This document discusses serverless API management on AWS. It begins with an overview of serverless API management and describes a sample timelapse service use case. It then covers the basics of API management on AWS including validation, transformation, throttling, caching, security and monetization. It also discusses DevOps practices for serverless APIs such as CI/CD pipelines and infrastructure as code. Finally, it briefly mentions event-driven "AsyncAPI" management and concludes.
Leveraging the Security of AWS's Own APIs for Your App - AWS Serverless Web DayAWS Germany
Vortrag "Leveraging the Security of AWS's Own APIs for Your App" von Brian Wagner beim AWS Serverless Web Day. Alle Videos und Präsentationen finden Sie hier: http://amzn.to/28QIaxM
I Love APIs 2015: Advanced Security Extensions in Apigee Edge - HMAC and http...Apigee | Google Cloud
I Love APIs 2015
Apigee Edge is very flexible allowing you to create extensions in Java, Javascript or NodeJS. Learn how you can use those extensions to compute or verify HMACs on payloads, and to Implement verification for HTTP Signatures.
Securing Serverless Architectures - AWS Serverless Web DayAWS Germany
Vortrag "Securing Serverless Architectures" von Dave Walker beim AWS Serverless Web Day. Alle Videos und Präsentationen finden Sie hier: http://amzn.to/28QIaxM
Everyone has written an API of some sort whether they know it or not. Many people might snap in a quick end point or two into their website that returns JSON or XML to support some simple front end validation or dynamic interactions. This is a loose API for the most part and if it solves the problem – great. Other folks might stand up a whole solution that is dedicated to supporting some disconnected clients like ios apps, android apps, or full blown SPA style javascript apps.
This second style of API is usually versioned separate from the consumers of it. And is most likely deploying at a different cadence from the client apps that are dependent on it. Also, when writing a rich API there are generally many concerns that one must take into account such as authentication and authorization, versioning of the contract between the client and the API, rate throttling, caching, etc. And if you are deploying API’s as different domains for a product suite, or as granular microservices, then you also need a way to uniformly present a consolidated API to the world. Analytics and reporting usually come into play as well.
For each of these concerns you could easily write some code (likely an extensive amount of it) to solve the problem. However, I find that letting my API worry about the business problem that it is trying to solve, and nothing else, makes iterating on my applications much less painful. For that reason I have turned to using infrastructure and 3rd party apps to solve many of these problems – with little to no code!
In this post we will take a look at proxys and gateways and some of the features that they expose to you. In future posts we will dig a little deeper into each of them and do more of an in depth comparison.
In this presentation, we're discussing whether we need API gateway or not on Micro-Services Architecture. We'll see pros and cons of several ways how clients access to services.
[Updated : 13 Jan 2015] Additional cons of API gateway is added, as commented by Hyunsik Kang(강현식), Coupang.
A Hitchhikers Guide to Cloud Native API GatewaysQAware GmbH
O'Reilly Software Architecture Conference Europe, November 2019, Berlin: Talk by Mario-Leander Reimer (@LeanderReimer, Principal Software Architect at QAware)
=== Please download slides if blurred! ===
Abstract: Good APIs are the centerpiece of any successful digital product. But for complex systems with many API consumers, the proper management of these APIs is of utmost importance. The API gateway pattern is well established to handle concerns like routing, versioning, rate limiting, access control, or diagnosability in a cloud native application architecture. Mario-Leander Reimer guides you to cloud native API gateways.
You’ll take a closer look at the cloud native API gateway ecosystem: Ambassador, Gloo, Tyc, KrakenD, etc., and find out which one of these is right for your next project. Leander explains the API gateway pattern with its possible usage scenarios and defines a criteria catalog with essential characteristics in order to compare the current ecosystem. And he puts some of them to the test and demonstrates their usage live and uncut.
API Management Platform Technical Evaluation FrameworkWSO2
To view recording of this webinar please use the below URL:
http://wso2.com/library/webinars/2015/05/api-management-platform-technical-evaluation-framework/
Leveraging the Security of AWS's Own APIs for Your App - AWS Serverless Web DayAWS Germany
Vortrag "Leveraging the Security of AWS's Own APIs for Your App" von Brian Wagner beim AWS Serverless Web Day. Alle Videos und Präsentationen finden Sie hier: http://amzn.to/28QIaxM
I Love APIs 2015: Advanced Security Extensions in Apigee Edge - HMAC and http...Apigee | Google Cloud
I Love APIs 2015
Apigee Edge is very flexible allowing you to create extensions in Java, Javascript or NodeJS. Learn how you can use those extensions to compute or verify HMACs on payloads, and to Implement verification for HTTP Signatures.
Securing Serverless Architectures - AWS Serverless Web DayAWS Germany
Vortrag "Securing Serverless Architectures" von Dave Walker beim AWS Serverless Web Day. Alle Videos und Präsentationen finden Sie hier: http://amzn.to/28QIaxM
Everyone has written an API of some sort whether they know it or not. Many people might snap in a quick end point or two into their website that returns JSON or XML to support some simple front end validation or dynamic interactions. This is a loose API for the most part and if it solves the problem – great. Other folks might stand up a whole solution that is dedicated to supporting some disconnected clients like ios apps, android apps, or full blown SPA style javascript apps.
This second style of API is usually versioned separate from the consumers of it. And is most likely deploying at a different cadence from the client apps that are dependent on it. Also, when writing a rich API there are generally many concerns that one must take into account such as authentication and authorization, versioning of the contract between the client and the API, rate throttling, caching, etc. And if you are deploying API’s as different domains for a product suite, or as granular microservices, then you also need a way to uniformly present a consolidated API to the world. Analytics and reporting usually come into play as well.
For each of these concerns you could easily write some code (likely an extensive amount of it) to solve the problem. However, I find that letting my API worry about the business problem that it is trying to solve, and nothing else, makes iterating on my applications much less painful. For that reason I have turned to using infrastructure and 3rd party apps to solve many of these problems – with little to no code!
In this post we will take a look at proxys and gateways and some of the features that they expose to you. In future posts we will dig a little deeper into each of them and do more of an in depth comparison.
In this presentation, we're discussing whether we need API gateway or not on Micro-Services Architecture. We'll see pros and cons of several ways how clients access to services.
[Updated : 13 Jan 2015] Additional cons of API gateway is added, as commented by Hyunsik Kang(강현식), Coupang.
A Hitchhikers Guide to Cloud Native API GatewaysQAware GmbH
O'Reilly Software Architecture Conference Europe, November 2019, Berlin: Talk by Mario-Leander Reimer (@LeanderReimer, Principal Software Architect at QAware)
=== Please download slides if blurred! ===
Abstract: Good APIs are the centerpiece of any successful digital product. But for complex systems with many API consumers, the proper management of these APIs is of utmost importance. The API gateway pattern is well established to handle concerns like routing, versioning, rate limiting, access control, or diagnosability in a cloud native application architecture. Mario-Leander Reimer guides you to cloud native API gateways.
You’ll take a closer look at the cloud native API gateway ecosystem: Ambassador, Gloo, Tyc, KrakenD, etc., and find out which one of these is right for your next project. Leander explains the API gateway pattern with its possible usage scenarios and defines a criteria catalog with essential characteristics in order to compare the current ecosystem. And he puts some of them to the test and demonstrates their usage live and uncut.
API Management Platform Technical Evaluation FrameworkWSO2
To view recording of this webinar please use the below URL:
http://wso2.com/library/webinars/2015/05/api-management-platform-technical-evaluation-framework/
Irfan Baqui, Senior Engineer at LunchBadger, breaks down the important role of the API Gateway in Microservices. Additionally, Irfan covers how to get started with Express Gateway, an open source API Gateway built entirely on Express.js. Originally presented at the San Francisco Node Meetup.
Building API-Driven Microservices with Amazon API Gateway - AWS Online Tech T...Amazon Web Services
Learning Objectives:
- Learn patterns for building APIs for various backend technologies
- Learn how to secure your APIs
- Learn how to handle updates, versioning, and environments using Amazon API Gateway
The API Economy is exploding, and this presentation explains how to extend your brand, accelerate new channel adoption and operate with API best practices.
API Gateways are the well suited service for microservices architecture. It provides many security and performance related features along with reliability of the system. These slides explains what is API Gateway. What is microservices architecture, its benefits and how API Gateway empower this architecture. Further more API Gateway aggregation is explained with an example.
Architecting an Enterprise API Management StrategyWSO2
A good internal and external API management strategy and architecture is key to building ecosystem platforms that lead to successful API economies in the enterprise. This workshop will look at best practices in API management using the WSO2 API Manager and Integration Platform products, which are used to rapidly implement RESTful design, enforce governance policies, safely scale solutions, orchestrate complex interaction sequences, and re-use assets. The session will also look at reference architectures and architectural recommendations of building large scale API ecosystems.
Director - Solutions Architecture at WSO2, Mifan Careem presented this session at APIdays Sydney 2015.
Slides from the October Oracle Middleware Forum held in Canberra, Australia. Covers API Gateway and how it can be used in an organisation. For more information, check out our blog at http://ofmcanberra.wordpress.com
To view recording of this webinar please use the below URL:
http://wso2.com/library/webinars/2015/08/wso2-api-platform-vision-and-roadmap/
WSO2 API platform adopters are driving digital business and creating innovative business models. API platforms create a secure, self-service, managed, and monetized environment that increases safe connected business interactions.
In this presentation, Chris and Shiro will describe:
Key goals and challenges driving API platform adoption
WSO2 API Platform capabilities and advantages
Visionary platform use cases
Innovative customer success stories
When existing enterprise IT systems were designed, mobile, social and cloud services were in their infancy and most interaction was internal to the company. Today, enterprise IT is challenged with supporting agile changes, fast releases, and exposing functionality to be consumed by partners who haven’t even been identified! Learn how security, monitoring, logging and other technology in the Apigee API Platform integrates with existing enterprise infrastructure to meet the challenges of the new digital marketplace while allowing IT to continue to provide world-class security and protection for a company’s systems and for users’ data.
Digital transformation is on its way and the industry is required to adopt new concepts and techniques, like the Internet of things (IoT), Cloud and Enterprise Mobility. As a matter of that, new business models arise, which need to be evaluated by companies to not lose market shares and stay in touch with the competitors.
Gartner’s vision of Bi-modal IT seems to become more and more the reality, which besides all chances, also brings a lot of challenges companies have to deal with. One essential topic for implementing the ideas of Bi-modal IT is API Management – at least from our point of view. In addition, it is also a key enabler to define a solid strategy, in order to meet the challenges with respect to digital transformation.
Building Scalable Services with Amazon API Gateway - Technical 201Amazon Web Services
The session introduces Amazon API Gateway and walks through common patterns and use-cases as implemented by API Gateway customers. The second part of the session is dedicated to diving deeper on the new features introduced in the API Gateway and how to make the most of them.
Speaker: Stefano Bulani, Sr Product Manager, Amazon Web Services
Featured Customer - Temando
The Latest in API Orchestration, Mediation, and IntegrationAkana
Once you have designed your API interface, the next task becomes implementation. Often, this requires some form of orchestration, mediation and/or integration to new or existing assets and Microservices. The next generation of the Akana Platform provides our customers with the ability to more quickly and easily move from designing the API interface into implementing the API through configurable orchestration, mediation, and integration capabilities. In this webinar, you will:
• Discover what is new with the latest release of the Akana Platform
• Learn what is required for scalable API orchestration
• Experience the new Akana Platform UX
• See a live demo of the enhanced Akana Platform focusing on the API Orchestration, Mediation and Integration capabilities
How to build and deploy serverless apps - AWS Summit Cape Town 2018Amazon Web Services
Speaker: Alex Casalboni, AWS
Customer Speaker: Impression Signatures
Serverless computing allows you to build and run applications without the need for provisioning or managing servers. It means that you can build web, mobile, and IoT backends, run stream processing or big data workloads, build chatbots, run code at the edge, and more. In this session, learn how to get started with serverless computing with AWS Lambda and managed services such as Amazon API Gateway, Amazon Kinesis, and Amazon DynamoDB. We introduce you to the basics of building with AWS Lambda, as well as how to properly perform CI/CD for your serverless application. We will discuss a method for automating the deployment of serverless applications using services such as AWS CodePipeline and AWS CodeBuild, and techniques such as canary deployments and automatic rollbacks.
Microservices Architecture for Web Applications using AWS Lambda and moreMitoc Group
Digital platforms are by nature resource intensive, expensive to build, and difficult to manage at scale. What if we can change this perception and help developers architect a digital platform that is low cost and low maintenance, highly secure and highly performant? This session describes the underlying architecture behind www.deep.mg, the microservices marketplace built by Mitoc Group and powered by AWS abstracted services like AWS Lambda, Amazon CloudFront, and Amazon DynamoDB.
Eugene Istrati, Technology Partner at Mitoc Group will dive deep into their approach to microservices architecture on serverless environments and demonstrate how anyone can architect AWS abstracted services to achieve high scalability, high availability, and high performance without huge efforts or expensive resources allocation.
SOA and API Convergence Strategy and TacticsChris Haddad
APIs encourage connected business interactions that lead to increased revenue growth, faster time to market, and increased customer engagement. When attempting to reconcile agile API tactics with enterprise SOA guidelines, teams tune governance practices and integrate API development with back-end service life-cycles.
In this session, Chris Haddad VP - Platform Evangelism at WSO2 will describe:
Why SOA services and RESTful APIs are complementary
What architecture patterns and governance techniques align API and service development lifecycles
How to converge SOA and API strategies and implement tactics that accelerate connected business projects
API Gateways are going through an identity crisisChristian Posta
API Gateways provide functionality like rate limiting, authentication, request routing, reporting, and more. If you've been following the rise in service-mesh technologies, you'll notice there is a lot of overlap with API Gateways when solving some of the challenges of microservices. If service mesh can solve these same problems, you may wonder whether you really need a dedicated API Gateway solution?
The reality is there is some nuance in the problems solved at the edge (API Gateway) compared to service-to-service communication (service mesh) within a cluster. But with the evolution of cluster-deployment patterns, these nuances are becoming less important. What's more important is that the API Gateway is evolving to live at a layer above service mesh and not directly overlapping with it. In other words, API Gateways are evolving to solve application-level concerns like aggregation, transformation, and deeper context and content-based routing as well as fitting into a more self-service, GitOps style workflow.
In this talk we put aside the "API Gateway" infrastructure as we know it today and go back to first principles with the "API Gateway pattern" and revisit the real problems we're trying to solve. Then we'll discuss pros and cons of alternative ways to implement the API Gateway pattern and finally look at open source projects like Envoy, Kubernetes, and GraphQL to see how the "API Gateway pattern" actually becomes the API for our applications while coexisting nicely with a service mesh (if you adopt a service mesh).
2016 06 - design your api management strategy - axway - Api ManagementSmartWave
David Soulalioux, API Gateway pre-sales engineer at Axway illustrated, among others, a concrete use case of cloud API management at a worldwide energy industry leader. The presentation depicted the exposition of customer’s “Fuel Market” intranets website existing APIs to the outside world. This integration outlined the added value of the API Gateway as authentication layer, security and Quality Of Service (QoS) enforcement point. Also, the retained cloud infrastructure enabled for a scalable and reliable solution, allowing developers to focus on services instead of worrying about the infrastructure.
Irfan Baqui, Senior Engineer at LunchBadger, breaks down the important role of the API Gateway in Microservices. Additionally, Irfan covers how to get started with Express Gateway, an open source API Gateway built entirely on Express.js. Originally presented at the San Francisco Node Meetup.
Building API-Driven Microservices with Amazon API Gateway - AWS Online Tech T...Amazon Web Services
Learning Objectives:
- Learn patterns for building APIs for various backend technologies
- Learn how to secure your APIs
- Learn how to handle updates, versioning, and environments using Amazon API Gateway
The API Economy is exploding, and this presentation explains how to extend your brand, accelerate new channel adoption and operate with API best practices.
API Gateways are the well suited service for microservices architecture. It provides many security and performance related features along with reliability of the system. These slides explains what is API Gateway. What is microservices architecture, its benefits and how API Gateway empower this architecture. Further more API Gateway aggregation is explained with an example.
Architecting an Enterprise API Management StrategyWSO2
A good internal and external API management strategy and architecture is key to building ecosystem platforms that lead to successful API economies in the enterprise. This workshop will look at best practices in API management using the WSO2 API Manager and Integration Platform products, which are used to rapidly implement RESTful design, enforce governance policies, safely scale solutions, orchestrate complex interaction sequences, and re-use assets. The session will also look at reference architectures and architectural recommendations of building large scale API ecosystems.
Director - Solutions Architecture at WSO2, Mifan Careem presented this session at APIdays Sydney 2015.
Slides from the October Oracle Middleware Forum held in Canberra, Australia. Covers API Gateway and how it can be used in an organisation. For more information, check out our blog at http://ofmcanberra.wordpress.com
To view recording of this webinar please use the below URL:
http://wso2.com/library/webinars/2015/08/wso2-api-platform-vision-and-roadmap/
WSO2 API platform adopters are driving digital business and creating innovative business models. API platforms create a secure, self-service, managed, and monetized environment that increases safe connected business interactions.
In this presentation, Chris and Shiro will describe:
Key goals and challenges driving API platform adoption
WSO2 API Platform capabilities and advantages
Visionary platform use cases
Innovative customer success stories
When existing enterprise IT systems were designed, mobile, social and cloud services were in their infancy and most interaction was internal to the company. Today, enterprise IT is challenged with supporting agile changes, fast releases, and exposing functionality to be consumed by partners who haven’t even been identified! Learn how security, monitoring, logging and other technology in the Apigee API Platform integrates with existing enterprise infrastructure to meet the challenges of the new digital marketplace while allowing IT to continue to provide world-class security and protection for a company’s systems and for users’ data.
Digital transformation is on its way and the industry is required to adopt new concepts and techniques, like the Internet of things (IoT), Cloud and Enterprise Mobility. As a matter of that, new business models arise, which need to be evaluated by companies to not lose market shares and stay in touch with the competitors.
Gartner’s vision of Bi-modal IT seems to become more and more the reality, which besides all chances, also brings a lot of challenges companies have to deal with. One essential topic for implementing the ideas of Bi-modal IT is API Management – at least from our point of view. In addition, it is also a key enabler to define a solid strategy, in order to meet the challenges with respect to digital transformation.
Building Scalable Services with Amazon API Gateway - Technical 201Amazon Web Services
The session introduces Amazon API Gateway and walks through common patterns and use-cases as implemented by API Gateway customers. The second part of the session is dedicated to diving deeper on the new features introduced in the API Gateway and how to make the most of them.
Speaker: Stefano Bulani, Sr Product Manager, Amazon Web Services
Featured Customer - Temando
The Latest in API Orchestration, Mediation, and IntegrationAkana
Once you have designed your API interface, the next task becomes implementation. Often, this requires some form of orchestration, mediation and/or integration to new or existing assets and Microservices. The next generation of the Akana Platform provides our customers with the ability to more quickly and easily move from designing the API interface into implementing the API through configurable orchestration, mediation, and integration capabilities. In this webinar, you will:
• Discover what is new with the latest release of the Akana Platform
• Learn what is required for scalable API orchestration
• Experience the new Akana Platform UX
• See a live demo of the enhanced Akana Platform focusing on the API Orchestration, Mediation and Integration capabilities
How to build and deploy serverless apps - AWS Summit Cape Town 2018Amazon Web Services
Speaker: Alex Casalboni, AWS
Customer Speaker: Impression Signatures
Serverless computing allows you to build and run applications without the need for provisioning or managing servers. It means that you can build web, mobile, and IoT backends, run stream processing or big data workloads, build chatbots, run code at the edge, and more. In this session, learn how to get started with serverless computing with AWS Lambda and managed services such as Amazon API Gateway, Amazon Kinesis, and Amazon DynamoDB. We introduce you to the basics of building with AWS Lambda, as well as how to properly perform CI/CD for your serverless application. We will discuss a method for automating the deployment of serverless applications using services such as AWS CodePipeline and AWS CodeBuild, and techniques such as canary deployments and automatic rollbacks.
Microservices Architecture for Web Applications using AWS Lambda and moreMitoc Group
Digital platforms are by nature resource intensive, expensive to build, and difficult to manage at scale. What if we can change this perception and help developers architect a digital platform that is low cost and low maintenance, highly secure and highly performant? This session describes the underlying architecture behind www.deep.mg, the microservices marketplace built by Mitoc Group and powered by AWS abstracted services like AWS Lambda, Amazon CloudFront, and Amazon DynamoDB.
Eugene Istrati, Technology Partner at Mitoc Group will dive deep into their approach to microservices architecture on serverless environments and demonstrate how anyone can architect AWS abstracted services to achieve high scalability, high availability, and high performance without huge efforts or expensive resources allocation.
SOA and API Convergence Strategy and TacticsChris Haddad
APIs encourage connected business interactions that lead to increased revenue growth, faster time to market, and increased customer engagement. When attempting to reconcile agile API tactics with enterprise SOA guidelines, teams tune governance practices and integrate API development with back-end service life-cycles.
In this session, Chris Haddad VP - Platform Evangelism at WSO2 will describe:
Why SOA services and RESTful APIs are complementary
What architecture patterns and governance techniques align API and service development lifecycles
How to converge SOA and API strategies and implement tactics that accelerate connected business projects
API Gateways are going through an identity crisisChristian Posta
API Gateways provide functionality like rate limiting, authentication, request routing, reporting, and more. If you've been following the rise in service-mesh technologies, you'll notice there is a lot of overlap with API Gateways when solving some of the challenges of microservices. If service mesh can solve these same problems, you may wonder whether you really need a dedicated API Gateway solution?
The reality is there is some nuance in the problems solved at the edge (API Gateway) compared to service-to-service communication (service mesh) within a cluster. But with the evolution of cluster-deployment patterns, these nuances are becoming less important. What's more important is that the API Gateway is evolving to live at a layer above service mesh and not directly overlapping with it. In other words, API Gateways are evolving to solve application-level concerns like aggregation, transformation, and deeper context and content-based routing as well as fitting into a more self-service, GitOps style workflow.
In this talk we put aside the "API Gateway" infrastructure as we know it today and go back to first principles with the "API Gateway pattern" and revisit the real problems we're trying to solve. Then we'll discuss pros and cons of alternative ways to implement the API Gateway pattern and finally look at open source projects like Envoy, Kubernetes, and GraphQL to see how the "API Gateway pattern" actually becomes the API for our applications while coexisting nicely with a service mesh (if you adopt a service mesh).
2016 06 - design your api management strategy - axway - Api ManagementSmartWave
David Soulalioux, API Gateway pre-sales engineer at Axway illustrated, among others, a concrete use case of cloud API management at a worldwide energy industry leader. The presentation depicted the exposition of customer’s “Fuel Market” intranets website existing APIs to the outside world. This integration outlined the added value of the API Gateway as authentication layer, security and Quality Of Service (QoS) enforcement point. Also, the retained cloud infrastructure enabled for a scalable and reliable solution, allowing developers to focus on services instead of worrying about the infrastructure.
Oracle API Platform Cloud Service Best Practices & Lessons Learntluisw19
I did this presentation in Split/Croatia on March 2017 where I shared our experiences and insights when implementing the Oracle API Platform Cloud Service.
API Management and microservices architecture
What are the key benefits of microservices architecture?
How do Axway products simplify and secure microservices architecture?
Christian's part of the AWS re:Invent 2015 talk shared with Sajee Mathew - ARC304 - Designing for SaaS: Next Generation Software Delivery Models on AWS. Full video of the 60 minute presentation: https://www.youtube.com/watch?v=d16aUztH9hk&list=PLhr1KZpdzukdRxs_pGJm-qSy5LayL6W_Y
Learn about what a serverless architecture is, why they are growing in popularity, and who the key players are in a serverless API build on the AWS platform. Then get started building your own servless API!
Serverless Computing, AWS Way by SourceFuse Technologies SourceFuse
Serverless Computing is only the next step in server evolution, they bring in efficiency, such that developers can focus on building great applications and services in a cost-effective manner without the operational overhead of traditional application development and deployment.
Explore the presentation here as given by Manpreet Singh, CTO, SourceFuse, in a webinar organized by AWS on “Serverless Computing”
The presentation talks in depth about Serverless Computing use case, detailing out Lambda and case studies on the same.
Serverless Computing is only the next step in server evolution, they bring in efficiency, such that developers can focus on building great applications and services in a cost-effective manner without the operational overhead of traditional application development and deployment.
Explore the presentation here as given by Manpreet Singh, CTO, SourceFuse, in a webinar organized by AWS on “Serverless Computing”
The presentation talks in depth about Serverless Computing use case, detailing out Lambda and case studies on the same.
This last November Amazon Web Services held the 6th annual re:Invent conference in Las Vegas.
Over 40,000 participants attended, partaking in Keynotes and over 1,000 breakout sessions on topics such as cloud architecture, continuous deployment, monitoring and management, performance, security, migration and more.
During the week, AWS announced the launch of dozens of new significant features and services.
We thought it would benefit the Israeli Venture Capital community to come together for a review of the announcement highlights, Get informed on new capabilities and best practices that can serve your portfolio companies and get answers for questions around re:Invent 2017 news.
Building enterprise depth APIs with the IBM hybrid integration portfolioKim Clark
APIs are fast becoming central to the way that an enterprise presents itself to partners and customers, enabling innovation and automation. A well crafted API is today's front page advertisement for your enterprise's capabilities, but there must be substance beneath the API, for it to fulfil its promise. Success beyond initial launch of the API rides upon many factors.
In this talk we'll focus on the architectural elements that need to be considered in order to ensure the API will be secure, scalable, agile to change, manageable and maintainable. Along the way we will discuss how to leverage the sweet spots of IBM's hybrid integration portfolio to make your API initiative more productive, and maintainable into the future.
Learn about the state of Serverless after AWS re:Invent 2020. Check out the most impactful new features, and use cases for the new capabilities. Event recording (including 1hr long Q&A) is at http://YouTube.ServerlessToronto.org
LINKS FROM THE MEETUP CHAT:
Best practices in Product Management https://www.meetup.com/lean-product/
Some good PMs (Product Managers) will be here https://www.productfaculty.com/cpo-mastery
re:Invent 2020 Sessions https://virtual.awsevents.com/agenda
Amazon Aurora Serverless v2 - Instant scaling for demanding workloads https://virtual.awsevents.com/media/1_3nlad51o
OpenTelemetry & AWS X-Ray https://aws.amazon.com/blogs/opensource/enhancing-aws-x-ray-support-in-opentelemetry-javascript-sdk/
Adrian Cockcroft’s architecture trends and topics for 2021 https://virtual.awsevents.com/esearch/search?keyword=cockcroft
Dirk Froehner's talk "Application integration patterns for microservices" https://virtual.awsevents.com/media/1_6zks63br
"Tim Bray and Friends | Messaging Series" https://aws.amazon.com/messaging/twitch/
"How I started building serverless apps - the Serverless Coffee Break with Emily Shea" https://www.youtube.com/watch?v=oxHnUFMRWu8
Our Knowledge sponsor https://www.manning.com/
4 Serverless events already scheduled for 2021, RSVP at https://www.meetup.com/Serverless-Toronto/events
LINKS FROM THE PRESENTATION:
https://twitter.com/jbesw
1 ms billing https://s12d.com/1ms
Container image support for AWS Lambda https://s12d.com/OCI
https://s12d.com/extensions-intro
https://s12d.com/extensions-building
https://s12d.com/extensions-logs
Decoupling serverless workloads with Amazon EventBridge (James Beswick) https://virtual.awsevents.com/media/1_gyzid3q3
AWS Lambda – Part 1: Optimizing your serverless applications (Chris Munns) https://virtual.awsevents.com/media/1_bhnvfdgz
Best practices for securing your serverless applications (Rob Sutter) https://virtual.awsevents.com/media/1_zchhd4oh
API Gateway – Beyond the proxy (Eric Johnson) https://virtual.awsevents.com/media/1_hgw8wdl7
The serverless LAMP stack (Ben Smith) https://virtual.awsevents.com/media/1_ajbfgmdl
Becoming proficient with serverless application observability (Julian Wood) https://virtual.awsevents.com/media/1_t0qj8lcg
Resources for learning AWS https://ServerlessLand.com/learn
Cost is often the conversation starter when customers think about moving to the cloud. AWS helps lower costs for customers through its “pay only for what you use” pricing model, frequent price drops, and pricing model choice to support variable & stable workloads. In this session, you will learn about the financial considerations of owning and operating a traditional data center or managed hosting provider versus utilizing AWS. We will detail our TCO methodology and showcase cost comparisons for some common customer use-cases. We’ll also cover a few AWS cost optimization areas, including Spot and Reserved Instances, EC2 Auto Scaling, and consolidated billing.
Presenter:
Amit Sharma, Solution Architect, Amazon Internet Services
Krishnenjit Roy, Director IT Operations, Freshdesk
PHP Frameworks: I want to break free (IPC Berlin 2024)Ralf Eggert
In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development.
This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Jeffrey Haguewood
Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows.
We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases.
This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams.
Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...UiPathCommunity
💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™:
See how to accelerate model training and optimize model performance with active learning
Learn about the latest enhancements to out-of-the-box document processing – with little to no training required
Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages
This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath.
Speakers:
👨🏫 Andras Palfi, Senior Product Manager, UiPath
👩🏫 Lenka Dulovicova, Product Program Manager, UiPath
UiPath Test Automation using UiPath Test Suite series, part 4DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 4. In this session, we will cover Test Manager overview along with SAP heatmap.
The UiPath Test Manager overview with SAP heatmap webinar offers a concise yet comprehensive exploration of the role of a Test Manager within SAP environments, coupled with the utilization of heatmaps for effective testing strategies.
Participants will gain insights into the responsibilities, challenges, and best practices associated with test management in SAP projects. Additionally, the webinar delves into the significance of heatmaps as a visual aid for identifying testing priorities, areas of risk, and resource allocation within SAP landscapes. Through this session, attendees can expect to enhance their understanding of test management principles while learning practical approaches to optimize testing processes in SAP environments using heatmap visualization techniques
What will you get from this session?
1. Insights into SAP testing best practices
2. Heatmap utilization for testing
3. Optimization of testing processes
4. Demo
Topics covered:
Execution from the test manager
Orchestrator execution result
Defect reporting
SAP heatmap example with demo
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
Transcript: Selling digital books in 2024: Insights from industry leaders - T...BookNet Canada
The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more.
Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/
Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.
Essentials of Automations: Optimizing FME Workflows with ParametersSafe Software
Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place.
Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects.
Here’s what you’ll gain:
- Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows.
- Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy.
- Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency.
- Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity.
We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic.
Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.
DevOps and Testing slides at DASA ConnectKari Kakkonen
My and Rik Marselis slides at 30.5.2024 DASA Connect conference. We discuss about what is testing, then what is agile testing and finally what is Testing in DevOps. Finally we had lovely workshop with the participants trying to find out different ways to think about quality and testing in different parts of the DevOps infinity loop.
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
"Impact of front-end architecture on development cost", Viktor TurskyiFwdays
I have heard many times that architecture is not important for the front-end. Also, many times I have seen how developers implement features on the front-end just following the standard rules for a framework and think that this is enough to successfully launch the project, and then the project fails. How to prevent this and what approach to choose? I have launched dozens of complex projects and during the talk we will analyze which approaches have worked for me and which have not.
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Tobias Schneck
As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other?
Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024
AWS Serverless API Management - Meetup
1. Serverless
API Management
b y S a m u e l V a n d e c a s t e e l e & S t e f a n D e W a n d e l e i r
C o n t a c t u s
• LinkedIn: www.linkedin.com/in/samuelvandecasteele/
• Mail: samuel.vandecasteele@i8c.be
• Company: www.i8c.be
2. 3. Serverless API Management on AWS
The AWS reference architecture
Use case - Timelapse Service
The basics - Validation | Transformation | Throttling | Caching | Security
Monetization
DevOps
API Portal
5. Event ‘AsyncAPI’ Management
1. Enterprise Integration
What is Enterprise Integration and who are we?
4. What about other Vendors?
2. API Management
APIs – API Management – API Management platforms
6. Conclusions
3. 1.Introduction
IntegrationArchitectures
E n t e r p r i s e A p p l i c a t i o n I n t e g ra t i o n ( E A I )
S e r v i c e O r i e n t e d A r c h i t e c t u r e s ( S O A )
A P I M a n a g e m e n t
B 2 B I n t e g ra t i o n
Io T
Re a l - t i m e e v e n t p r o c e s s i n g
When we talk about integration
11. We cover all aspects of building the bridges
Consultancy
Assessments
Architectural Blueprinting
Software Selection
Implementation
Design
Build
Test
Deploy
Managed Services
Support & Monitoring
Outsourcing
Hosting
Training & Lectures
19. Our solutions facilitates comunication and exchange of information in your business processes.
24
API MANAGEMENT
“API Management is the process of publishing, promoting and overseeing
APIs in a secure, scalable environment”
(techtarget.com)
20. Our solutions facilitates comunication and exchange of information in your business processes.
25
API MANAGEMENT
“API Management is the process of publishing, promoting and overseeing
APIs in a secure, scalable environment”
(techtarget.com)
Continuous Integration/Delivery
API Registration
Monitoring
Analysis
Security
Access Management
Quality of Service
21. Provision Publish
API Management
API MANAGEMENT TOOLSET
26
API Gateway
Security Transform
Quota
Protocol
Switching
Caching
Metrics
Collection
Analytics
API
Endpoints
µService
Collect
APP
Java AS
Creates
Registers
Uses Invokes
Manages
Manage
User
Developer API Manager
API
Portal
API
Manager
fn(..)
22. OpenAPI –
specification file
• Most APIs are
REST(like)/json
• The API can be described
through a standardized file:
openAPI
• Latest version is v3, but v2 is
still more commonly used
(aka swagger)
28. S e r v e r l e s s A P I M a n a g e m e n t - T h e b a s i c s
Define your API
Manual via AWS Console
Via
and/or Cloudformation
29. S e r v e r l e s s A P I M a n a g e m e n t - T h e b a s i c s
Validation
Validates query parameters, headers & body (JSON Schema v4)
• Lambda only invoked with valid requests
• More Secure
• Cost-effective
• Currently no ‘SQL injection’, ‘Document depth detection’, ‘non
json-based validations’, …
30. S e r v e r l e s s A P I M a n a g e m e n t - T h e b a s i c s
Security
Open ID Connect (implicit) flow
1. Authenticate against Cognito
2. ID token and access token creation
3. API Call using token
4. Validate token
5. Verify oauth scope
6. Route request with JWT Token
1
2
3
4
5
6
31. S e r v e r l e s s A P I M a n a g e m e n t - T h e b a s i c s
Security
Cognito
• User pool
• Federated identities (Social, SAML, OIDC)
Lambda Authorizer
• To any IdP service
IAM
(API Key)
32. S e r v e r l e s s A P I M a n a g e m e n t - T h e b a s i c s
Transformation
Request/Response transformation
• Apache Velocity Template Language (VTL)
Transformation in Lambda
• Advanced transformation (REST to SOAP)
33. S e r v e r l e s s A P I M a n a g e m e n t - T h e b a s i c s
Caching
Customize Caching Key
• Resource id, header, query param, …
Customize (TTL) Time to live
Not Serverless
Offload your backend!
34. S e r v e r l e s s A P I M a n a g e m e n t - T h e b a s i c s
Throttling
API Key level Method level Account level
Protect your backend!
and your costs!
35. S e r v e r l e s s A P I M a n a g e m e n t - T h e b a s i c s
Monetize your API
36. Go the extra mile!
Go the extra secure mile with WAF integration
XSS
DDoS SQL injection
IP filtering
38. CI/CD & INFRASTRUCTURE AS CODE
S e r v e r l e s s A P I M a n a g e m e n t - D e v O p s
39. S e r v e r l e s s A P I M a n a g e m e n t - D e v O p s
Versioning
AWS API Gateway does not dictate your Versioning Strategy
but does not provide a guidance neither!
https://v2.i8c.be/timelapse/*
https://timelapse.i8c.be/v2/*
https://api.i8c.be/timelapse/v2/*
…
Custom domains, base
path mappings & stage
variables
Major version = new API definition in API Gateway = own CD pipeline
40. ( o u t o f t h e b o x ) REAL-TIME MONITORING
S e r v e r l e s s A P I M a n a g e m e n t - D e v O p s
41. Organization
Service teams are now able to manage all aspects of API Management
but what about enterprise compliance enforcement?
CloudFormation & OpenAPI analysis tools to verify if all
required enterprise policies are applied?
Internal auditing of API by central architecture team?
S e r v e r l e s s A P I M a n a g e m e n t - D e v O p s
43. AW S S e r v e r l e s s A P I M a n a g e m e n t
API Portal
44. AW S S e r v e r l e s s A P I M a n a g e m e n t
API Portal - gi t hub.c o m/aw sl abs/aw s-api -gat eway-devel o per-po r t al
45. Vendorlandscape
GARTNER ON AWS API MANAGEMENT
STRENGTHS
• Low-cost, efficient and performs at any
scale.
• Great integration with AWS PaaS offerings.
• High levels of user satisfaction
CAUTIONS
• Needs to extend its set of operational
policies
• Lacks ready-to-use developer API portal
WE ON AWS API MANAGEMENT
STRENGTHS
• Strong API Gateway offering. (for use-cases
where Portal is less/not important)
• Strong entry-point for event-driven
architectures
CAUTIONS
• Hybrid scenario’s
• Not for all enterprise scenarios
(SOAP/XML)
https://www.gartner.com/en/documents/3873383/magic-quadrant-for-full-life-cycle-api-management
51. Serverless
API Management
G et i n t o uc h!
s a m u e l . v a n d e c a s t e e l @ i 8 c . b e
s t e f a n . d e w a n d e l e i r @ i 8 c . b e
i n f o @ i 8 c . b e