Bishoy Demian, profile picture
Uploaded byBishoy Demian
1,355 views

API as-a-Product with Azure API Management (APIM)

The document discusses the concept of APIs as a product, focusing on their growth and the importance of community-driven development. It outlines key components of Azure API Management, including management policies, analytics, and security models. It also highlights the pros and cons of the product while pointing to a future roadmap.

Embed presentation

API as-a-Product
Who? @BishoyDemian@DotLabsAu www.dotlabs.com.au
What to expect?
No buzzwords
No “disruption”
No JavaScript frameworks
API Growth
Growth in APIs 2005 – to - 2013 Source: Programmable Web
“ ” UI/UX paradigms will come and disappear. APIs are here to stay!
Community-Driven Development
Where to start?
Azure API Management (APIM)
Publisher Portal
Building Blocks APIs Products Policies Analytics Security
APIs  Import: WADL/Swagger  Configure: URL & operations  Secure: credentials & authorization  Track: Issues & Client Applications
Products  Visibility: user groups  Control: Subscriptions  Enforce: Terms of Service
Policies  Scoped  Inherited  XML documents  C# expressions  Context included
Example Policies
Analytics  Usage: Location, Bandwidth, Calls  Health: Errors, Cache, Latency  Activity: By Developers, Products, Subscriptions, APIs, & Operations
Analytics
Security Model Identity Authentication Authorisation
Identity Providers  Enterprise: Azure Active Directory  Social: Facebook, Google, Twitter  Built-in: Username & Password  Custom: Delegation
Developer Portal
Building Blocks Docs Signup Apps Issues
Conclusions Pros  Cross-cutting concerns done with better consistency  Costs less $$!  Easy to use & customize  Familiar tools (Git, C#, PowerShell)  Already part of Azure Cons  Still a new product  Some rough edges  Latency overhead  Versioning strategy missing
What’s next?  Product Roadmap  http://aka.ms/ApimRoadmap
Questions?

More Related Content

PPTX
API Management in Azure
byTomasso Groenendijk
 
PPTX
API Management in Digital Transformation
byAditya Thatte
 
PDF
Open API and API Management - Introduction and Comparison of Products: TIBCO ...
byKai Wähner
 
PPTX
Azure API Management
byDaniel Toomey
 
PPTX
API Strategy Introduction
byDoug Gregory
 
PDF
Architecting an Enterprise API Management Strategy
byWSO2
 
PDF
The Architecture of an API Platform
byJohannes Ridderstedt
 
PDF
API Management - Why it matters!
bySven Bernhardt
 
API Management in Azure
byTomasso Groenendijk
 
API Management in Digital Transformation
byAditya Thatte
 
Open API and API Management - Introduction and Comparison of Products: TIBCO ...
byKai Wähner
 
Azure API Management
byDaniel Toomey
 
API Strategy Introduction
byDoug Gregory
 
Architecting an Enterprise API Management Strategy
byWSO2
 
The Architecture of an API Platform
byJohannes Ridderstedt
 
API Management - Why it matters!
bySven Bernhardt
 

What's hot

PPTX
API Management
byProlifics
 
PPTX
Guide to an API-first Strategy
byKellton Tech Solutions Ltd
 
PDF
Definitive Guide to API Management
byApigee | Google Cloud
 
PDF
OpenAPI 3.0, And What It Means for the Future of Swagger
bySmartBear
 
PDF
API Maturity Model (Webcast with Accenture)
byApigee | Google Cloud
 
PPTX
API Management Within a Microservices Architecture
byNadeesha Gamage
 
PPTX
REST API Design & Development
byAshok Pundit
 
PPTX
API Management Part 1 - An Introduction to Azure API Management
byBizTalk360
 
PPTX
Overview of API Management Architectures
byNordic APIs
 
PDF
Why API Ops is the Next Wave of DevOps
byJohn Musser
 
PDF
API for Beginners
byGustavo De Vita
 
PDF
Efficient API delivery with APIOps
bySven Bernhardt
 
PPTX
API Governance in the Enterprise
byApigee | Google Cloud
 
PPTX
How to Execute a Successful API Strategy
byMatt McLarty
 
PDF
How Secure Are Your APIs?
byApigee | Google Cloud
 
PDF
API Governance
bySunil Kuchipudi
 
PDF
KPIs for APIs (and how API Calls are the new Web Hits, and you may be measuri...
byJohn Musser
 
PPTX
Api types
bySarah Maddox
 
PPTX
How to Execute a Successful API Strategy
byMatt McLarty
 
PDF
Designing APIs with OpenAPI Spec
byAdam Paxton
 
API Management
byProlifics
 
Guide to an API-first Strategy
byKellton Tech Solutions Ltd
 
Definitive Guide to API Management
byApigee | Google Cloud
 
OpenAPI 3.0, And What It Means for the Future of Swagger
bySmartBear
 
API Maturity Model (Webcast with Accenture)
byApigee | Google Cloud
 
API Management Within a Microservices Architecture
byNadeesha Gamage
 
REST API Design & Development
byAshok Pundit
 
API Management Part 1 - An Introduction to Azure API Management
byBizTalk360
 
Overview of API Management Architectures
byNordic APIs
 
Why API Ops is the Next Wave of DevOps
byJohn Musser
 
API for Beginners
byGustavo De Vita
 
Efficient API delivery with APIOps
bySven Bernhardt
 
API Governance in the Enterprise
byApigee | Google Cloud
 
How to Execute a Successful API Strategy
byMatt McLarty
 
How Secure Are Your APIs?
byApigee | Google Cloud
 
API Governance
bySunil Kuchipudi
 
KPIs for APIs (and how API Calls are the new Web Hits, and you may be measuri...
byJohn Musser
 
Api types
bySarah Maddox
 
How to Execute a Successful API Strategy
byMatt McLarty
 
Designing APIs with OpenAPI Spec
byAdam Paxton
 

Similar to API as-a-Product with Azure API Management (APIM)

PPTX
Azure API Management to expose backend services securely
byDinusha Kumarasiri
 
PDF
APIsecure 2023 - Exploring Advanced API Security Techniques and Technologies,...
byapidays
 
PDF
Azure Spring Clean 2024 event - Azure API Management: Architecting for Perfor...
byHamida Rebai Trabelsi
 
PDF
I am sorry Developer, your API just became a Product.pdf
byFrancisco Picolini
 
PPTX
Best Practices: The Role of API Management
byAkana
 
PPTX
API-as-a-product: The Key to a Successful API Program
byNordic APIs
 
PDF
API Products: The Role of an API Product Manager
byWSO2
 
PDF
M meijer api management - tech-days 2015
byFreelance Consultant / Manager / co-CTO
 
PDF
APIs In Action -Harnessing the Power of Azure API Management: Building Robust...
byHamida Rebai Trabelsi
 
PDF
APIs +Micro services technology for Computing
bywismoyo92
 
PPTX
TEC-Roundtable-API
byPatrick Emmons
 
PPTX
Best Practices: The Role of API Management
byAkana
 
PDF
apidays LIVE London 2021 - Moving from a Product as API to API as a Product b...
byapidays
 
PDF
7 Ideas for the Future of APIs
byPrime Profit Media
 
PPTX
Lessons in Transforming the Enterprise to an API Platform
byLaunchAny
 
PDF
apidays LIVE Paris 2021 - APIs and Data products: How do they impact your bus...
byapidays
 
PDF
apidays Paris 2022 - Lessons from the evolution of API product management ove...
byapidays
 
PDF
API Management For Building Software Applications Powerpoint Presentation Slides
bySlideTeam
 
PDF
Apidays Singapore 2024 - Shift RIGHT to Better Product Resilience by Abhijit ...
byapidays
 
PDF
INTERFACE, by apidays - Best Practices for Implementing an API Program
byapidays
 
Azure API Management to expose backend services securely
byDinusha Kumarasiri
 
APIsecure 2023 - Exploring Advanced API Security Techniques and Technologies,...
byapidays
 
Azure Spring Clean 2024 event - Azure API Management: Architecting for Perfor...
byHamida Rebai Trabelsi
 
I am sorry Developer, your API just became a Product.pdf
byFrancisco Picolini
 
Best Practices: The Role of API Management
byAkana
 
API-as-a-product: The Key to a Successful API Program
byNordic APIs
 
API Products: The Role of an API Product Manager
byWSO2
 
M meijer api management - tech-days 2015
byFreelance Consultant / Manager / co-CTO
 
APIs In Action -Harnessing the Power of Azure API Management: Building Robust...
byHamida Rebai Trabelsi
 
APIs +Micro services technology for Computing
bywismoyo92
 
TEC-Roundtable-API
byPatrick Emmons
 
Best Practices: The Role of API Management
byAkana
 
apidays LIVE London 2021 - Moving from a Product as API to API as a Product b...
byapidays
 
7 Ideas for the Future of APIs
byPrime Profit Media
 
Lessons in Transforming the Enterprise to an API Platform
byLaunchAny
 
apidays LIVE Paris 2021 - APIs and Data products: How do they impact your bus...
byapidays
 
apidays Paris 2022 - Lessons from the evolution of API product management ove...
byapidays
 
API Management For Building Software Applications Powerpoint Presentation Slides
bySlideTeam
 
Apidays Singapore 2024 - Shift RIGHT to Better Product Resilience by Abhijit ...
byapidays
 
INTERFACE, by apidays - Best Practices for Implementing an API Program
byapidays
 

Recently uploaded

PDF
Digit Expo 2025 - EICC Edinburgh 27th November
byRay Bugg
 
PDF
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
PDF
API206-S: Transforming Supply Chains with Amazon Bedrock AgentCore - AWS re:I...
byChris Bingham
 
PDF
Safeguarding AI-Based Financial Infrastructure
byYasir Naveed Riaz
 
PPTX
RISE with SAP for Automotive - S4 HANA Value.pptx
byAmira Jemi
 
PDF
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
PDF
December Patch Tuesday
byIvanti
 
PDF
Usage Control for Process Discovery through a Trusted Execution Environment
byValerioGoretti
 
PDF
Guided Substation Engineering with CoMPAS: Simplifying IEC 61850
byDanBrown980551
 
PDF
Top 7 Manufacturing Software for Small Businesses Boosting Growth in 2025
byEnvertis Software Solutions
 
PPTX
The Future of IT Service Management AI Automation & Beyond.pptx
byChetu
 
PDF
Top Cybersecurity Threats 2025 Guide by Sureshdas
byPrintersassist
 
PDF
The year in review - MarvelClient in 2025
bypanagenda
 
PPTX
Ethics in AI - Artificial Intelligence Fundamentals.pptx
byemenyiblessing
 
PDF
eResource Scheduler Enterprise Resource Management and Scheduling Software.pdf
byeResource Scheduler
 
PDF
DIGITAL FORENSICS - Notes for Everything.pdf
bypankajkumavatbeit
 
PDF
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
PDF
Innovative AI Solutions for Business Growth.pdf
byVox Works
 
PDF
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
PDF
8 LLM Surveys https://tinyurl.com/bdz8e6fp
byBob Marcus
 
Digit Expo 2025 - EICC Edinburgh 27th November
byRay Bugg
 
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
API206-S: Transforming Supply Chains with Amazon Bedrock AgentCore - AWS re:I...
byChris Bingham
 
Safeguarding AI-Based Financial Infrastructure
byYasir Naveed Riaz
 
RISE with SAP for Automotive - S4 HANA Value.pptx
byAmira Jemi
 
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
December Patch Tuesday
byIvanti
 
Usage Control for Process Discovery through a Trusted Execution Environment
byValerioGoretti
 
Guided Substation Engineering with CoMPAS: Simplifying IEC 61850
byDanBrown980551
 
Top 7 Manufacturing Software for Small Businesses Boosting Growth in 2025
byEnvertis Software Solutions
 
The Future of IT Service Management AI Automation & Beyond.pptx
byChetu
 
Top Cybersecurity Threats 2025 Guide by Sureshdas
byPrintersassist
 
The year in review - MarvelClient in 2025
bypanagenda
 
Ethics in AI - Artificial Intelligence Fundamentals.pptx
byemenyiblessing
 
eResource Scheduler Enterprise Resource Management and Scheduling Software.pdf
byeResource Scheduler
 
DIGITAL FORENSICS - Notes for Everything.pdf
bypankajkumavatbeit
 
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
Innovative AI Solutions for Business Growth.pdf
byVox Works
 
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
8 LLM Surveys https://tinyurl.com/bdz8e6fp
byBob Marcus
 

API as-a-Product with Azure API Management (APIM)

Editor's Notes

  • #11 IoT is driving unprecedented growth in API production and consumption. It is very obvious why.
  • #12 Is your project and “App”, a “System”, or a “Platform”?
  • #15 API Management provides a simple one-stop solution for the cross-cutting concerns when publishing APIs.
  • #16 API Management has 3 main components: Developer Portal Gateway Publisher Portal
  • #18 Each API refers to a back-end service that you can customize (URL mapping, query and path parameters, request/response content, caching, etc.) Products can be Open or Protected. Protected products must be subscribed to before they can be used, while open products can be used without a subscription. Policies can introduce some logic in how to process the API calls. Allows .Net code blocks. Provides context parameters. Users can come from multiple identity providers (enterprise, social, and local user/pass)
  • #19 Import APIs from WADL or Swagger specs URL mappings (rewrite) Enable/Disable caching of operations (policies have more fine-grained controls) Configure Gateway<->API authorisation Configure User<->API authorisation (used for interactive developer portal) .. (Oauth 2.0 & OpenID connect) Built-in issue tracker (very simple)
  • #20 Products allow you to: Grant/deny access to user groups Require a subscription Enforce subscription approval Users must accept terms of service
  • #21 Scope can be per operation, API, product, a mix of all of these, or global Encapsulated inside a very simple XML document structure (inbound, backend, outbound) Access to Request, Response object and Product, Subscription, etc…
  • #22 Built-in policies makes life easy for simple scenarios C# code can be a very powerful tool to write advanced policies Integration with external tools and APIs (payment gateway? Or bug tracker maybe?) with
  • #23 Anyone attempted to measure an API Error rate? Latency? Cache hits? usage? How long did it take? How do you make informed decisions on which APIs & Operations need more attention? How do you decide which Operations in your API needs optimisation?
  • #24 This is a simple ”Usage” dashboard.
  • #25 Developer Authentication (uses identity) Backend API authentication (Basic, client cert.) Interactive API calls in developer portal require a helping hand to perform authorisation (OAuth 2.0) Validate incoming JWT tokens (issuer, expiry, signature, etc.)
  • #26 Azure AD B2C behind the scenes. Quite capable of handling external users (v.s. plain Azure/AD)
  • #29 Each API refers to a back-end service that you can customize (URL mapping, query and path parameters, request/response content, caching, etc.) Products can be Open or Protected. Protected products must be subscribed to before they can be used, while open products can be used without a subscription. Policies can introduce some logic in how to process the API calls. Allows .Net code blocks. Provides context parameters. Users can come from multiple identity providers (enterprise, social, and local user/pass)