SlideShare a Scribd company logo

APIs: Impact of APIs on Integration

SmartWave
SmartWave

The document discusses the impact of APIs on integration. It covers topics like SOA and microservices, REST design principles, security considerations, and evolving API management platforms. SOA principles are still valid and can be implemented through REST architectures. While REST aims to be simple, design decisions around areas like granularity and HATEOS are important. Security standards for REST APIs are emerging but not fully mature. API management has become a focus area for both integration vendors and new cloud-native companies.

Software
1 of 46
Yann LE BLEVEC, SmartWave June, 10th 2015 API Day, Lausanne IMPACT OF APIs ON INTEGRATION Nothing is lost, nothing is created, everything is transformed
June 2015 API Day, Lausanne 2 AGENDA •  SOA IS DEAD, LONG LIVE TO SOA! –  Trends, success stories, SOA & [W,R]OA, microservices •  REST IS SIMPLE, ISN’T IT? –  Design principles, resources, granularity, HATEOS, RMM •  SECURITY REVISITED –  Empowerment, adoption, standards •  EVOLVING NEEDS, EVOLVING PLATFORMS –  Editors, key buildings blocks, B2D
June 2015 API Day, Lausanne 3 SOA IS DEAD, LONG LIVE TO SOA! Trends, success stories, SOA & [W,R]OA, microservices
June 2015 API Day, Lausanne 4 SOA MUST BE DEAD •  No longer a buzzword for editors and analysts •  Use of SOAP, WS-* standards is decreasing •  ESB are seen as too complex •  Governance sounds frightening •  Even SOA Software has changed its brand to Akama BUT…
June 2015 API Day, Lausanne 5 EXPLOSION OF APIs
June 2015 API Day, Lausanne 6 PROVIDERS HEAVILY RELY ON SERVICES WHO? •  Amazon, Twitter, Netflix… " WHY? •  Scale with load •  Remain agile •  Keep pace of innovation
June 2015 API Day, Lausanne 7 MICROSERVICE IS THE NEW HYPE •  Limitations of monolithic applications –  Code base grow substantially more complex –  Difficult to scale individual portions of the application –  Engineering team structure mirror the application architecture •  Implement autonomous building blocks –  Contain everything from the OS, platform, framework, runtime, and dependencies, packaged as one unit of execution
June 2015 API Day, Lausanne 8 SOA DESIGN PRINCIPLES STILL VALID •  Standardized Contract •  Loose Coupling •  Abstraction •  Reusability •  Autonomy •  Statelessness •  Discoverability •  Composability
•  REST architecture provides a medium by which service- oriented architecture can be implemented June 2015 API Day, Lausanne 9 REST TO THE RESCUE
June 2015 API Day, Lausanne 10 REST IS SIMPLE, ISN’T IT? Design principles, resources, granularity, HATEOS, RMM
June 2015 API Day, Lausanne 11 REST DESIGN PRINCIPLES CONSTRAINTS •  Client-Server •  Stateless •  Cache •  Interface/Uniform Contract •  Layered System •  Code-on-Demand GOALS •  Performance •  Scalability •  Simplicity •  Modifiability •  Visibility •  Portability •  Reliability
June 2015 API Day, Lausanne 12 UNIFORM CONTRACT resource identifier syntax (e.g. URL) methods (e.g. HTTP) media types (e.g. IANA registry)
June 2015 API Day, Lausanne 13 DEALING WITH GRANULARITY ENTITY •  Relate to noun •  May contain sub-resources •  Map CRUD to HTTP method 1.  Single Customer resource with large structure containing Address 2.  Root Customer resource with Address sub-resource TASK •  Relate to verb •  Provide business context (intent) •  Define a state •  May implement composition logic 1.  Single ChangeOfAddress resource containing new address •  Design matters –  Chatty protocol, location of composition logic, information needed for updating
June 2015 API Day, Lausanne 14 IMPORTANCE OF HATEOAS Hypermedia as the Engine of Application State
June 2015 API Day, Lausanne 15 RESTFUL MATURITY MODEL
June 2015 API Day, Lausanne 16 SECURITY REVISITED Empowerment, adoption, standards
June 2015 API Day, Lausanne 17 SECURITY CONTEXT IS CHANGING •  New challenges –  Users manage authorizations and keep their password secure –  Developers register applications against APIs –  Lower constraint on API consumers •  New technologies –  REST replacing SOAP –  JSON replacing XML •  New standards –  Emerging standards with various maturity level –  Do not meet all historic requirements
June 2015 API Day, Lausanne 18 SECURITY FOR WEB SERVICES •  Securing Web Services is doable –  XML Encryption/Signature: provide crypto. foundation –  WS-Security: define security within SOAP messages –  SAML: transport assertions –  WS-Trust: retrieve token from central service (STS) –  WS-Policy: advertise expectations •  But rarely done –  Too complex to understand/maintain –  Impact service performance –  Suffer from interoperability issues
June 2015 API Day, Lausanne 19 SECURITY FOR RESTFUL APIs •  Adoption is the key –  Always rely on transport protocol (HTTPS) for integrity and confidentiality –  May use HTTP header for authentication –  Commonly implement OAuth for authorization –  Often use OpenID Connect for authentication –  Rarely require cryptographic capabilities on consumer side
June 2015 API Day, Lausanne 20 OAUTH 2.0 WEB FLOW
June 2015 API Day, Lausanne 21 CURRENT ISSUES •  Various maturity of standards for JSON (JOSE) –  JSON Web Token (JWT) –  JSON Web Signature (JWS) –  JSON Web Encryption (JWE) •  Not “out-of-the-box” requirements –  Couple access tokens with message content –  Apply cryptographic operation to partially message content –  Support “end-to-end” requirements (integrity, confidentiality)
June 2015 API Day, Lausanne 22 EVOLVING NEEDS, EVOLVING PLATFORMS Editors, key buildings blocks, B2D
June 2015 API Day, Lausanne 23 DRIVERS FOR APIs •  Build a broad open web community with simple and free REST APIs •  Support mobile app development with REST APIs •  Facilitate internal use of SOAP APIs and REST APIs for an enterprise services strategy •  Act as an API service provider that charges for API access •  Build a B2B community around mission-critical APIs
June 2015 API Day, Lausanne 24 SOLUTIONS FOR API MANAGEMENT
June 2015 API Day, Lausanne 25 KEY CHARACTERISTICS MARKET •  Topic covered by mega vendors •  Strong presence of historic integration actors •  New players appear mostly cloud based COMPONENTS •  Runtime for exposing APIs with mediation capabilities •  Analytics for insights about APIs usage •  Monetization of published APIs •  Design time components for developer community (B2D)
June 2015 API Day, Lausanne AXWAY API SOLUTIONS 26
June 2015 API Day, Lausanne WSO2 API SOLUTIONS 27
June 2015 API Day, Lausanne 28 API MANAGEMENT VS MBAAS Mobile Backend as a Service
June 2015 API Day, Lausanne 29 CONCLUSION
June 2015 API Day, Lausanne 30 KEY TAKEAWAYS •  Forget about the name not the principles •  REST can bring much but design matters •  Security is challenging out of main stream •  Platform may support your strategy
June 2014 WSO2CON - Glue SaaS using WSO2 31 YANN LE BLEVEC, PHD! Head of Integration   yleblevec@smartwavesa.com @yleblevec SMARTWAVE SA! Switzerland http://www.smartwavesa.com THANK YOU
June 2015 API Day, Lausanne 32 APPENDIX
June 2015 API Day, Lausanne 33 XML VS JSON
June 2015 API Day, Lausanne 34
June 2015 API Day, Lausanne 35
June 2015 API Day, Lausanne 36
June 2015 API Day, Lausanne 37
June 2015 API Day, Lausanne 38 SOA GOALS – 1/2 •  Increased Intrinsic Interoperability –  Services within a given boundary are designed to be naturally compatible so they can be effectively assembled and reconfigured in response to changing business requirements •  Increased Federation –  Services establish a standardized contract layer that is federated, enabling it to hide underlying disparity that allows services to be individually governed and evolved •  Increased Vendor Diversification Options –  A service-oriented environment is based on a vendor-neutral architectural model, allowing the organization to evolve the architecture in tandem with the business without being limited to proprietary vendor platform characteristics •  Increased Business and Technology Alignment –  Some services are designed with a business-centric functional context, allowing them to mirror and evolve with the business of the organization
June 2015 API Day, Lausanne 39 SOA GOALS – 2/2 •  Increased ROI –  Most services are delivered and viewed as IT assets that are expected to provide repeated value that surpasses the cost of delivery and ownership •  Increased Organizational Agility –  New and changing business requirements can be fulfilled more rapidly by establishing an environment in which solutions can be assembled or augmented with reduced effort by leveraging the reusability and native interoperability of existing services •  Reduced IT Burden –  The enterprise as a whole is streamlined as a result of the previously described goals and benefits, allowing IT itself to better support the organization by providing more value with less cost and less overall burden.
June 2015 API Day, Lausanne 40 SOA DESIGN PRINCIPLES – 1/2 •  Standardized Service Contract –  Services within the same service inventory are in compliance with the same contract design standards •  Service Loose Coupling –  Service contracts impose low consumer coupling requirements and are themselves decoupled from their surrounding environments •  Service Abstraction –  Services contracts only contain essential information and information about services is limited to what is published in the service contracts •  Service Reusability –  Services contain and express agnostic logic and can be positioned as reusable enterprise resources
June 2015 API Day, Lausanne 41 SOA DESIGN PRINCIPLES – 2/2 •  Service Autonomy –  Services exercise a high level of control over their underlying runtime execution environment •  Service Statelessness –  Service minimize resource consumption by deferring the management of state information when necessary •  Service Discoverability –  Service are supplemented with communicative meta data by which they can be effectively discovered and interpreted •  Service Composability –  Services are effective composition participants regardless of the sire and complexity of the composition
June 2015 API Day, Lausanne 42 GARTNER Magic Quadrant for Application Services Governance
June 2015 API Day, Lausanne ORACLE API SOLUTIONS 43
June 2015 API Day, Lausanne 44 SUCCESSFUL PROVIDERS RELY ON SOC TWITTER
June 2015 API Day, Lausanne 45 TWITTER
June 2015 API Day, Lausanne 46 FORRESTER EVALUATION

Recommended

Understanding the WSO2 Platform and Technology
Understanding the WSO2 Platform and TechnologyUnderstanding the WSO2 Platform and Technology
Understanding the WSO2 Platform and TechnologyWSO2
 
Rest api webinar(3)
Rest api webinar(3)Rest api webinar(3)
Rest api webinar(3)WSO2
 
SOA governance
SOA governanceSOA governance
SOA governanceSoftware Park Thailand
 
Extend soa with api management spoug- Madrid
Extend soa with api management spoug- MadridExtend soa with api management spoug- Madrid
Extend soa with api management spoug- MadridVinay Kumar
 
API Management with wicked.haufe.io
API Management with wicked.haufe.ioAPI Management with wicked.haufe.io
API Management with wicked.haufe.ioHaufe-Lexware GmbH & Co KG
 
SOA is Dead, long live SOA !
SOA is Dead, long live SOA !SOA is Dead, long live SOA !
SOA is Dead, long live SOA !Matthias Furrer
 
Alfresco Day Milano 2016 - Alfresco Product Update
Alfresco Day Milano 2016 - Alfresco Product UpdateAlfresco Day Milano 2016 - Alfresco Product Update
Alfresco Day Milano 2016 - Alfresco Product UpdateAlfresco Software
 
Streamline your SOA Portfolio
Streamline your SOA Portfolio Streamline your SOA Portfolio
Streamline your SOA Portfolio WSO2
 

Recommended

Understanding the WSO2 Platform and Technology
Understanding the WSO2 Platform and TechnologyUnderstanding the WSO2 Platform and Technology
Understanding the WSO2 Platform and TechnologyWSO2
 
Rest api webinar(3)
Rest api webinar(3)Rest api webinar(3)
Rest api webinar(3)WSO2
 
SOA governance
SOA governanceSOA governance
SOA governanceSoftware Park Thailand
 
Extend soa with api management spoug- Madrid
Extend soa with api management spoug- MadridExtend soa with api management spoug- Madrid
Extend soa with api management spoug- MadridVinay Kumar
 
API Management with wicked.haufe.io
API Management with wicked.haufe.ioAPI Management with wicked.haufe.io
API Management with wicked.haufe.ioHaufe-Lexware GmbH & Co KG
 
SOA is Dead, long live SOA !
SOA is Dead, long live SOA !SOA is Dead, long live SOA !
SOA is Dead, long live SOA !Matthias Furrer
 
Alfresco Day Milano 2016 - Alfresco Product Update
Alfresco Day Milano 2016 - Alfresco Product UpdateAlfresco Day Milano 2016 - Alfresco Product Update
Alfresco Day Milano 2016 - Alfresco Product UpdateAlfresco Software
 
Streamline your SOA Portfolio
Streamline your SOA Portfolio Streamline your SOA Portfolio
Streamline your SOA Portfolio WSO2
 
Service Oriented Architectures (SOA) Monitoring and Management with HP OpenVi...
Service Oriented Architectures (SOA) Monitoring and Management with HP OpenVi...Service Oriented Architectures (SOA) Monitoring and Management with HP OpenVi...
Service Oriented Architectures (SOA) Monitoring and Management with HP OpenVi...Stefan Bergstein
 
[WSO2 Integration Summit London 2019] An API-enabled Journey Towards Empoweri...
[WSO2 Integration Summit London 2019] An API-enabled Journey Towards Empoweri...[WSO2 Integration Summit London 2019] An API-enabled Journey Towards Empoweri...
[WSO2 Integration Summit London 2019] An API-enabled Journey Towards Empoweri...WSO2
 
How to Manage APIs in your Enterprise for Maximum Reusability and Governance
How to Manage APIs in your Enterprise for Maximum Reusability and GovernanceHow to Manage APIs in your Enterprise for Maximum Reusability and Governance
How to Manage APIs in your Enterprise for Maximum Reusability and GovernanceHARMAN Services
 
Role of Rest vs. Web Services and EI
Role of Rest vs. Web Services and EIRole of Rest vs. Web Services and EI
Role of Rest vs. Web Services and EIWSO2
 
How to Manage APIs in your Enterprise for Maximum Reusability and Governance
How to Manage APIs in your Enterprise for Maximum Reusability and GovernanceHow to Manage APIs in your Enterprise for Maximum Reusability and Governance
How to Manage APIs in your Enterprise for Maximum Reusability and GovernanceWSO2
 
APIdays 2016 - The State of Web API Languages
APIdays 2016 - The State of Web API LanguagesAPIdays 2016 - The State of Web API Languages
APIdays 2016 - The State of Web API LanguagesRestlet
 
Establishing SOA Focused Enterprise Architecture
Establishing SOA Focused Enterprise ArchitectureEstablishing SOA Focused Enterprise Architecture
Establishing SOA Focused Enterprise ArchitectureChris Haddad
 
apidays LIVE Paris 2021 - Lessons from the API Stewardship Journey in Azure b...
apidays LIVE Paris 2021 - Lessons from the API Stewardship Journey in Azure b...apidays LIVE Paris 2021 - Lessons from the API Stewardship Journey in Azure b...
apidays LIVE Paris 2021 - Lessons from the API Stewardship Journey in Azure b...apidays
 
2016 06 - design your api management strategy - axway - Api Management
2016 06 - design your api management strategy - axway - Api Management2016 06 - design your api management strategy - axway - Api Management
2016 06 - design your api management strategy - axway - Api ManagementSmartWave
 
APIs Design - Creation - Management.pdf
APIs Design - Creation - Management.pdfAPIs Design - Creation - Management.pdf
APIs Design - Creation - Management.pdfWilliamELKAIMPhd
 
The Role of Data Virtualization in an API Economy
The Role of Data Virtualization in an API EconomyThe Role of Data Virtualization in an API Economy
The Role of Data Virtualization in an API EconomyDenodo
 
Rez gateway - RezOS - innovate the future
Rez gateway - RezOS - innovate the futureRez gateway - RezOS - innovate the future
Rez gateway - RezOS - innovate the futureindikaMaligaspe
 
Rez gateway (RezOS) innovate the future
Rez gateway (RezOS) innovate the futureRez gateway (RezOS) innovate the future
Rez gateway (RezOS) innovate the futureindikaMaligaspe
 
Extend soa with api management Sangam18
Extend soa with api management Sangam18Extend soa with api management Sangam18
Extend soa with api management Sangam18Vinay Kumar
 
Modernizing an Existing SOA-based Architecture with APIs
Modernizing an Existing SOA-based Architecture with APIsModernizing an Existing SOA-based Architecture with APIs
Modernizing an Existing SOA-based Architecture with APIsApigee | Google Cloud
 
Presentation at the 2016 Linux Foundation Collab Summit
Presentation at the 2016 Linux Foundation Collab SummitPresentation at the 2016 Linux Foundation Collab Summit
Presentation at the 2016 Linux Foundation Collab SummitOpen API Initiative (OAI)
 
API’s and Micro Services 0.5
API’s and Micro Services 0.5API’s and Micro Services 0.5
API’s and Micro Services 0.5Richard Hudson
 
Apply API Governance to RESTful Service APIs using WSO2 Governance Registry a...
Apply API Governance to RESTful Service APIs using WSO2 Governance Registry a...Apply API Governance to RESTful Service APIs using WSO2 Governance Registry a...
Apply API Governance to RESTful Service APIs using WSO2 Governance Registry a...WSO2
 
Lynx Webinar #3: Lynx Services Platform (LySP) - Part 1 - Overview
Lynx Webinar #3: Lynx Services Platform (LySP) - Part 1 - OverviewLynx Webinar #3: Lynx Services Platform (LySP) - Part 1 - Overview
Lynx Webinar #3: Lynx Services Platform (LySP) - Part 1 - OverviewLynx Project
 
MuleSoft London Community October 2017 - Hybrid and SAP Integration
MuleSoft London Community October 2017 - Hybrid and SAP IntegrationMuleSoft London Community October 2017 - Hybrid and SAP Integration
MuleSoft London Community October 2017 - Hybrid and SAP IntegrationPace Integration
 
How to build an API strategy - Dorian Rougierx.
How to build an API strategy - Dorian Rougierx. How to build an API strategy - Dorian Rougierx.
How to build an API strategy - Dorian Rougierx.SmartWave
 
Répondre aux défis de la gestion des factures fournisseurs
Répondre aux défis de la gestion des factures fournisseursRépondre aux défis de la gestion des factures fournisseurs
Répondre aux défis de la gestion des factures fournisseursSmartWave
 

More Related Content

Similar to APIs: Impact of APIs on Integration

Service Oriented Architectures (SOA) Monitoring and Management with HP OpenVi...
Service Oriented Architectures (SOA) Monitoring and Management with HP OpenVi...Service Oriented Architectures (SOA) Monitoring and Management with HP OpenVi...
Service Oriented Architectures (SOA) Monitoring and Management with HP OpenVi...Stefan Bergstein
 
[WSO2 Integration Summit London 2019] An API-enabled Journey Towards Empoweri...
[WSO2 Integration Summit London 2019] An API-enabled Journey Towards Empoweri...[WSO2 Integration Summit London 2019] An API-enabled Journey Towards Empoweri...
[WSO2 Integration Summit London 2019] An API-enabled Journey Towards Empoweri...WSO2
 
How to Manage APIs in your Enterprise for Maximum Reusability and Governance
How to Manage APIs in your Enterprise for Maximum Reusability and GovernanceHow to Manage APIs in your Enterprise for Maximum Reusability and Governance
How to Manage APIs in your Enterprise for Maximum Reusability and GovernanceHARMAN Services
 
Role of Rest vs. Web Services and EI
Role of Rest vs. Web Services and EIRole of Rest vs. Web Services and EI
Role of Rest vs. Web Services and EIWSO2
 
How to Manage APIs in your Enterprise for Maximum Reusability and Governance
How to Manage APIs in your Enterprise for Maximum Reusability and GovernanceHow to Manage APIs in your Enterprise for Maximum Reusability and Governance
How to Manage APIs in your Enterprise for Maximum Reusability and GovernanceWSO2
 
APIdays 2016 - The State of Web API Languages
APIdays 2016 - The State of Web API LanguagesAPIdays 2016 - The State of Web API Languages
APIdays 2016 - The State of Web API LanguagesRestlet
 
Establishing SOA Focused Enterprise Architecture
Establishing SOA Focused Enterprise ArchitectureEstablishing SOA Focused Enterprise Architecture
Establishing SOA Focused Enterprise ArchitectureChris Haddad
 
apidays LIVE Paris 2021 - Lessons from the API Stewardship Journey in Azure b...
apidays LIVE Paris 2021 - Lessons from the API Stewardship Journey in Azure b...apidays LIVE Paris 2021 - Lessons from the API Stewardship Journey in Azure b...
apidays LIVE Paris 2021 - Lessons from the API Stewardship Journey in Azure b...apidays
 
2016 06 - design your api management strategy - axway - Api Management
2016 06 - design your api management strategy - axway - Api Management2016 06 - design your api management strategy - axway - Api Management
2016 06 - design your api management strategy - axway - Api ManagementSmartWave
 
APIs Design - Creation - Management.pdf
APIs Design - Creation - Management.pdfAPIs Design - Creation - Management.pdf
APIs Design - Creation - Management.pdfWilliamELKAIMPhd
 
The Role of Data Virtualization in an API Economy
The Role of Data Virtualization in an API EconomyThe Role of Data Virtualization in an API Economy
The Role of Data Virtualization in an API EconomyDenodo
 
Rez gateway - RezOS - innovate the future
Rez gateway - RezOS - innovate the futureRez gateway - RezOS - innovate the future
Rez gateway - RezOS - innovate the futureindikaMaligaspe
 
Rez gateway (RezOS) innovate the future
Rez gateway (RezOS) innovate the futureRez gateway (RezOS) innovate the future
Rez gateway (RezOS) innovate the futureindikaMaligaspe
 
Extend soa with api management Sangam18
Extend soa with api management Sangam18Extend soa with api management Sangam18
Extend soa with api management Sangam18Vinay Kumar
 
Modernizing an Existing SOA-based Architecture with APIs
Modernizing an Existing SOA-based Architecture with APIsModernizing an Existing SOA-based Architecture with APIs
Modernizing an Existing SOA-based Architecture with APIsApigee | Google Cloud
 
Presentation at the 2016 Linux Foundation Collab Summit
Presentation at the 2016 Linux Foundation Collab SummitPresentation at the 2016 Linux Foundation Collab Summit
Presentation at the 2016 Linux Foundation Collab SummitOpen API Initiative (OAI)
 
API’s and Micro Services 0.5
API’s and Micro Services 0.5API’s and Micro Services 0.5
API’s and Micro Services 0.5Richard Hudson
 
Apply API Governance to RESTful Service APIs using WSO2 Governance Registry a...
Apply API Governance to RESTful Service APIs using WSO2 Governance Registry a...Apply API Governance to RESTful Service APIs using WSO2 Governance Registry a...
Apply API Governance to RESTful Service APIs using WSO2 Governance Registry a...WSO2
 
Lynx Webinar #3: Lynx Services Platform (LySP) - Part 1 - Overview
Lynx Webinar #3: Lynx Services Platform (LySP) - Part 1 - OverviewLynx Webinar #3: Lynx Services Platform (LySP) - Part 1 - Overview
Lynx Webinar #3: Lynx Services Platform (LySP) - Part 1 - OverviewLynx Project
 
MuleSoft London Community October 2017 - Hybrid and SAP Integration
MuleSoft London Community October 2017 - Hybrid and SAP IntegrationMuleSoft London Community October 2017 - Hybrid and SAP Integration
MuleSoft London Community October 2017 - Hybrid and SAP IntegrationPace Integration
 

Similar to APIs: Impact of APIs on Integration (20)

Service Oriented Architectures (SOA) Monitoring and Management with HP OpenVi...
Service Oriented Architectures (SOA) Monitoring and Management with HP OpenVi...Service Oriented Architectures (SOA) Monitoring and Management with HP OpenVi...
Service Oriented Architectures (SOA) Monitoring and Management with HP OpenVi...
 
[WSO2 Integration Summit London 2019] An API-enabled Journey Towards Empoweri...
[WSO2 Integration Summit London 2019] An API-enabled Journey Towards Empoweri...[WSO2 Integration Summit London 2019] An API-enabled Journey Towards Empoweri...
[WSO2 Integration Summit London 2019] An API-enabled Journey Towards Empoweri...
 
How to Manage APIs in your Enterprise for Maximum Reusability and Governance
How to Manage APIs in your Enterprise for Maximum Reusability and GovernanceHow to Manage APIs in your Enterprise for Maximum Reusability and Governance
How to Manage APIs in your Enterprise for Maximum Reusability and Governance
 
Role of Rest vs. Web Services and EI
Role of Rest vs. Web Services and EIRole of Rest vs. Web Services and EI
Role of Rest vs. Web Services and EI
 
How to Manage APIs in your Enterprise for Maximum Reusability and Governance
How to Manage APIs in your Enterprise for Maximum Reusability and GovernanceHow to Manage APIs in your Enterprise for Maximum Reusability and Governance
How to Manage APIs in your Enterprise for Maximum Reusability and Governance
 
APIdays 2016 - The State of Web API Languages
APIdays 2016 - The State of Web API LanguagesAPIdays 2016 - The State of Web API Languages
APIdays 2016 - The State of Web API Languages
 
Establishing SOA Focused Enterprise Architecture
Establishing SOA Focused Enterprise ArchitectureEstablishing SOA Focused Enterprise Architecture
Establishing SOA Focused Enterprise Architecture
 
apidays LIVE Paris 2021 - Lessons from the API Stewardship Journey in Azure b...
apidays LIVE Paris 2021 - Lessons from the API Stewardship Journey in Azure b...apidays LIVE Paris 2021 - Lessons from the API Stewardship Journey in Azure b...
apidays LIVE Paris 2021 - Lessons from the API Stewardship Journey in Azure b...
 
2016 06 - design your api management strategy - axway - Api Management
2016 06 - design your api management strategy - axway - Api Management2016 06 - design your api management strategy - axway - Api Management
2016 06 - design your api management strategy - axway - Api Management
 
APIs Design - Creation - Management.pdf
APIs Design - Creation - Management.pdfAPIs Design - Creation - Management.pdf
APIs Design - Creation - Management.pdf
 
The Role of Data Virtualization in an API Economy
The Role of Data Virtualization in an API EconomyThe Role of Data Virtualization in an API Economy
The Role of Data Virtualization in an API Economy
 
Rez gateway - RezOS - innovate the future
Rez gateway - RezOS - innovate the futureRez gateway - RezOS - innovate the future
Rez gateway - RezOS - innovate the future
 
Rez gateway (RezOS) innovate the future
Rez gateway (RezOS) innovate the futureRez gateway (RezOS) innovate the future
Rez gateway (RezOS) innovate the future
 
Extend soa with api management Sangam18
Extend soa with api management Sangam18Extend soa with api management Sangam18
Extend soa with api management Sangam18
 
Modernizing an Existing SOA-based Architecture with APIs
Modernizing an Existing SOA-based Architecture with APIsModernizing an Existing SOA-based Architecture with APIs
Modernizing an Existing SOA-based Architecture with APIs
 
Presentation at the 2016 Linux Foundation Collab Summit
Presentation at the 2016 Linux Foundation Collab SummitPresentation at the 2016 Linux Foundation Collab Summit
Presentation at the 2016 Linux Foundation Collab Summit
 
API’s and Micro Services 0.5
API’s and Micro Services 0.5API’s and Micro Services 0.5
API’s and Micro Services 0.5
 
Apply API Governance to RESTful Service APIs using WSO2 Governance Registry a...
Apply API Governance to RESTful Service APIs using WSO2 Governance Registry a...Apply API Governance to RESTful Service APIs using WSO2 Governance Registry a...
Apply API Governance to RESTful Service APIs using WSO2 Governance Registry a...
 
Lynx Webinar #3: Lynx Services Platform (LySP) - Part 1 - Overview
Lynx Webinar #3: Lynx Services Platform (LySP) - Part 1 - OverviewLynx Webinar #3: Lynx Services Platform (LySP) - Part 1 - Overview
Lynx Webinar #3: Lynx Services Platform (LySP) - Part 1 - Overview
 
MuleSoft London Community October 2017 - Hybrid and SAP Integration
MuleSoft London Community October 2017 - Hybrid and SAP IntegrationMuleSoft London Community October 2017 - Hybrid and SAP Integration
MuleSoft London Community October 2017 - Hybrid and SAP Integration
 

More from SmartWave

How to build an API strategy - Dorian Rougierx.
How to build an API strategy - Dorian Rougierx. How to build an API strategy - Dorian Rougierx.
How to build an API strategy - Dorian Rougierx.SmartWave
 
Répondre aux défis de la gestion des factures fournisseurs
Répondre aux défis de la gestion des factures fournisseursRépondre aux défis de la gestion des factures fournisseurs
Répondre aux défis de la gestion des factures fournisseursSmartWave
 
SmartTechTalk : Asynchronous messaging
SmartTechTalk : Asynchronous messagingSmartTechTalk : Asynchronous messaging
SmartTechTalk : Asynchronous messagingSmartWave
 
Data Virtualisation and API Management United
Data Virtualisation and API Management UnitedData Virtualisation and API Management United
Data Virtualisation and API Management UnitedSmartWave
 
Data Agility and Security with Data Virtualisation
Data Agility and Security with Data VirtualisationData Agility and Security with Data Virtualisation
Data Agility and Security with Data VirtualisationSmartWave
 
API Program Lessons learned
API Program Lessons learnedAPI Program Lessons learned
API Program Lessons learnedSmartWave
 
Customer testimonal API Program Lessons learned
Customer testimonal API Program Lessons learnedCustomer testimonal API Program Lessons learned
Customer testimonal API Program Lessons learnedSmartWave
 
API Management Microservices beyond HIP
API Management Microservices beyond HIPAPI Management Microservices beyond HIP
API Management Microservices beyond HIPSmartWave
 
How does an API management strategy support your digital transformation?
How does an API management strategy support your digital transformation?How does an API management strategy support your digital transformation?
How does an API management strategy support your digital transformation?SmartWave
 
Monitoring docker, k8s and your applications with the elastic stack
Monitoring docker, k8s and your applications with the elastic stackMonitoring docker, k8s and your applications with the elastic stack
Monitoring docker, k8s and your applications with the elastic stackSmartWave
 
The elastic stack on docker
The elastic stack on dockerThe elastic stack on docker
The elastic stack on dockerSmartWave
 
Gestion des logs de vos containers avec elastic !
Gestion des logs de vos containers avec elastic !Gestion des logs de vos containers avec elastic !
Gestion des logs de vos containers avec elastic !SmartWave
 
How api management supports the digital transformation process
How api management supports the digital transformation processHow api management supports the digital transformation process
How api management supports the digital transformation processSmartWave
 
Docker Geneva Meetup - Jelastic
Docker Geneva Meetup - JelasticDocker Geneva Meetup - Jelastic
Docker Geneva Meetup - JelasticSmartWave
 
Docker Geneva Meetup - Swarm
Docker Geneva Meetup - SwarmDocker Geneva Meetup - Swarm
Docker Geneva Meetup - SwarmSmartWave
 
Docker Geneva Meetup - Kubernetes
Docker Geneva Meetup - KubernetesDocker Geneva Meetup - Kubernetes
Docker Geneva Meetup - KubernetesSmartWave
 
Dématérialisation du traitement des factures
Dématérialisation du traitement des facturesDématérialisation du traitement des factures
Dématérialisation du traitement des facturesSmartWave
 
Axway amplify api management platform
Axway amplify api management platformAxway amplify api management platform
Axway amplify api management platformSmartWave
 
Api gateway @ vaudoise assurances
Api gateway @ vaudoise assurancesApi gateway @ vaudoise assurances
Api gateway @ vaudoise assurancesSmartWave
 

More from SmartWave (20)

How to build an API strategy - Dorian Rougierx.
How to build an API strategy - Dorian Rougierx. How to build an API strategy - Dorian Rougierx.
How to build an API strategy - Dorian Rougierx.
 
Répondre aux défis de la gestion des factures fournisseurs
Répondre aux défis de la gestion des factures fournisseursRépondre aux défis de la gestion des factures fournisseurs
Répondre aux défis de la gestion des factures fournisseurs
 
SmartTechTalk : Asynchronous messaging
SmartTechTalk : Asynchronous messagingSmartTechTalk : Asynchronous messaging
SmartTechTalk : Asynchronous messaging
 
Data Virtualisation and API Management United
Data Virtualisation and API Management UnitedData Virtualisation and API Management United
Data Virtualisation and API Management United
 
Data Agility and Security with Data Virtualisation
Data Agility and Security with Data VirtualisationData Agility and Security with Data Virtualisation
Data Agility and Security with Data Virtualisation
 
API Program Lessons learned
API Program Lessons learnedAPI Program Lessons learned
API Program Lessons learned
 
Customer testimonal API Program Lessons learned
Customer testimonal API Program Lessons learnedCustomer testimonal API Program Lessons learned
Customer testimonal API Program Lessons learned
 
API Management Microservices beyond HIP
API Management Microservices beyond HIPAPI Management Microservices beyond HIP
API Management Microservices beyond HIP
 
How does an API management strategy support your digital transformation?
How does an API management strategy support your digital transformation?How does an API management strategy support your digital transformation?
How does an API management strategy support your digital transformation?
 
Monitoring docker, k8s and your applications with the elastic stack
Monitoring docker, k8s and your applications with the elastic stackMonitoring docker, k8s and your applications with the elastic stack
Monitoring docker, k8s and your applications with the elastic stack
 
The elastic stack on docker
The elastic stack on dockerThe elastic stack on docker
The elastic stack on docker
 
Gestion des logs de vos containers avec elastic !
Gestion des logs de vos containers avec elastic !Gestion des logs de vos containers avec elastic !
Gestion des logs de vos containers avec elastic !
 
API Trends
API TrendsAPI Trends
API Trends
 
How api management supports the digital transformation process
How api management supports the digital transformation processHow api management supports the digital transformation process
How api management supports the digital transformation process
 
Docker Geneva Meetup - Jelastic
Docker Geneva Meetup - JelasticDocker Geneva Meetup - Jelastic
Docker Geneva Meetup - Jelastic
 
Docker Geneva Meetup - Swarm
Docker Geneva Meetup - SwarmDocker Geneva Meetup - Swarm
Docker Geneva Meetup - Swarm
 
Docker Geneva Meetup - Kubernetes
Docker Geneva Meetup - KubernetesDocker Geneva Meetup - Kubernetes
Docker Geneva Meetup - Kubernetes
 
Dématérialisation du traitement des factures
Dématérialisation du traitement des facturesDématérialisation du traitement des factures
Dématérialisation du traitement des factures
 
Axway amplify api management platform
Axway amplify api management platformAxway amplify api management platform
Axway amplify api management platform
 
Api gateway @ vaudoise assurances
Api gateway @ vaudoise assurancesApi gateway @ vaudoise assurances
Api gateway @ vaudoise assurances
 

Recently uploaded

Dealing with Cultural Dispersion — Stefano Lambiase — ICSE-SEIS 2024
Dealing with Cultural Dispersion — Stefano Lambiase — ICSE-SEIS 2024Dealing with Cultural Dispersion — Stefano Lambiase — ICSE-SEIS 2024
Dealing with Cultural Dispersion — Stefano Lambiase — ICSE-SEIS 2024StefanoLambiase
 
BATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASE
BATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASEBATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASE
BATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASEOrtus Solutions, Corp
 
Intelligent Home Wi-Fi Solutions | ThinkPalm
Intelligent Home Wi-Fi Solutions | ThinkPalmIntelligent Home Wi-Fi Solutions | ThinkPalm
Intelligent Home Wi-Fi Solutions | ThinkPalmSujith Sukumaran
 
Salesforce Certified Field Service Consultant
Salesforce Certified Field Service ConsultantSalesforce Certified Field Service Consultant
Salesforce Certified Field Service ConsultantAxelRicardoTrocheRiq
 
Cloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStackCloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStackVICTOR MAESTRE RAMIREZ
 
Professional Resume Template for Software Developers
Professional Resume Template for Software DevelopersProfessional Resume Template for Software Developers
Professional Resume Template for Software DevelopersVinodh Ram
 
Unveiling Design Patterns: A Visual Guide with UML Diagrams
Unveiling Design Patterns: A Visual Guide with UML DiagramsUnveiling Design Patterns: A Visual Guide with UML Diagrams
Unveiling Design Patterns: A Visual Guide with UML DiagramsAhmed Mohamed
 
React Server Component in Next.js by Hanief Utama
React Server Component in Next.js by Hanief UtamaReact Server Component in Next.js by Hanief Utama
React Server Component in Next.js by Hanief UtamaHanief Utama
 
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptxKnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptxTier1 app
 
Adobe Marketo Engage Deep Dives: Using Webhooks to Transfer Data
Adobe Marketo Engage Deep Dives: Using Webhooks to Transfer DataAdobe Marketo Engage Deep Dives: Using Webhooks to Transfer Data
Adobe Marketo Engage Deep Dives: Using Webhooks to Transfer DataBradBedford3
 
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...gurkirankumar98700
 
Try MyIntelliAccount Cloud Accounting Software As A Service Solution Risk Fre...
Try MyIntelliAccount Cloud Accounting Software As A Service Solution Risk Fre...Try MyIntelliAccount Cloud Accounting Software As A Service Solution Risk Fre...
Try MyIntelliAccount Cloud Accounting Software As A Service Solution Risk Fre...MyIntelliSource, Inc.
 
software engineering Chapter 5 System modeling.pptx
software engineering Chapter 5 System modeling.pptxsoftware engineering Chapter 5 System modeling.pptx
software engineering Chapter 5 System modeling.pptxnada99848
 
Asset Management Software - Infographic
Asset Management Software - InfographicAsset Management Software - Infographic
Asset Management Software - InfographicHr365.us smith
 
The Evolution of Karaoke From Analog to App.pdf
The Evolution of Karaoke From Analog to App.pdfThe Evolution of Karaoke From Analog to App.pdf
The Evolution of Karaoke From Analog to App.pdfPower Karaoke
 
Cloud Data Center Network Construction - IEEE
Cloud Data Center Network Construction - IEEECloud Data Center Network Construction - IEEE
Cloud Data Center Network Construction - IEEEVICTOR MAESTRE RAMIREZ
 
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed DataAlluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed DataAlluxio, Inc.
 
GOING AOT WITH GRAALVM – DEVOXX GREECE.pdf
GOING AOT WITH GRAALVM – DEVOXX GREECE.pdfGOING AOT WITH GRAALVM – DEVOXX GREECE.pdf
GOING AOT WITH GRAALVM – DEVOXX GREECE.pdfAlina Yurenko
 
Automate your Kamailio Test Calls - Kamailio World 2024
Automate your Kamailio Test Calls - Kamailio World 2024Automate your Kamailio Test Calls - Kamailio World 2024
Automate your Kamailio Test Calls - Kamailio World 2024Andreas Granig
 

Recently uploaded (20)

Dealing with Cultural Dispersion — Stefano Lambiase — ICSE-SEIS 2024
Dealing with Cultural Dispersion — Stefano Lambiase — ICSE-SEIS 2024Dealing with Cultural Dispersion — Stefano Lambiase — ICSE-SEIS 2024
Dealing with Cultural Dispersion — Stefano Lambiase — ICSE-SEIS 2024
 
BATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASE
BATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASEBATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASE
BATTLEFIELD ORM: TIPS, TACTICS AND STRATEGIES FOR CONQUERING YOUR DATABASE
 
Intelligent Home Wi-Fi Solutions | ThinkPalm
Intelligent Home Wi-Fi Solutions | ThinkPalmIntelligent Home Wi-Fi Solutions | ThinkPalm
Intelligent Home Wi-Fi Solutions | ThinkPalm
 
Salesforce Certified Field Service Consultant
Salesforce Certified Field Service ConsultantSalesforce Certified Field Service Consultant
Salesforce Certified Field Service Consultant
 
Cloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStackCloud Management Software Platforms: OpenStack
Cloud Management Software Platforms: OpenStack
 
Professional Resume Template for Software Developers
Professional Resume Template for Software DevelopersProfessional Resume Template for Software Developers
Professional Resume Template for Software Developers
 
Unveiling Design Patterns: A Visual Guide with UML Diagrams
Unveiling Design Patterns: A Visual Guide with UML DiagramsUnveiling Design Patterns: A Visual Guide with UML Diagrams
Unveiling Design Patterns: A Visual Guide with UML Diagrams
 
React Server Component in Next.js by Hanief Utama
React Server Component in Next.js by Hanief UtamaReact Server Component in Next.js by Hanief Utama
React Server Component in Next.js by Hanief Utama
 
Hot Sexy call girls in Patel Nagar🔝 9953056974 🔝 escort Service
Hot Sexy call girls in Patel Nagar🔝 9953056974 🔝 escort ServiceHot Sexy call girls in Patel Nagar🔝 9953056974 🔝 escort Service
Hot Sexy call girls in Patel Nagar🔝 9953056974 🔝 escort Service
 
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptxKnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
KnowAPIs-UnknownPerf-jaxMainz-2024 (1).pptx
 
Adobe Marketo Engage Deep Dives: Using Webhooks to Transfer Data
Adobe Marketo Engage Deep Dives: Using Webhooks to Transfer DataAdobe Marketo Engage Deep Dives: Using Webhooks to Transfer Data
Adobe Marketo Engage Deep Dives: Using Webhooks to Transfer Data
 
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...
 
Try MyIntelliAccount Cloud Accounting Software As A Service Solution Risk Fre...
Try MyIntelliAccount Cloud Accounting Software As A Service Solution Risk Fre...Try MyIntelliAccount Cloud Accounting Software As A Service Solution Risk Fre...
Try MyIntelliAccount Cloud Accounting Software As A Service Solution Risk Fre...
 
software engineering Chapter 5 System modeling.pptx
software engineering Chapter 5 System modeling.pptxsoftware engineering Chapter 5 System modeling.pptx
software engineering Chapter 5 System modeling.pptx
 
Asset Management Software - Infographic
Asset Management Software - InfographicAsset Management Software - Infographic
Asset Management Software - Infographic
 
The Evolution of Karaoke From Analog to App.pdf
The Evolution of Karaoke From Analog to App.pdfThe Evolution of Karaoke From Analog to App.pdf
The Evolution of Karaoke From Analog to App.pdf
 
Cloud Data Center Network Construction - IEEE
Cloud Data Center Network Construction - IEEECloud Data Center Network Construction - IEEE
Cloud Data Center Network Construction - IEEE
 
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed DataAlluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data
 
GOING AOT WITH GRAALVM – DEVOXX GREECE.pdf
GOING AOT WITH GRAALVM – DEVOXX GREECE.pdfGOING AOT WITH GRAALVM – DEVOXX GREECE.pdf
GOING AOT WITH GRAALVM – DEVOXX GREECE.pdf
 
Automate your Kamailio Test Calls - Kamailio World 2024
Automate your Kamailio Test Calls - Kamailio World 2024Automate your Kamailio Test Calls - Kamailio World 2024
Automate your Kamailio Test Calls - Kamailio World 2024
 

APIs: Impact of APIs on Integration

  • 1. Yann LE BLEVEC, SmartWave June, 10th 2015 API Day, Lausanne IMPACT OF APIs ON INTEGRATION Nothing is lost, nothing is created, everything is transformed
  • 2. June 2015 API Day, Lausanne 2 AGENDA •  SOA IS DEAD, LONG LIVE TO SOA! –  Trends, success stories, SOA & [W,R]OA, microservices •  REST IS SIMPLE, ISN’T IT? –  Design principles, resources, granularity, HATEOS, RMM •  SECURITY REVISITED –  Empowerment, adoption, standards •  EVOLVING NEEDS, EVOLVING PLATFORMS –  Editors, key buildings blocks, B2D
  • 3. June 2015 API Day, Lausanne 3 SOA IS DEAD, LONG LIVE TO SOA! Trends, success stories, SOA & [W,R]OA, microservices
  • 4. June 2015 API Day, Lausanne 4 SOA MUST BE DEAD •  No longer a buzzword for editors and analysts •  Use of SOAP, WS-* standards is decreasing •  ESB are seen as too complex •  Governance sounds frightening •  Even SOA Software has changed its brand to Akama BUT…
  • 5. June 2015 API Day, Lausanne 5 EXPLOSION OF APIs
  • 6. June 2015 API Day, Lausanne 6 PROVIDERS HEAVILY RELY ON SERVICES WHO? •  Amazon, Twitter, Netflix… " WHY? •  Scale with load •  Remain agile •  Keep pace of innovation
  • 7. June 2015 API Day, Lausanne 7 MICROSERVICE IS THE NEW HYPE •  Limitations of monolithic applications –  Code base grow substantially more complex –  Difficult to scale individual portions of the application –  Engineering team structure mirror the application architecture •  Implement autonomous building blocks –  Contain everything from the OS, platform, framework, runtime, and dependencies, packaged as one unit of execution
  • 8. June 2015 API Day, Lausanne 8 SOA DESIGN PRINCIPLES STILL VALID •  Standardized Contract •  Loose Coupling •  Abstraction •  Reusability •  Autonomy •  Statelessness •  Discoverability •  Composability
  • 9. •  REST architecture provides a medium by which service- oriented architecture can be implemented June 2015 API Day, Lausanne 9 REST TO THE RESCUE
  • 10. June 2015 API Day, Lausanne 10 REST IS SIMPLE, ISN’T IT? Design principles, resources, granularity, HATEOS, RMM
  • 11. June 2015 API Day, Lausanne 11 REST DESIGN PRINCIPLES CONSTRAINTS •  Client-Server •  Stateless •  Cache •  Interface/Uniform Contract •  Layered System •  Code-on-Demand GOALS •  Performance •  Scalability •  Simplicity •  Modifiability •  Visibility •  Portability •  Reliability
  • 12. June 2015 API Day, Lausanne 12 UNIFORM CONTRACT resource identifier syntax (e.g. URL) methods (e.g. HTTP) media types (e.g. IANA registry)
  • 13. June 2015 API Day, Lausanne 13 DEALING WITH GRANULARITY ENTITY •  Relate to noun •  May contain sub-resources •  Map CRUD to HTTP method 1.  Single Customer resource with large structure containing Address 2.  Root Customer resource with Address sub-resource TASK •  Relate to verb •  Provide business context (intent) •  Define a state •  May implement composition logic 1.  Single ChangeOfAddress resource containing new address •  Design matters –  Chatty protocol, location of composition logic, information needed for updating
  • 14. June 2015 API Day, Lausanne 14 IMPORTANCE OF HATEOAS Hypermedia as the Engine of Application State
  • 15. June 2015 API Day, Lausanne 15 RESTFUL MATURITY MODEL
  • 16. June 2015 API Day, Lausanne 16 SECURITY REVISITED Empowerment, adoption, standards
  • 17. June 2015 API Day, Lausanne 17 SECURITY CONTEXT IS CHANGING •  New challenges –  Users manage authorizations and keep their password secure –  Developers register applications against APIs –  Lower constraint on API consumers •  New technologies –  REST replacing SOAP –  JSON replacing XML •  New standards –  Emerging standards with various maturity level –  Do not meet all historic requirements
  • 18. June 2015 API Day, Lausanne 18 SECURITY FOR WEB SERVICES •  Securing Web Services is doable –  XML Encryption/Signature: provide crypto. foundation –  WS-Security: define security within SOAP messages –  SAML: transport assertions –  WS-Trust: retrieve token from central service (STS) –  WS-Policy: advertise expectations •  But rarely done –  Too complex to understand/maintain –  Impact service performance –  Suffer from interoperability issues
  • 19. June 2015 API Day, Lausanne 19 SECURITY FOR RESTFUL APIs •  Adoption is the key –  Always rely on transport protocol (HTTPS) for integrity and confidentiality –  May use HTTP header for authentication –  Commonly implement OAuth for authorization –  Often use OpenID Connect for authentication –  Rarely require cryptographic capabilities on consumer side
  • 20. June 2015 API Day, Lausanne 20 OAUTH 2.0 WEB FLOW
  • 21. June 2015 API Day, Lausanne 21 CURRENT ISSUES •  Various maturity of standards for JSON (JOSE) –  JSON Web Token (JWT) –  JSON Web Signature (JWS) –  JSON Web Encryption (JWE) •  Not “out-of-the-box” requirements –  Couple access tokens with message content –  Apply cryptographic operation to partially message content –  Support “end-to-end” requirements (integrity, confidentiality)
  • 22. June 2015 API Day, Lausanne 22 EVOLVING NEEDS, EVOLVING PLATFORMS Editors, key buildings blocks, B2D
  • 23. June 2015 API Day, Lausanne 23 DRIVERS FOR APIs •  Build a broad open web community with simple and free REST APIs •  Support mobile app development with REST APIs •  Facilitate internal use of SOAP APIs and REST APIs for an enterprise services strategy •  Act as an API service provider that charges for API access •  Build a B2B community around mission-critical APIs
  • 24. June 2015 API Day, Lausanne 24 SOLUTIONS FOR API MANAGEMENT
  • 25. June 2015 API Day, Lausanne 25 KEY CHARACTERISTICS MARKET •  Topic covered by mega vendors •  Strong presence of historic integration actors •  New players appear mostly cloud based COMPONENTS •  Runtime for exposing APIs with mediation capabilities •  Analytics for insights about APIs usage •  Monetization of published APIs •  Design time components for developer community (B2D)
  • 26. June 2015 API Day, Lausanne AXWAY API SOLUTIONS 26
  • 27. June 2015 API Day, Lausanne WSO2 API SOLUTIONS 27
  • 28. June 2015 API Day, Lausanne 28 API MANAGEMENT VS MBAAS Mobile Backend as a Service
  • 29. June 2015 API Day, Lausanne 29 CONCLUSION
  • 30. June 2015 API Day, Lausanne 30 KEY TAKEAWAYS •  Forget about the name not the principles •  REST can bring much but design matters •  Security is challenging out of main stream •  Platform may support your strategy
  • 31. June 2014 WSO2CON - Glue SaaS using WSO2 31 YANN LE BLEVEC, PHD! Head of Integration   yleblevec@smartwavesa.com @yleblevec SMARTWAVE SA! Switzerland http://www.smartwavesa.com THANK YOU
  • 32. June 2015 API Day, Lausanne 32 APPENDIX
  • 33. June 2015 API Day, Lausanne 33 XML VS JSON
  • 34. June 2015 API Day, Lausanne 34
  • 35. June 2015 API Day, Lausanne 35
  • 36. June 2015 API Day, Lausanne 36
  • 37. June 2015 API Day, Lausanne 37
  • 38. June 2015 API Day, Lausanne 38 SOA GOALS – 1/2 •  Increased Intrinsic Interoperability –  Services within a given boundary are designed to be naturally compatible so they can be effectively assembled and reconfigured in response to changing business requirements •  Increased Federation –  Services establish a standardized contract layer that is federated, enabling it to hide underlying disparity that allows services to be individually governed and evolved •  Increased Vendor Diversification Options –  A service-oriented environment is based on a vendor-neutral architectural model, allowing the organization to evolve the architecture in tandem with the business without being limited to proprietary vendor platform characteristics •  Increased Business and Technology Alignment –  Some services are designed with a business-centric functional context, allowing them to mirror and evolve with the business of the organization
  • 39. June 2015 API Day, Lausanne 39 SOA GOALS – 2/2 •  Increased ROI –  Most services are delivered and viewed as IT assets that are expected to provide repeated value that surpasses the cost of delivery and ownership •  Increased Organizational Agility –  New and changing business requirements can be fulfilled more rapidly by establishing an environment in which solutions can be assembled or augmented with reduced effort by leveraging the reusability and native interoperability of existing services •  Reduced IT Burden –  The enterprise as a whole is streamlined as a result of the previously described goals and benefits, allowing IT itself to better support the organization by providing more value with less cost and less overall burden.
  • 40. June 2015 API Day, Lausanne 40 SOA DESIGN PRINCIPLES – 1/2 •  Standardized Service Contract –  Services within the same service inventory are in compliance with the same contract design standards •  Service Loose Coupling –  Service contracts impose low consumer coupling requirements and are themselves decoupled from their surrounding environments •  Service Abstraction –  Services contracts only contain essential information and information about services is limited to what is published in the service contracts •  Service Reusability –  Services contain and express agnostic logic and can be positioned as reusable enterprise resources
  • 41. June 2015 API Day, Lausanne 41 SOA DESIGN PRINCIPLES – 2/2 •  Service Autonomy –  Services exercise a high level of control over their underlying runtime execution environment •  Service Statelessness –  Service minimize resource consumption by deferring the management of state information when necessary •  Service Discoverability –  Service are supplemented with communicative meta data by which they can be effectively discovered and interpreted •  Service Composability –  Services are effective composition participants regardless of the sire and complexity of the composition
  • 42. June 2015 API Day, Lausanne 42 GARTNER Magic Quadrant for Application Services Governance
  • 43. June 2015 API Day, Lausanne ORACLE API SOLUTIONS 43
  • 44. June 2015 API Day, Lausanne 44 SUCCESSFUL PROVIDERS RELY ON SOC TWITTER
  • 45. June 2015 API Day, Lausanne 45 TWITTER
  • 46. June 2015 API Day, Lausanne 46 FORRESTER EVALUATION