findable The intersection of the three characteristics defines consumable APIs! When we talk about APIs, we don't necessarily mean REST APIs! 14
  • 15. © OPITZ CONSULTING 2023 / Öffentlich ESTABLISH API GATEWAY AS A SINGLE ENTRY POINT TO AN ENTERPRISES BACKEND SERVICES One Gateway to rule them all 15 ¢ Cares about APIs at runtime ¢ Allow for consistent Governance ¢ Increase transparency ¢ API usage ¢ APIs available ¢ Conform with security standards ¢ Increase Developer Productivity Managing APIs means more than just having an API Gateway in place! Things (mostly) automated API lifecycle as well as community management.
  • 16. © OPITZ CONSULTING 2023 / Öffentlich API GATEWAY AS A SHARED POLICY LAYER One Gateway to rule them all 16 Business Logic (B) Policy (P) OTHER MONOLITH Routing Load Balancing Authentication Authorization Logs & Metrics Rate Limiting Caching Validation Transformation MICROSERVICES MULTI-CLOUD & KUBERNETES ON-PREMISE HOSTING B Shared Policy Layer (API Gateway) B B B B B B B B B Serverless (e.g. AWS Lambda) More applications and services More languages and protocols REST} { More deployment types 3RD-PARTY
  • 17. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 17 CHALLENGE: BALANCE BETWEEN SPEED AND CONSISTENCE https://opitzcloud.canto.global/b/I3FO4
  • 18. © OPITZ CONSULTING 2023 / Öffentlich DECENTRALISED API MANAGEMENT: FOCUS ON SPEED One Gateway to rule them all 18 API Platform Dev Team 1 Dev Team 2 Dev Team n API Standard 1 API Standard 2 API Standard n Decreasing consistency
  • 19. © OPITZ CONSULTING 2023 / Öffentlich CENTRALISED API MANAGEMENT: FOCUS ON CONSISTENCE One Gateway to rule them all 19 API Platform Dev Team 1 Dev Team 2 Dev Team n API Platform Team Review loop Review loop Review loop API Guidelines API Guidelines API Guidelines Decreased speed
  • 20. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 20 AUTOMATION TO BALANCE SPEED AND CONSISTENCE https://opitzcloud.canto.global/b/OQR0O
  • 21. © OPITZ CONSULTING 2023 / Öffentlich APIOPS APPROACH: FOCUS ON SPEED AND CONSISTENCE One Gateway to rule them all 21 API Platform Dev Team 1 Dev Team 2 Dev Team n API Platform Team API Guidelines API Guidelines API Guidelines Automated deployment Governance layer Defines Guidelines, Rules & Restrictions Automated, direct feedback Automated, direct feedback Automated, direct feedback
  • 22. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 22 API PLATFORMS 03
  • 23. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 23 CHARACTERISTICS OF A MODERN API PLATFORM Modern Tooling: Use modern engineering tools and techniques, infrastructure as code and automation Easy Onboarding: Low ramp for new internal teams to onboard to the platform Minimize cognitive load: Empower developers to foucs on delivering core business value Continually evolve: The Platform should be flexible enough to support new use cases (Desing4Change) 01 02 03 04
  • 24. © OPITZ CONSULTING 2023 / Öffentlich WHEN TALKING ABOUT PLATFORMS WE NEED TO TALK ABOUT PLATFORM ENGINEERING One Gateway to rule them all 24 What is Platform Engineering? “Platform engineering is an emerging technology (concept) that can accelerate the delivery of applications and the pace at which they produce business value.” Gartner
  • 25. © OPITZ CONSULTING 2023 / Öffentlich A MODERN API PLATFORM NEEDS TO BE READY TO ADDRESS CHALLENGES IN MORE AND MORE DISTRIBUTED WORLD One Gateway to rule them all ¢ Postulate: Modern architectures are at least hybrid and may be hybrid, multi-cloud ¢ Ideally, a distributed API platform is unified ¢ Increases efficiency in operating ¢ Allow to easily evolve the platform ¢ Different models to organize an API Platform ¢ Siloed ¢ Centralized ¢ Federated 25
  • 26. © OPITZ CONSULTING 2023 / Öffentlich SILOED MODEL One Gateway to rule them all 26 ¢ Deployment blueprints (IaC) provided by Platform team ¢ Fully isolated platform for each Product / Domain team ¢ No dependency on the central team ¢ Maintenance, Updating / Patching ¢ Security, Hardening ¢ Product / Domain teams are not bound to central governance processes ¢ Reusage and sharing between teams is limited
  • 27. © OPITZ CONSULTING 2023 / Öffentlich CENTRALIZED MODEL One Gateway to rule them all 27 ¢ The platform team is responsible for the API platform ¢ Maintenance, Updating / Patching ¢ Security, Hardening ¢ Scaling ¢ Deployed API gateways are shared between teams ¢ A shared Platform team can become a bottleneck ¢ Limited ability to implement strict isolation between different business units
  • 28. © OPITZ CONSULTING 2023 / Öffentlich WHAT DOES “FEDERATION” MEAN? One Gateway to rule them all 28 ¢ Characteristics ¢ Central federal governance unit ¢ Defines guidelines ¢ Defines binding rules ¢ Self-governing sub-units ¢ Using guidelines, but are free to implement ¢ Internal autonomy ¢ Clear delineation of responsibilities ¢ Shared ¢ Exclusive (executed by central unit) ¢ Decisions made by sub-units cannot be overruled by the central unit “A federation (a federal state) is a political entity characterized by a union of partially self-governing provinces, states, or other regions under a central federal government (federalism). Alternatively, a federation is a form of government in which sovereign power is formally divided between a central authority and several constituent regions so that each region retains some degree of control over its internal affairs.” (Def. Federation (political), Source: Wikipedia)
  • 29. © OPITZ CONSULTING 2023 / Öffentlich FEDERATED MODEL One Gateway to rule them all 29 ¢ One centralized Control plane run by a Platform team ¢ Used by all teams within an organization ¢ Multi-tenancy ¢ Multiple API gateways (Data planes) ¢ Managed by Product / Domain teams ¢ Helps teams become more independent ¢ Configuration managed within the teams ¢ Golden images provided by a Platform team ¢ Updates / Security (Hardening) managed centrally ¢ Automated provisioning (IaC) Source: https://konghq.com/blog/enterprise/federated-api-management
  • 30. © OPITZ CONSULTING 2023 / Öffentlich CHALLENGES FOR FEDERATED MODELS IN HETEROGENEOUS ARCHITECTURES One Gateway to rule them all 30 ¢ Some API vendors offer federated API platforms for heterogeneous architectures ¢ Heterogeneous approach ¢ Different Gateways from different vendors ¢ No standard for communication between CP and DPs ¢ Limited feature support (e.g. just syncing API contracts, not configuration)
  • 31. © OPITZ CONSULTING 2023 / Öffentlich WHAT IS KONG? One Gateway to rule them all 31 ¢ Lightweight, fast, and flexible cloud native API gateway ¢ Facts: ¢ 400B+ API Calls ¢ 312M+ Downloads ¢ 35K+ GitHub stars ¢ Characteristics: ¢ Fully automated (APIOps) ¢ Deployment agnostic ¢ Highly extensible
  • 32. © OPITZ CONSULTING 2023 / Öffentlich FEDERATED API MANAGEMENT WITH KONG One Gateway to rule them all 32
  • 33. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 33 DEMO
  • 34. © OPITZ CONSULTING 2023 / Öffentlich DEMO SETUP One Gateway to rule them all 34 ¢ Hybrid and Multi-Cloud architecture ¢ Data Planes distributed over ¢ Oracle Cloud (Compute) ¢ AWS (EC2) ¢ On-prem (Dockerized deployment) ¢ K8s example Kong Ingress Controller ¢ Oracle Container Engine For Kubernetes (OKE) ¢ All managed through Kong Konnect
  • 35. © OPITZ CONSULTING 2023 / Öffentlich DEMO OVERVIEW One Gateway to rule them all 35 OCI AWS Kong Konnect On-Premises Cloud Kong Ingress Controller (KIC) manages manages manages Management Plane
  • 36. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 36 CONCLUSION 04
  • 37. © OPITZ CONSULTING 2023 / Öffentlich KEY TAKEAWAYS One Gateway to rule them all 37 ¢ APIs need to be managed ¢ Collaboration is key for good API products ¢ It’s all about community ¢ To be able to efficiently manage your APIs a platform is needed ¢ Focus on Developer Experience (DX) ¢ Focus on Automation ¢ Focus on Standardization ¢ The federated model provides flexibility, but also requires buy-in from Product teams
  • 38. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 38 Q & A
  • 39. © OPITZ CONSULTING 2023 / Öffentlich INTEGRATION IS THE FOUNDATION FOR IT-MODERNIZATION One Gateway to rule them all Sven Bernhardt Chief Architect sven.bernhardt@opitz- consulting.com www.opitz-consulting.com Thanks for your attention! Questions left? Contact me! 39