apidays, profile picture
Uploaded byapidays
PDF, PPTX213 views

apidays LIVE Jakarta - API Sandbox: empowering Developer Experience (DX) by Faisal Banaeamah, Solutions by STC

The document discusses API sandboxes and their role in empowering developer experience. It outlines the developer journey and how sandboxes fit in by providing an isolated testing environment. Two common design patterns for sandboxes are described: cloning resources or using API mocks. The patterns each have strengths and challenges. The document recommends choosing a pattern based on factors like use case, budget, and API strategy. Overall, sandboxes are said to improve developer experience, expand API reach and growth, and increase revenue.

Embed presentation

Download as PDF, PPTX
1 Faisal Mohammed Banaeamah – ‫محمد‬ ‫فيصل‬ ‫باناعمة‬ Just an Architect, Solutions by STC banaeamah@gmail.com; fbanaeamah@solutions.com.sa February 24, 2021 API Sandbox: Empowering Developer Experience (DX)
2 Biography DevOps Cloud Faisal Banaeamah LinkedIn: @banaeamah SOA and Microservices Containers API
3 Solutions by STC at a Glance Healthcare Education Real Estate Government ~24 K Clients https://www.solutions.com.sa/
4 Agenda • Developer Experience • Developer Portal • Case Study – Financial Services • Developer Journey o Steps in Developer Journey • API Sandbox in Focus • Design Patterns for API Sandbox o Strengths o Challenges • API First Lifespan • Which Design Pattern to Choose? • Conclusion
5 Developer Experience User Experience (UX) User Application Customer Business Customer Experience (CX) Developer API Strategy Developer Experience (DX) API and Developer Portal
6 Developer Portal A marketplace represents a channel of (1) Publishing API Plans Guidelines (2) Communications API Provider API Consumer (Developer) A single point of interaction Developer Experience (DX)
7 Case Study – Financial Services • Online payment channels o To send money, make online payment, receive money, process payment, … etc. • Digital wallets o To cash withdrawal, purchase, transfer money, … etc. • Get and use dummy data o Credit card o Account • Simulate with dummy transactions o Pre-Authorization o Capture o Purchase o Refund o Charge o Transfer
8 Steps in Developer Journey Browse and Discover Explore and Subscribe Test and Consume
9 Developer Journey Developer Access Developer Portal Discover Available APIs Browse API Plans (Packages) Register for an Account Subscribe to an API Usage Plan Get API Access Credentials Explore API Documentation See Example Code (or SDK) Pay for the API Usage Plan Perform API Test Requests Execute Actual Production Loads
10 API Sandbox in Focus Developer Access Developer Portal Discover Available APIs Browse API Plans (Packages) Register for an Account Subscribe to an API Usage Plan Get API Access Credentials Explore API Documentation See Example Code (or SDK) Pay for the API Usage Plan Perform API Test Requests Execute Actual Production Loads Here comes the sandbox role. • Provides a testing environment isolated from the operational systems • Protects the operational and transactional system of record and data source • Offers to developer free of charge traffic
11 API Sandbox in Focus: 3 Focal Dimensions Documentation • Integrated with API Documentation • Industry specifications • OpenAPI • AsyncAPI • … etc. Behavior • Behave similar to API on production • Decouple from underlying implementation • Security policy • Keys or OIDC Provisioning • Self-service • Access credentials • API URL • Dynamic plans • … etc.
12 Design Patterns for API Sandbox API Sandbox via Cloned Resources API Sandbox with API Mocks
13 Implemented Resources Cloned Resources Contract BSS/OSS Data Store API Sandbox via Cloned Resources Developer Client App Developer Portal API Docs API Lifecycle Manager System of Engagement (SoE) API Management API Gateway API Gateway Sandbox Gateway ETL CI/CD Pipeline BSS/OSS Data Store System of Record (SoR) Testing Traffic Production Traffic Sandbox Implementation Contract Decoupling API Mediation Data privacy: shuffling, masking
14 API Sandbox via Cloned Resources (Cont’d) Strengths Suitable for a program with many interdependent components Easy and straightforward to implement Simulates performance criteria especially for internal components Multi-staged deployment and checks prior to production Challenges Needs effort to setup required resources e.g. infra, licenses, … etc. Expensive (cost inefficient) in term of infrastructure resources Requires endless synchronization processes to maintain data To maintain two environments at same time; operational overhead
15 API Sandbox with API Mocks Developer Client App Developer Portal API Docs API Lifecycle Manager System of Engagement (SoE) API Management API Gateway API Gateway Sandbox Gateway BSS/OSS Data Store System of Record (SoR) Testing Traffic Production Traffic Sandbox Implementation Mock Server Contract Decoupling API Mediation / Mocking CI/CD Pipeline Standard contract
16 API Sandbox with API Mocks (Cont’d) Strengths More friendly API-First strategy with API design and mocking Combines business-focused and consumer-driven; agile and iterative Optimizes IT resources efficiently (cost/time) and effectively (functions) Utilizes centralized stacks to support many API programs at enterprise-level Challenges To change in delivery process to include mocks as deliverables To maintain horizontal mocking servers for all delivery stages (DEV, QA, … etc.) To upskill team (owners, analysts, developers, testers, … etc.) in API-First To use extra supporting tools for API contract design and documentation
17 API First Lifespan API Designer Flow API Provider Flow API Consumer Flow Ideate Design Contract Publish Tests and Assertions Develop APIs Integrate with CI/CD Develop Apps using Mocks Deploy Apps Analysis and Design Implementation Enrich of Tests and Assertions Refine Mocks Sandbox
18 Mocking • Microcks • SoapUI • ReadyAPI • Postman • Stoplight Prism • API Sprout • … etc. Supporting Tools ETL • Kafka Data Streaming • Talend Open Studio for Data Integration • SQL Server Integration Services (SSIS) • … etc. Design • Apicurio Studio • Swagger UI • Apiary • Stoplight Studio • … etc. Documentation • Apicurio Studio • SwaggerHub • Swagger Inspector • … etc.
19 Which Design Pattern to Choose? Decision Factors Use Case Budget API Strategy Enterprise- Wide Per- Program API Styles REST Event- Driven
20 Conclusion Evolves developer experience by self-service capabilities in developer portal Improve DX Rises growth of reach of APIs to a large amount of consumers (a.k.a. developers) Expand Growth Yields more revenue by expanding to direct consumers or via partner ecosystem Increase Revenue API Sandbox
21 Today’s Solutions for Future Challenges Faisal Banaeamah LinkedIn: @banaeamah banaeamah@gmail.com

More Related Content

PDF
Crossing the low-code and pro-code chasm: a platform approach
byAsanka Abeysinghe
 
PDF
apidays LIVE New York 2021 - Building Contextualized API Specifications by Bo...
byapidays
 
PDF
apidays LIVE Australia 2021 - Modernising development using API First & Lesso...
byapidays
 
PDF
INTERFACE, by apidays - Building contextualized API specifications by Boris ...
byapidays
 
PPTX
INTERFACE, by apidays - Keeping the link between legacy and new by Vince Pad...
byapidays
 
PPTX
APIdays Helsinki 2019 - Impact of Microservices Architecture on API Managemen...
byapidays
 
PDF
apidays LIVE Paris - Innovation and rejuvenation combined: a beneficial appro...
byapidays
 
PPTX
apidays LIVE Paris - Bringing Cloud Native to a world of SaaS by Robert Wunde...
byapidays
 
Crossing the low-code and pro-code chasm: a platform approach
byAsanka Abeysinghe
 
apidays LIVE New York 2021 - Building Contextualized API Specifications by Bo...
byapidays
 
apidays LIVE Australia 2021 - Modernising development using API First & Lesso...
byapidays
 
INTERFACE, by apidays - Building contextualized API specifications by Boris ...
byapidays
 
INTERFACE, by apidays - Keeping the link between legacy and new by Vince Pad...
byapidays
 
APIdays Helsinki 2019 - Impact of Microservices Architecture on API Managemen...
byapidays
 
apidays LIVE Paris - Innovation and rejuvenation combined: a beneficial appro...
byapidays
 
apidays LIVE Paris - Bringing Cloud Native to a world of SaaS by Robert Wunde...
byapidays
 

What's hot

PDF
The Best of Both Worlds: Introducing WSO2 API Manager 4.0.0
byWSO2
 
PDF
WSO2 User Group Bangalore Meetup
byWSO2
 
PPTX
Case Study: Creating a DocOps/Docs-As-Code DevPortal for C3.ai
byPronovix
 
PDF
apidays LIVE Australia 2021 - SEEK: Establishing a new API integration platfo...
byapidays
 
PDF
Third party api integration
byMetricoid Technology
 
PDF
apidays LIVE Singapore - The ELT Approach by Lesley Graham, Servian
byapidays
 
PDF
apidays LIVE Paris - The Business of APIs by Jed Ng
byapidays
 
PDF
INTERFACE, by apidays - Airline industry API standardization by Yan Sun, IATA
byapidays
 
PPTX
Austin API Summit 2018: Are REST APIs Still Relevant Today?
byLaunchAny
 
PDF
apidays LIVE Singapore 2021 - What financial services can learn from Marketpl...
byapidays
 
PPTX
apidays LIVE Australia 2020 - Growing an API Culture by Liz Douglass & Saul C...
byapidays
 
PDF
apidays LIVE London 2021 - Quantum Duality of “API as a business” and “API as...
byapidays
 
PDF
Building APIs in a Cloud Native Era
byNuwan Dias
 
PDF
apidays LIVE New York 2021 - API for multi-cloud management platform by Pawel...
byapidays
 
PDF
apidays LIVE Jakarta - Serverless powered Low Code by Alex-Adrien Auger, Sipios
byapidays
 
PDF
apidays LIVE Hong Kong 2021 - Building a solid interoperable foundation for y...
byapidays
 
PDF
apidays LIVE London 2021 - Presenting the Kubernetes Browser by Daria Muehlet...
byapidays
 
PDF
Bringing the software architecture back into agile
byVlad Stirbu
 
PDF
apidays LIVE Australia 2020 - Events are Cool Again! by Nelson Petracek
byapidays
 
PPTX
apidays LIVE Paris - SDK driven GraphQL by Nader Dabit
byapidays
 
The Best of Both Worlds: Introducing WSO2 API Manager 4.0.0
byWSO2
 
WSO2 User Group Bangalore Meetup
byWSO2
 
Case Study: Creating a DocOps/Docs-As-Code DevPortal for C3.ai
byPronovix
 
apidays LIVE Australia 2021 - SEEK: Establishing a new API integration platfo...
byapidays
 
Third party api integration
byMetricoid Technology
 
apidays LIVE Singapore - The ELT Approach by Lesley Graham, Servian
byapidays
 
apidays LIVE Paris - The Business of APIs by Jed Ng
byapidays
 
INTERFACE, by apidays - Airline industry API standardization by Yan Sun, IATA
byapidays
 
Austin API Summit 2018: Are REST APIs Still Relevant Today?
byLaunchAny
 
apidays LIVE Singapore 2021 - What financial services can learn from Marketpl...
byapidays
 
apidays LIVE Australia 2020 - Growing an API Culture by Liz Douglass & Saul C...
byapidays
 
apidays LIVE London 2021 - Quantum Duality of “API as a business” and “API as...
byapidays
 
Building APIs in a Cloud Native Era
byNuwan Dias
 
apidays LIVE New York 2021 - API for multi-cloud management platform by Pawel...
byapidays
 
apidays LIVE Jakarta - Serverless powered Low Code by Alex-Adrien Auger, Sipios
byapidays
 
apidays LIVE Hong Kong 2021 - Building a solid interoperable foundation for y...
byapidays
 
apidays LIVE London 2021 - Presenting the Kubernetes Browser by Daria Muehlet...
byapidays
 
Bringing the software architecture back into agile
byVlad Stirbu
 
apidays LIVE Australia 2020 - Events are Cool Again! by Nelson Petracek
byapidays
 
apidays LIVE Paris - SDK driven GraphQL by Nader Dabit
byapidays
 

Similar to apidays LIVE Jakarta - API Sandbox: empowering Developer Experience (DX) by Faisal Banaeamah, Solutions by STC

PDF
API Sandbox: Empowering Developer Experience (DX)
byFaisal Banaeamah
 
PDF
Extend soa with api management Sangam18
byVinay Kumar
 
PDF
apidays Paris 2022 - Adding a mock as a service capability to your API strate...
byapidays
 
PPT
Six Steps To Build A Successful API
byChris Haddad
 
PPTX
API Frenzy: The Implications and Planning for a Successful API Strategy
byAkana
 
PPTX
API Design – More than just a Payload Definition
byPhil Wilkins
 
PDF
APIdays Paris - Architecting Developer eXperience: Banking & FinTech Develope...
byapidays
 
PDF
API Best Practices
byEmmanuelParaskakis1
 
PDF
Architecting Developer Experience: Fintech and Banking Devportal Case Studies
byPronovix
 
PDF
API Management Building Blocks and Business value
byWSO2
 
PDF
API Introduction - API Management Workshop Munich from Ronnie Mitra
byCA API Management
 
PPTX
API Best Practices
bySai Koppala
 
PPT
Six Steps to Build Successful APIs
byWSO2
 
PDF
[WSO2 Integration Summit Bern 2019] Transforming Your Business through APIs
byWSO2
 
PPTX
Api frenzy june 2013 v2
bySachin Agarwal
 
PDF
Dependency Down, Flexibility Up – The Benefits of API-First Development
byNordic APIs
 
PDF
5 Pillars of Building Enterprise0grade APIs
byWSO2
 
PDF
Architecting DX: Banking & FinTech Developer Portals Case Studies (APIDays Pa...
byKathleen De Roo
 
PDF
apidays LIVE London 2021 - Moving from a Product as API to API as a Product b...
byapidays
 
PPTX
Api more than payload (2021 Update)
byPhil Wilkins
 
API Sandbox: Empowering Developer Experience (DX)
byFaisal Banaeamah
 
Extend soa with api management Sangam18
byVinay Kumar
 
apidays Paris 2022 - Adding a mock as a service capability to your API strate...
byapidays
 
Six Steps To Build A Successful API
byChris Haddad
 
API Frenzy: The Implications and Planning for a Successful API Strategy
byAkana
 
API Design – More than just a Payload Definition
byPhil Wilkins
 
APIdays Paris - Architecting Developer eXperience: Banking & FinTech Develope...
byapidays
 
API Best Practices
byEmmanuelParaskakis1
 
Architecting Developer Experience: Fintech and Banking Devportal Case Studies
byPronovix
 
API Management Building Blocks and Business value
byWSO2
 
API Introduction - API Management Workshop Munich from Ronnie Mitra
byCA API Management
 
API Best Practices
bySai Koppala
 
Six Steps to Build Successful APIs
byWSO2
 
[WSO2 Integration Summit Bern 2019] Transforming Your Business through APIs
byWSO2
 
Api frenzy june 2013 v2
bySachin Agarwal
 
Dependency Down, Flexibility Up – The Benefits of API-First Development
byNordic APIs
 
5 Pillars of Building Enterprise0grade APIs
byWSO2
 
Architecting DX: Banking & FinTech Developer Portals Case Studies (APIDays Pa...
byKathleen De Roo
 
apidays LIVE London 2021 - Moving from a Product as API to API as a Product b...
byapidays
 
Api more than payload (2021 Update)
byPhil Wilkins
 

More from apidays

PDF
apidays Munich 2025 - The Double Life of the API Product Manager, Emmanuel Pa...
byapidays
 
PDF
apidays Munich 2025 - Developer Portals, API Catalogs, and Marketplaces, Miri...
byapidays
 
PDF
apidays Munich 2025 - Integrate Your APIs into the New AI Marketplace, Senthi...
byapidays
 
PDF
apidays Helsinki & North 2025 - REST in Peace? Hunting the Dominant Design fo...
byapidays
 
PDF
apidays Munich 2025 - Let’s build, debug and test a magic MCP server in Postm...
byapidays
 
PDF
apidays Munich 2025 - Making Sense of AI-Ready APIs in a Buzzword World, Andr...
byapidays
 
PPTX
apidays Munich 2025 - Streamline & Secure LLM Traffic with APISIX AI Gateway ...
byapidays
 
PDF
apidays Helsinki & North 2025 - Monetizing AI APIs: The New API Economy, Alla...
byapidays
 
PPTX
apidays Munich 2025 - Federated API Management and Governance, Vince Baker (D...
byapidays
 
PPTX
apidays Munich 2025 - GraphQL 101: I won't REST, until you GraphQL, Surbhi Si...
byapidays
 
PPTX
apidays Munich 2025 - Building an AWS Serverless Application with Terraform, ...
byapidays
 
PPTX
apidays Munich 2025 - Agentic AI: A Friend or Foe?, Merja Kajava (Aavista Oy)
byapidays
 
PPTX
apidays Munich 2025 - Building Telco-Aware Apps with Open Gateway APIs, Subhr...
byapidays
 
PDF
apidays Munich 2025 - Geospatial Artificial Intelligence (GeoAI) with OGC API...
byapidays
 
PPTX
apidays Munich 2025 - Effectively incorporating API Security into the overall...
byapidays
 
PDF
apidays Munich 2025 - The Physics of Requirement Sciences Through Application...
byapidays
 
PDF
apidays Helsinki & North 2025 - How (not) to run a Graphql Stewardship Group,...
byapidays
 
PDF
apidays Helsinki & North 2025 - APIs in the healthcare sector: hospitals inte...
byapidays
 
PDF
apidays Munich 2025 - The life-changing magic of great API docs, Jens Fischer...
byapidays
 
PDF
apidays Munich 2025 - Automating Operations Without Reinventing the Wheel, Ma...
byapidays
 
apidays Munich 2025 - The Double Life of the API Product Manager, Emmanuel Pa...
byapidays
 
apidays Munich 2025 - Developer Portals, API Catalogs, and Marketplaces, Miri...
byapidays
 
apidays Munich 2025 - Integrate Your APIs into the New AI Marketplace, Senthi...
byapidays
 
apidays Helsinki & North 2025 - REST in Peace? Hunting the Dominant Design fo...
byapidays
 
apidays Munich 2025 - Let’s build, debug and test a magic MCP server in Postm...
byapidays
 
apidays Munich 2025 - Making Sense of AI-Ready APIs in a Buzzword World, Andr...
byapidays
 
apidays Munich 2025 - Streamline & Secure LLM Traffic with APISIX AI Gateway ...
byapidays
 
apidays Helsinki & North 2025 - Monetizing AI APIs: The New API Economy, Alla...
byapidays
 
apidays Munich 2025 - Federated API Management and Governance, Vince Baker (D...
byapidays
 
apidays Munich 2025 - GraphQL 101: I won't REST, until you GraphQL, Surbhi Si...
byapidays
 
apidays Munich 2025 - Building an AWS Serverless Application with Terraform, ...
byapidays
 
apidays Munich 2025 - Agentic AI: A Friend or Foe?, Merja Kajava (Aavista Oy)
byapidays
 
apidays Munich 2025 - Building Telco-Aware Apps with Open Gateway APIs, Subhr...
byapidays
 
apidays Munich 2025 - Geospatial Artificial Intelligence (GeoAI) with OGC API...
byapidays
 
apidays Munich 2025 - Effectively incorporating API Security into the overall...
byapidays
 
apidays Munich 2025 - The Physics of Requirement Sciences Through Application...
byapidays
 
apidays Helsinki & North 2025 - How (not) to run a Graphql Stewardship Group,...
byapidays
 
apidays Helsinki & North 2025 - APIs in the healthcare sector: hospitals inte...
byapidays
 
apidays Munich 2025 - The life-changing magic of great API docs, Jens Fischer...
byapidays
 
apidays Munich 2025 - Automating Operations Without Reinventing the Wheel, Ma...
byapidays
 

Recently uploaded

PDF
[BDD 2025 - Full-Stack Development] Agentic AI Architecture: Redefining Syste...
byWintari Yasmin
 
PDF
Mulesoft Meetup Online Portuguese: MCP e IA
byPedro Baroni
 
PDF
Dev Dives: Build smarter agents with UiPath Agent Builder
byUiPathCommunity
 
PDF
10 Best Automation QA Testing Software Tools in 2025.pdf
byRohitBhandari66
 
PDF
Open Source Post-Quantum Cryptography - Matt Caswell
byAll Things Open
 
PPTX
Support, Monitoring, Continuous Improvement & Scaling Agentic Automation [3/3]
byUiPathCommunity
 
PDF
Mastering UiPath Maestro – Session 2 – Building a Live Use Case - Session 2
byDianaGray10
 
PDF
Agentic Intro and Hands-on: Build your first Coded Agent
byUiPathCommunity
 
PDF
[DevFest Strasbourg 2025] - NodeJs Can do that !!
bymoassiongbon
 
PPTX
Leon Brands - Intro to GPU Occlusion (Graphics Programming Conference 2024)
byleonbrands1998
 
PPTX
MuleSoft AI Series : Introduction to MCP
byMulesoftMunichMeetup
 
PDF
Accessibility & Inclusion: What Comes Next. Presentation of the Digital Acces...
byAssociazione Digital Days
 
PDF
Integrating AI with Meaningful Human Collaboration
byCadabra Studio
 
PPTX
Guardrails in Action - Ensuring Safe AI with Azure AI Content Safety.pptx
byUdaiappa Ramachandran
 
PDF
[BDD 2025 - Artificial Intelligence] AI for the Underdogs: Innovation for Sma...
byWintari Yasmin
 
PDF
So You Want to Work at Google | DevFest Seattle 2025
byMargaret Maynard-Reid
 
PDF
Top Crypto Supers 15th Report November 2025
byStephen Perrenod
 
PDF
The partnership effect: Libraries and publishers on collaborating and thrivin...
byBookNet Canada
 
PDF
Crane Accident Prevention Guide: Key OSHA Regulations for Safer Operations
bySharpEagle Technology
 
PDF
"DISC as GPS for team leaders: how to lead a team from storming to performing...
byFwdays
 
[BDD 2025 - Full-Stack Development] Agentic AI Architecture: Redefining Syste...
byWintari Yasmin
 
Mulesoft Meetup Online Portuguese: MCP e IA
byPedro Baroni
 
Dev Dives: Build smarter agents with UiPath Agent Builder
byUiPathCommunity
 
10 Best Automation QA Testing Software Tools in 2025.pdf
byRohitBhandari66
 
Open Source Post-Quantum Cryptography - Matt Caswell
byAll Things Open
 
Support, Monitoring, Continuous Improvement & Scaling Agentic Automation [3/3]
byUiPathCommunity
 
Mastering UiPath Maestro – Session 2 – Building a Live Use Case - Session 2
byDianaGray10
 
Agentic Intro and Hands-on: Build your first Coded Agent
byUiPathCommunity
 
[DevFest Strasbourg 2025] - NodeJs Can do that !!
bymoassiongbon
 
Leon Brands - Intro to GPU Occlusion (Graphics Programming Conference 2024)
byleonbrands1998
 
MuleSoft AI Series : Introduction to MCP
byMulesoftMunichMeetup
 
Accessibility & Inclusion: What Comes Next. Presentation of the Digital Acces...
byAssociazione Digital Days
 
Integrating AI with Meaningful Human Collaboration
byCadabra Studio
 
Guardrails in Action - Ensuring Safe AI with Azure AI Content Safety.pptx
byUdaiappa Ramachandran
 
[BDD 2025 - Artificial Intelligence] AI for the Underdogs: Innovation for Sma...
byWintari Yasmin
 
So You Want to Work at Google | DevFest Seattle 2025
byMargaret Maynard-Reid
 
Top Crypto Supers 15th Report November 2025
byStephen Perrenod
 
The partnership effect: Libraries and publishers on collaborating and thrivin...
byBookNet Canada
 
Crane Accident Prevention Guide: Key OSHA Regulations for Safer Operations
bySharpEagle Technology
 
"DISC as GPS for team leaders: how to lead a team from storming to performing...
byFwdays
 

apidays LIVE Jakarta - API Sandbox: empowering Developer Experience (DX) by Faisal Banaeamah, Solutions by STC

  • 1.
    1 Faisal Mohammed Banaeamah– ‫محمد‬ ‫فيصل‬ ‫باناعمة‬ Just an Architect, Solutions by STC banaeamah@gmail.com; fbanaeamah@solutions.com.sa February 24, 2021 API Sandbox: Empowering Developer Experience (DX)
  • 2.
  • 3.
    3 Solutions by STCat a Glance Healthcare Education Real Estate Government ~24 K Clients https://www.solutions.com.sa/
  • 4.
    4 Agenda • Developer Experience •Developer Portal • Case Study – Financial Services • Developer Journey o Steps in Developer Journey • API Sandbox in Focus • Design Patterns for API Sandbox o Strengths o Challenges • API First Lifespan • Which Design Pattern to Choose? • Conclusion
  • 5.
    5 Developer Experience User Experience (UX) UserApplication Customer Business Customer Experience (CX) Developer API Strategy Developer Experience (DX) API and Developer Portal
  • 6.
    6 Developer Portal A marketplacerepresents a channel of (1) Publishing API Plans Guidelines (2) Communications API Provider API Consumer (Developer) A single point of interaction Developer Experience (DX)
  • 7.
    7 Case Study –Financial Services • Online payment channels o To send money, make online payment, receive money, process payment, … etc. • Digital wallets o To cash withdrawal, purchase, transfer money, … etc. • Get and use dummy data o Credit card o Account • Simulate with dummy transactions o Pre-Authorization o Capture o Purchase o Refund o Charge o Transfer
  • 8.
    8 Steps in DeveloperJourney Browse and Discover Explore and Subscribe Test and Consume
  • 9.
    9 Developer Journey Developer AccessDeveloper Portal Discover Available APIs Browse API Plans (Packages) Register for an Account Subscribe to an API Usage Plan Get API Access Credentials Explore API Documentation See Example Code (or SDK) Pay for the API Usage Plan Perform API Test Requests Execute Actual Production Loads
  • 10.
    10 API Sandbox inFocus Developer Access Developer Portal Discover Available APIs Browse API Plans (Packages) Register for an Account Subscribe to an API Usage Plan Get API Access Credentials Explore API Documentation See Example Code (or SDK) Pay for the API Usage Plan Perform API Test Requests Execute Actual Production Loads Here comes the sandbox role. • Provides a testing environment isolated from the operational systems • Protects the operational and transactional system of record and data source • Offers to developer free of charge traffic
  • 11.
    11 API Sandbox inFocus: 3 Focal Dimensions Documentation • Integrated with API Documentation • Industry specifications • OpenAPI • AsyncAPI • … etc. Behavior • Behave similar to API on production • Decouple from underlying implementation • Security policy • Keys or OIDC Provisioning • Self-service • Access credentials • API URL • Dynamic plans • … etc.
  • 12.
    12 Design Patterns forAPI Sandbox API Sandbox via Cloned Resources API Sandbox with API Mocks
  • 13.
    13 Implemented Resources Cloned Resources ContractBSS/OSS Data Store API Sandbox via Cloned Resources Developer Client App Developer Portal API Docs API Lifecycle Manager System of Engagement (SoE) API Management API Gateway API Gateway Sandbox Gateway ETL CI/CD Pipeline BSS/OSS Data Store System of Record (SoR) Testing Traffic Production Traffic Sandbox Implementation Contract Decoupling API Mediation Data privacy: shuffling, masking
  • 14.
    14 API Sandbox viaCloned Resources (Cont’d) Strengths Suitable for a program with many interdependent components Easy and straightforward to implement Simulates performance criteria especially for internal components Multi-staged deployment and checks prior to production Challenges Needs effort to setup required resources e.g. infra, licenses, … etc. Expensive (cost inefficient) in term of infrastructure resources Requires endless synchronization processes to maintain data To maintain two environments at same time; operational overhead
  • 15.
    15 API Sandbox withAPI Mocks Developer Client App Developer Portal API Docs API Lifecycle Manager System of Engagement (SoE) API Management API Gateway API Gateway Sandbox Gateway BSS/OSS Data Store System of Record (SoR) Testing Traffic Production Traffic Sandbox Implementation Mock Server Contract Decoupling API Mediation / Mocking CI/CD Pipeline Standard contract
  • 16.
    16 API Sandbox withAPI Mocks (Cont’d) Strengths More friendly API-First strategy with API design and mocking Combines business-focused and consumer-driven; agile and iterative Optimizes IT resources efficiently (cost/time) and effectively (functions) Utilizes centralized stacks to support many API programs at enterprise-level Challenges To change in delivery process to include mocks as deliverables To maintain horizontal mocking servers for all delivery stages (DEV, QA, … etc.) To upskill team (owners, analysts, developers, testers, … etc.) in API-First To use extra supporting tools for API contract design and documentation
  • 17.
    17 API First Lifespan API Designer Flow API Provider Flow API Consumer Flow Ideate Design Contract PublishTests and Assertions Develop APIs Integrate with CI/CD Develop Apps using Mocks Deploy Apps Analysis and Design Implementation Enrich of Tests and Assertions Refine Mocks Sandbox
  • 18.
    18 Mocking • Microcks • SoapUI •ReadyAPI • Postman • Stoplight Prism • API Sprout • … etc. Supporting Tools ETL • Kafka Data Streaming • Talend Open Studio for Data Integration • SQL Server Integration Services (SSIS) • … etc. Design • Apicurio Studio • Swagger UI • Apiary • Stoplight Studio • … etc. Documentation • Apicurio Studio • SwaggerHub • Swagger Inspector • … etc.
  • 19.
    19 Which Design Patternto Choose? Decision Factors Use Case Budget API Strategy Enterprise- Wide Per- Program API Styles REST Event- Driven
  • 20.
    20 Conclusion Evolves developer experience by self-service capabilities in developer portal ImproveDX Rises growth of reach of APIs to a large amount of consumers (a.k.a. developers) Expand Growth Yields more revenue by expanding to direct consumers or via partner ecosystem Increase Revenue API Sandbox
  • 21.
    21 Today’s Solutions forFuture Challenges Faisal Banaeamah LinkedIn: @banaeamah banaeamah@gmail.com