SlideShare a Scribd company logo

Azure Spring Clean 2024 event - Azure API Management: Architecting for Performance and Security

Hamida Rebai Trabelsi
Hamida Rebai Trabelsi

Session tilte: Azure API Management: Architecting for Performance and Security Description: This session will provide a comprehensive deep dive into Azure API Management, focusing on optimizing API performance and security. It is designed for developers, architects, and IT professionals who want to leverage Azure's capabilities for efficient API management. The session will blend theoretical insights with practical demonstrations, highlighting how to architect APIs for optimal performance and robust security in the Azure environment.

Technology
1 of 17
Download to read offline
Azure Developers | APIs in Action
Hello! Instructor: Hamida Rebai Microsoft MVP , Microsoft Certified Trainer Docker Captain Cloud Solutions Architect More than 14 years experience in IT Thank you for joining me today https://twitter.com/rebaihamida https://www.linkedin.com/in/hamida-rebai-trabelsi/ rebai.hamida@gmail.com Blog: https://didourebai.medium.com/
Contents You will learn the following concepts: 1 Section 1 • The first topic we’ll cover here the API requirements and challenges ,and the different advantages of using an API management platform 2 Section 2 • This section present an overview of API Management and the advanced features 3 Section 3 • This section presents the build of a Robust, Secure, and Scalable APIs. 4 Section 4 • This section present the security best practices
• APIs play a crucial role in connecting applications and enabling seamless interactions. • To engage in the API economy effectively, addressing several requirements and challenges related to monitoring, managing, and securing APIs is imperative. This includes: API requirements and challenges Reuse Easy access Security Visibility Establishing API facades empowers IT organizations to maintain support for legacy backends.
Responsibility for Evolution: Companies publishing APIs must evolve them systematically. Developer Impact: Changes in APIs often require developers to rewrite programs, causing unnecessary disruptions. Simplified Facades: IT organizations use simpler facades to decouple internal implementation from the API consumer experience. Benefits of Facades: • Developer Independence: Simplified APIs allow changes in the underlying implementation without affecting developers' applications. • Legacy Support: Facades enable seamless transition from legacy APIs (XML, SOAP) to newer standards (JSON, REST) without recoding. • Justification for Investment: The efficiency gained through reuse and legacy support justifies investing in an API management platform. API Support: Decoupling through Facades
• API management Platform is a proxy between the API and the customer, partner or developer using the API. • Definition: The API management pertains to software facilitating API life cycle stages: planning, design, implementation, testing, deployment, operation, versioning, and retirement. • Purpose: Organizations utilize APIs to modernize architectures, integrate systems, services, and partners efficiently, and monetize data and services. • Benefits: API management platform aids in discovering, designing, building, managing, and securing APIs, irrespective of organizational size, location, or industry. • Advantages: Enhances composability, security, and business resilience, accelerating organizational growth. API management platform Challenges and requirements
Azure API Management Architecture and features The role of API management • API management provides core functions to ensure a successful API program through developer participation, business insight, analysis, security, and protection. • Each API consists of one or more operations, and each API can be added to one or more products. The system is made up of the following components: • API gateway (in Azure or Self-hosted gateway) • Azure portal • The Developer portal
Azure API Management Architecture and features Control plane Data plane Developer Portal User Plane Azure API Admin Portal Admin Plane – management Plane API Gateway API API API API Gateway API API API App Developers API Owner – Admin role monitoring policies (metrics) Hosted service implementations in Azure Self-Hosted On- Premises Service Implementations
Build of a Robust, Secure, and Scalable APIs Problem Importance of API Delivery Ensuring API Sustainability Role of API Providers Expectations from API Consumers Consequences of Poor API Delivery
Build of a Robust, Secure, and Scalable APIs Best practises and Consumer-Centric API Portfolio Excellence Consumer-Centric Approach Contrast with Provider-Centric Approach Provider-Centric Anti-Pattern Sustainable APIs
Security best practices Implement IAM and Security Configure Endpoint Protection Capabilities Implement API Mediation Configure Analytics and Reporting 1 2 3 4
Secure APIs in Azure API Management by using subscriptions or by using certificates? Subscription Keys or plans Access control policies Monitoring and analytics Certificate Management Certificates in Azure Key Vault Configure API Management Policies
Secure APIs by using subscriptions Subscription key scopes Scope Details All APIs Applies to every API accessible from the gateway Single API This scope applies to a single imported API and all of its endpoints Product A product is a collection of one or more APIs that you configure in API Management. You can assign APIs to more than one product. Products can have different access rules, usage quotas, and terms of use.
Applications that call protected APIs • Must include the key in every request • You can regenerate these subscription keys at any time. • Every subscription has two keys, a primary and a secondary. Secure APIs by using subscriptions Applications that call protected APIs
Keys can be passed in the request header, or as a query string in the URL. • The default header name is Ocp-Apim- Subscription-Key. • Use the developer portal to test out API calls Secure APIs by using subscriptions Call an API with the subscription key
Secure APIs by using certificates Certificates can be used to provide Transport Layer Security (TLS) mutual authentication between the client and the API gateway. You can configure the API Management gateway to allow only requests with certificates containing a specific thumbprint. The authorization at the gateway level is handled through inbound policies. 1 2 3
• Accepting client certificates in the Consumption tier • Certificate Authorization Policies • Check the thumbprint of a client certificate • Check the thumbprint against certificates uploaded to API Management • Check the issuer and subject of a client certificate Secure APIs by using certificates

Recommended

APIs In Action -Harnessing the Power of Azure API Management: Building Robust...
APIs In Action -Harnessing the Power of Azure API Management: Building Robust...APIs In Action -Harnessing the Power of Azure API Management: Building Robust...
APIs In Action -Harnessing the Power of Azure API Management: Building Robust...
Hamida Rebai Trabelsi
 
apidays LIVE Hong Kong 2021 - Headless API Management by Snehal Chakraborty, ...
apidays LIVE Hong Kong 2021 - Headless API Management by Snehal Chakraborty, ...apidays LIVE Hong Kong 2021 - Headless API Management by Snehal Chakraborty, ...
apidays LIVE Hong Kong 2021 - Headless API Management by Snehal Chakraborty, ...
apidays
 
API Economy - Cuomo
API Economy - Cuomo API Economy - Cuomo
API Economy - Cuomo
Prolifics
 
Manage your ap is securely and easily ibm apim 4.0
Manage your ap is securely and easily ibm apim 4.0Manage your ap is securely and easily ibm apim 4.0
Manage your ap is securely and easily ibm apim 4.0
sflynn073
 
Day 1 axway apim-training
Day 1 axway apim-trainingDay 1 axway apim-training
Day 1 axway apim-training
Nextel Telecomunicações
 
Api manager
Api managerApi manager
Api manager
chaitanya581
 
What is Apigee.pdf
What is Apigee.pdfWhat is Apigee.pdf
What is Apigee.pdf
VishnuGone
 
CA API Developer Portal
CA API Developer PortalCA API Developer Portal
CA API Developer Portal
James Farley-Sutton
 

Recommended

APIs In Action -Harnessing the Power of Azure API Management: Building Robust...
APIs In Action -Harnessing the Power of Azure API Management: Building Robust...APIs In Action -Harnessing the Power of Azure API Management: Building Robust...
APIs In Action -Harnessing the Power of Azure API Management: Building Robust...
Hamida Rebai Trabelsi
 
apidays LIVE Hong Kong 2021 - Headless API Management by Snehal Chakraborty, ...
apidays LIVE Hong Kong 2021 - Headless API Management by Snehal Chakraborty, ...apidays LIVE Hong Kong 2021 - Headless API Management by Snehal Chakraborty, ...
apidays LIVE Hong Kong 2021 - Headless API Management by Snehal Chakraborty, ...
apidays
 
API Economy - Cuomo
API Economy - Cuomo API Economy - Cuomo
API Economy - Cuomo
Prolifics
 
Manage your ap is securely and easily ibm apim 4.0
Manage your ap is securely and easily ibm apim 4.0Manage your ap is securely and easily ibm apim 4.0
Manage your ap is securely and easily ibm apim 4.0
sflynn073
 
Day 1 axway apim-training
Day 1 axway apim-trainingDay 1 axway apim-training
Day 1 axway apim-training
Nextel Telecomunicações
 
Api manager
Api managerApi manager
Api manager
chaitanya581
 
What is Apigee.pdf
What is Apigee.pdfWhat is Apigee.pdf
What is Apigee.pdf
VishnuGone
 
CA API Developer Portal
CA API Developer PortalCA API Developer Portal
CA API Developer Portal
James Farley-Sutton
 
#APIOps- Agile API Development powered by API Connect
#APIOps- Agile API Development powered by API Connect#APIOps- Agile API Development powered by API Connect
#APIOps- Agile API Development powered by API Connect
pramodvallanur
 
WSO2 API Platform: Vision and Roadmap
WSO2 API Platform: Vision and RoadmapWSO2 API Platform: Vision and Roadmap
WSO2 API Platform: Vision and Roadmap
WSO2
 
Gravitee API Management - Ahmet AYDIN
Gravitee API Management - Ahmet AYDIN Gravitee API Management - Ahmet AYDIN
Gravitee API Management - Ahmet AYDIN
kloia
 
Mule Meetup Calgary- API Governance & Conformance.pdf
Mule Meetup Calgary- API Governance & Conformance.pdfMule Meetup Calgary- API Governance & Conformance.pdf
Mule Meetup Calgary- API Governance & Conformance.pdf
NithaJoseph4
 
Lessons in Transforming the Enterprise to an API Platform
Lessons in Transforming the Enterprise to an API PlatformLessons in Transforming the Enterprise to an API Platform
Lessons in Transforming the Enterprise to an API Platform
LaunchAny
 
Grand tour of Azure API Management.pdf
Grand tour of Azure API Management.pdfGrand tour of Azure API Management.pdf
Grand tour of Azure API Management.pdf
Sherman37
 
Extend soa with api management Doag18
Extend soa with api management Doag18Extend soa with api management Doag18
Extend soa with api management Doag18
Vinay Kumar
 
Global Azure 2022 - Architecting Modern Serverless APIs with Azure Functions ...
Global Azure 2022 - Architecting Modern Serverless APIs with Azure Functions ...Global Azure 2022 - Architecting Modern Serverless APIs with Azure Functions ...
Global Azure 2022 - Architecting Modern Serverless APIs with Azure Functions ...
Callon Campbell
 
Creating an app ecosystem for your APIs
Creating an app ecosystem for your APIsCreating an app ecosystem for your APIs
Creating an app ecosystem for your APIs
WaveMaker, Inc.
 
Managing the Complexity of Microservices Deployments
Managing the Complexity of Microservices DeploymentsManaging the Complexity of Microservices Deployments
Managing the Complexity of Microservices Deployments
Apigee | Google Cloud
 
Application Development with API Manager
Application Development with API ManagerApplication Development with API Manager
Application Development with API Manager
WSO2
 
apidays LIVE Hong Kong - Orchestrating APIs at Scale by Hieu Nguyen Nhu
apidays LIVE Hong Kong - Orchestrating APIs at Scale by Hieu Nguyen Nhuapidays LIVE Hong Kong - Orchestrating APIs at Scale by Hieu Nguyen Nhu
apidays LIVE Hong Kong - Orchestrating APIs at Scale by Hieu Nguyen Nhu
apidays
 
Extend soa with api management spoug- Madrid
Extend soa with api management spoug- MadridExtend soa with api management spoug- Madrid
Extend soa with api management spoug- Madrid
Vinay Kumar
 
What is APIGEE? What are the benefits of APIGEE?
What is APIGEE? What are the benefits of APIGEE?What is APIGEE? What are the benefits of APIGEE?
What is APIGEE? What are the benefits of APIGEE?
IQ Online Training
 
Crafting an API Strategy with an API Marketplace
Crafting an API Strategy with an API MarketplaceCrafting an API Strategy with an API Marketplace
Crafting an API Strategy with an API Marketplace
WSO2
 
API Development – Complete Guide to Developing Robust APIs
API Development – Complete Guide to Developing Robust APIsAPI Development – Complete Guide to Developing Robust APIs
API Development – Complete Guide to Developing Robust APIs
Cerebrum Infotech
 
Introduction to Apigee Presentation.pptx
Introduction to Apigee Presentation.pptxIntroduction to Apigee Presentation.pptx
Introduction to Apigee Presentation.pptx
Knoldus Inc.
 
Patterns for automating API delivery. API conference
Patterns for automating API delivery. API conferencePatterns for automating API delivery. API conference
Patterns for automating API delivery. API conference
ssuser9e7c64
 
New ThousandEyes Product Features and Release Highlights: March 2024
New ThousandEyes Product Features and Release Highlights: March 2024New ThousandEyes Product Features and Release Highlights: March 2024
New ThousandEyes Product Features and Release Highlights: March 2024
ThousandEyes
 
Transformation through the API
Transformation through the APITransformation through the API
Transformation through the API
Alex Danvy
 
Rome .NET Conference 2024 - Remote Conference
Rome .NET Conference 2024 - Remote ConferenceRome .NET Conference 2024 - Remote Conference
Rome .NET Conference 2024 - Remote Conference
Hamida Rebai Trabelsi
 
Streamlining Workflows: Unleashing Automation with Azure and Power Automate
Streamlining Workflows: Unleashing Automation with Azure and Power AutomateStreamlining Workflows: Unleashing Automation with Azure and Power Automate
Streamlining Workflows: Unleashing Automation with Azure and Power Automate
Hamida Rebai Trabelsi
 

More Related Content

Similar to Azure Spring Clean 2024 event - Azure API Management: Architecting for Performance and Security

Extend soa with api management Doag18
Extend soa with api management Doag18Extend soa with api management Doag18
Extend soa with api management Doag18
Vinay Kumar
 
Application Development with API Manager
Application Development with API ManagerApplication Development with API Manager
Application Development with API Manager
WSO2
 

Similar to Azure Spring Clean 2024 event - Azure API Management: Architecting for Performance and Security (20)

#APIOps- Agile API Development powered by API Connect
#APIOps- Agile API Development powered by API Connect#APIOps- Agile API Development powered by API Connect
#APIOps- Agile API Development powered by API Connect
 
WSO2 API Platform: Vision and Roadmap
WSO2 API Platform: Vision and RoadmapWSO2 API Platform: Vision and Roadmap
WSO2 API Platform: Vision and Roadmap
 
Gravitee API Management - Ahmet AYDIN
Gravitee API Management - Ahmet AYDIN Gravitee API Management - Ahmet AYDIN
Gravitee API Management - Ahmet AYDIN
 
Mule Meetup Calgary- API Governance & Conformance.pdf
Mule Meetup Calgary- API Governance & Conformance.pdfMule Meetup Calgary- API Governance & Conformance.pdf
Mule Meetup Calgary- API Governance & Conformance.pdf
 
Lessons in Transforming the Enterprise to an API Platform
Lessons in Transforming the Enterprise to an API PlatformLessons in Transforming the Enterprise to an API Platform
Lessons in Transforming the Enterprise to an API Platform
 
Grand tour of Azure API Management.pdf
Grand tour of Azure API Management.pdfGrand tour of Azure API Management.pdf
Grand tour of Azure API Management.pdf
 
Extend soa with api management Doag18
Extend soa with api management Doag18Extend soa with api management Doag18
Extend soa with api management Doag18
 
Global Azure 2022 - Architecting Modern Serverless APIs with Azure Functions ...
Global Azure 2022 - Architecting Modern Serverless APIs with Azure Functions ...Global Azure 2022 - Architecting Modern Serverless APIs with Azure Functions ...
Global Azure 2022 - Architecting Modern Serverless APIs with Azure Functions ...
 
Creating an app ecosystem for your APIs
Creating an app ecosystem for your APIsCreating an app ecosystem for your APIs
Creating an app ecosystem for your APIs
 
Managing the Complexity of Microservices Deployments
Managing the Complexity of Microservices DeploymentsManaging the Complexity of Microservices Deployments
Managing the Complexity of Microservices Deployments
 
Application Development with API Manager
Application Development with API ManagerApplication Development with API Manager
Application Development with API Manager
 
apidays LIVE Hong Kong - Orchestrating APIs at Scale by Hieu Nguyen Nhu
apidays LIVE Hong Kong - Orchestrating APIs at Scale by Hieu Nguyen Nhuapidays LIVE Hong Kong - Orchestrating APIs at Scale by Hieu Nguyen Nhu
apidays LIVE Hong Kong - Orchestrating APIs at Scale by Hieu Nguyen Nhu
 
Extend soa with api management spoug- Madrid
Extend soa with api management spoug- MadridExtend soa with api management spoug- Madrid
Extend soa with api management spoug- Madrid
 
What is APIGEE? What are the benefits of APIGEE?
What is APIGEE? What are the benefits of APIGEE?What is APIGEE? What are the benefits of APIGEE?
What is APIGEE? What are the benefits of APIGEE?
 
Crafting an API Strategy with an API Marketplace
Crafting an API Strategy with an API MarketplaceCrafting an API Strategy with an API Marketplace
Crafting an API Strategy with an API Marketplace
 
API Development – Complete Guide to Developing Robust APIs
API Development – Complete Guide to Developing Robust APIsAPI Development – Complete Guide to Developing Robust APIs
API Development – Complete Guide to Developing Robust APIs
 
Introduction to Apigee Presentation.pptx
Introduction to Apigee Presentation.pptxIntroduction to Apigee Presentation.pptx
Introduction to Apigee Presentation.pptx
 
Patterns for automating API delivery. API conference
Patterns for automating API delivery. API conferencePatterns for automating API delivery. API conference
Patterns for automating API delivery. API conference
 
New ThousandEyes Product Features and Release Highlights: March 2024
New ThousandEyes Product Features and Release Highlights: March 2024New ThousandEyes Product Features and Release Highlights: March 2024
New ThousandEyes Product Features and Release Highlights: March 2024
 
Transformation through the API
Transformation through the APITransformation through the API
Transformation through the API
 

More from Hamida Rebai Trabelsi

Build containerized application using Docker and Azure.pdf
Build containerized application using Docker and Azure.pdfBuild containerized application using Docker and Azure.pdf
Build containerized application using Docker and Azure.pdf
Hamida Rebai Trabelsi
 
TechDayConf Edition 1 - 2020
TechDayConf Edition 1 - 2020TechDayConf Edition 1 - 2020
TechDayConf Edition 1 - 2020
Hamida Rebai Trabelsi
 
C# Fundamentals for Absolute Beginners
C# Fundamentals for Absolute BeginnersC# Fundamentals for Absolute Beginners
C# Fundamentals for Absolute Beginners
Hamida Rebai Trabelsi
 
Preparing for Exam MTA 98-375 HTML5 App Development
Preparing for Exam MTA 98-375 HTML5 App DevelopmentPreparing for Exam MTA 98-375 HTML5 App Development
Preparing for Exam MTA 98-375 HTML5 App Development
Hamida Rebai Trabelsi
 
Microsoft Azure Fundamentals Websites
Microsoft Azure Fundamentals WebsitesMicrosoft Azure Fundamentals Websites
Microsoft Azure Fundamentals Websites
Hamida Rebai Trabelsi
 

More from Hamida Rebai Trabelsi (20)

Rome .NET Conference 2024 - Remote Conference
Rome .NET Conference 2024 - Remote ConferenceRome .NET Conference 2024 - Remote Conference
Rome .NET Conference 2024 - Remote Conference
 
Streamlining Workflows: Unleashing Automation with Azure and Power Automate
Streamlining Workflows: Unleashing Automation with Azure and Power AutomateStreamlining Workflows: Unleashing Automation with Azure and Power Automate
Streamlining Workflows: Unleashing Automation with Azure and Power Automate
 
Configurer GitHub Actions avec Docker et DotNET 8.pdf
Configurer GitHub Actions avec Docker et DotNET 8.pdfConfigurer GitHub Actions avec Docker et DotNET 8.pdf
Configurer GitHub Actions avec Docker et DotNET 8.pdf
 
Build containerized application using Docker and Azure.pdf
Build containerized application using Docker and Azure.pdfBuild containerized application using Docker and Azure.pdf
Build containerized application using Docker and Azure.pdf
 
Conteneuriser une application .NET 8 en utilisant Docker et Azure.pdf
Conteneuriser une application .NET 8 en utilisant Docker et Azure.pdfConteneuriser une application .NET 8 en utilisant Docker et Azure.pdf
Conteneuriser une application .NET 8 en utilisant Docker et Azure.pdf
 
TechDayConf Edition 1 - 2020
TechDayConf Edition 1 - 2020TechDayConf Edition 1 - 2020
TechDayConf Edition 1 - 2020
 
Les nouveautés de Xamarin et Visual Studio App Center
Les nouveautés de Xamarin et Visual Studio App CenterLes nouveautés de Xamarin et Visual Studio App Center
Les nouveautés de Xamarin et Visual Studio App Center
 
Xamarin notes- en français
Xamarin notes- en françaisXamarin notes- en français
Xamarin notes- en français
 
Advices before starting a project
Advices before starting a projectAdvices before starting a project
Advices before starting a project
 
White Paper : ASP.NET Core AngularJs 2 and Prime
White Paper : ASP.NET Core AngularJs 2 and PrimeWhite Paper : ASP.NET Core AngularJs 2 and Prime
White Paper : ASP.NET Core AngularJs 2 and Prime
 
Certification Digital Active
Certification Digital ActiveCertification Digital Active
Certification Digital Active
 
Resume-REBAI.json
Resume-REBAI.jsonResume-REBAI.json
Resume-REBAI.json
 
Présentation- Communauté
Présentation- CommunautéPrésentation- Communauté
Présentation- Communauté
 
Detailed-Resume-Rebai-Hamida
Detailed-Resume-Rebai-HamidaDetailed-Resume-Rebai-Hamida
Detailed-Resume-Rebai-Hamida
 
CV REBAI Hamida
CV REBAI HamidaCV REBAI Hamida
CV REBAI Hamida
 
TechWadi-MENA-Guide-to-GES-2016-vf
TechWadi-MENA-Guide-to-GES-2016-vfTechWadi-MENA-Guide-to-GES-2016-vf
TechWadi-MENA-Guide-to-GES-2016-vf
 
C# Fundamentals for Absolute Beginners
C# Fundamentals for Absolute BeginnersC# Fundamentals for Absolute Beginners
C# Fundamentals for Absolute Beginners
 
Preparing for Exam MTA 98-375 HTML5 App Development
Preparing for Exam MTA 98-375 HTML5 App DevelopmentPreparing for Exam MTA 98-375 HTML5 App Development
Preparing for Exam MTA 98-375 HTML5 App Development
 
Microsoft Azure Fundamentals
Microsoft Azure FundamentalsMicrosoft Azure Fundamentals
Microsoft Azure Fundamentals
 
Microsoft Azure Fundamentals Websites
Microsoft Azure Fundamentals WebsitesMicrosoft Azure Fundamentals Websites
Microsoft Azure Fundamentals Websites
 

Recently uploaded

Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Victor Rentea
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
UiPathCommunity
 
The Zero-ETL Approach: Enhancing Data Agility and Insight
The Zero-ETL Approach: Enhancing Data Agility and InsightThe Zero-ETL Approach: Enhancing Data Agility and Insight
The Zero-ETL Approach: Enhancing Data Agility and Insight
Safe Software
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Safe Software
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Orbitshub
 
ChatGPT and Beyond - Elevating DevOps Productivity
ChatGPT and Beyond - Elevating DevOps ProductivityChatGPT and Beyond - Elevating DevOps Productivity
ChatGPT and Beyond - Elevating DevOps Productivity
VictorSzoltysek
 

Recently uploaded (20)

Decarbonising Commercial Real Estate: The Role of Operational Performance
Decarbonising Commercial Real Estate: The Role of Operational PerformanceDecarbonising Commercial Real Estate: The Role of Operational Performance
Decarbonising Commercial Real Estate: The Role of Operational Performance
 
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024Finding Java's Hidden Performance Traps @ DevoxxUK 2024
Finding Java's Hidden Performance Traps @ DevoxxUK 2024
 
Design and Development of a Provenance Capture Platform for Data Science
Design and Development of a Provenance Capture Platform for Data ScienceDesign and Development of a Provenance Capture Platform for Data Science
Design and Development of a Provenance Capture Platform for Data Science
 
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data DiscoveryTrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
TrustArc Webinar - Unlock the Power of AI-Driven Data Discovery
 
AWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of TerraformAWS Community Day CPH - Three problems of Terraform
AWS Community Day CPH - Three problems of Terraform
 
Exploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with MilvusExploring Multimodal Embeddings with Milvus
Exploring Multimodal Embeddings with Milvus
 
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 AmsterdamDEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 
The Zero-ETL Approach: Enhancing Data Agility and Insight
The Zero-ETL Approach: Enhancing Data Agility and InsightThe Zero-ETL Approach: Enhancing Data Agility and Insight
The Zero-ETL Approach: Enhancing Data Agility and Insight
 
CNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In PakistanCNIC Information System with Pakdata Cf In Pakistan
CNIC Information System with Pakdata Cf In Pakistan
 
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FMECloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME
 
TEST BANK For Principles of Anatomy and Physiology, 16th Edition by Gerard J....
TEST BANK For Principles of Anatomy and Physiology, 16th Edition by Gerard J....TEST BANK For Principles of Anatomy and Physiology, 16th Edition by Gerard J....
TEST BANK For Principles of Anatomy and Physiology, 16th Edition by Gerard J....
 
Stronger Together: Developing an Organizational Strategy for Accessible Desig...
Stronger Together: Developing an Organizational Strategy for Accessible Desig...Stronger Together: Developing an Organizational Strategy for Accessible Desig...
Stronger Together: Developing an Organizational Strategy for Accessible Desig...
 
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin WoodPolkadot JAM Slides - Token2049 - By Dr. Gavin Wood
Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood
 
Platformless Horizons for Digital Adaptability
Platformless Horizons for Digital AdaptabilityPlatformless Horizons for Digital Adaptability
Platformless Horizons for Digital Adaptability
 
Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)Introduction to Multilingual Retrieval Augmented Generation (RAG)
Introduction to Multilingual Retrieval Augmented Generation (RAG)
 
JohnPollard-hybrid-app-RailsConf2024.pptx
JohnPollard-hybrid-app-RailsConf2024.pptxJohnPollard-hybrid-app-RailsConf2024.pptx
JohnPollard-hybrid-app-RailsConf2024.pptx
 
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdfRising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf
 
ChatGPT and Beyond - Elevating DevOps Productivity
ChatGPT and Beyond - Elevating DevOps ProductivityChatGPT and Beyond - Elevating DevOps Productivity
ChatGPT and Beyond - Elevating DevOps Productivity
 
Quantum Leap in Next-Generation Computing
Quantum Leap in Next-Generation ComputingQuantum Leap in Next-Generation Computing
Quantum Leap in Next-Generation Computing
 

Azure Spring Clean 2024 event - Azure API Management: Architecting for Performance and Security

  • 1. Azure Developers | APIs in Action
  • 2. Hello! Instructor: Hamida Rebai Microsoft MVP , Microsoft Certified Trainer Docker Captain Cloud Solutions Architect More than 14 years experience in IT Thank you for joining me today https://twitter.com/rebaihamida https://www.linkedin.com/in/hamida-rebai-trabelsi/ rebai.hamida@gmail.com Blog: https://didourebai.medium.com/
  • 3. Contents You will learn the following concepts: 1 Section 1 • The first topic we’ll cover here the API requirements and challenges ,and the different advantages of using an API management platform 2 Section 2 • This section present an overview of API Management and the advanced features 3 Section 3 • This section presents the build of a Robust, Secure, and Scalable APIs. 4 Section 4 • This section present the security best practices
  • 4. • APIs play a crucial role in connecting applications and enabling seamless interactions. • To engage in the API economy effectively, addressing several requirements and challenges related to monitoring, managing, and securing APIs is imperative. This includes: API requirements and challenges Reuse Easy access Security Visibility Establishing API facades empowers IT organizations to maintain support for legacy backends.
  • 5. Responsibility for Evolution: Companies publishing APIs must evolve them systematically. Developer Impact: Changes in APIs often require developers to rewrite programs, causing unnecessary disruptions. Simplified Facades: IT organizations use simpler facades to decouple internal implementation from the API consumer experience. Benefits of Facades: • Developer Independence: Simplified APIs allow changes in the underlying implementation without affecting developers' applications. • Legacy Support: Facades enable seamless transition from legacy APIs (XML, SOAP) to newer standards (JSON, REST) without recoding. • Justification for Investment: The efficiency gained through reuse and legacy support justifies investing in an API management platform. API Support: Decoupling through Facades
  • 6. • API management Platform is a proxy between the API and the customer, partner or developer using the API. • Definition: The API management pertains to software facilitating API life cycle stages: planning, design, implementation, testing, deployment, operation, versioning, and retirement. • Purpose: Organizations utilize APIs to modernize architectures, integrate systems, services, and partners efficiently, and monetize data and services. • Benefits: API management platform aids in discovering, designing, building, managing, and securing APIs, irrespective of organizational size, location, or industry. • Advantages: Enhances composability, security, and business resilience, accelerating organizational growth. API management platform Challenges and requirements
  • 7. Azure API Management Architecture and features The role of API management • API management provides core functions to ensure a successful API program through developer participation, business insight, analysis, security, and protection. • Each API consists of one or more operations, and each API can be added to one or more products. The system is made up of the following components: • API gateway (in Azure or Self-hosted gateway) • Azure portal • The Developer portal
  • 8. Azure API Management Architecture and features Control plane Data plane Developer Portal User Plane Azure API Admin Portal Admin Plane – management Plane API Gateway API API API API Gateway API API API App Developers API Owner – Admin role monitoring policies (metrics) Hosted service implementations in Azure Self-Hosted On- Premises Service Implementations
  • 9. Build of a Robust, Secure, and Scalable APIs Problem Importance of API Delivery Ensuring API Sustainability Role of API Providers Expectations from API Consumers Consequences of Poor API Delivery
  • 10. Build of a Robust, Secure, and Scalable APIs Best practises and Consumer-Centric API Portfolio Excellence Consumer-Centric Approach Contrast with Provider-Centric Approach Provider-Centric Anti-Pattern Sustainable APIs
  • 11. Security best practices Implement IAM and Security Configure Endpoint Protection Capabilities Implement API Mediation Configure Analytics and Reporting 1 2 3 4
  • 12. Secure APIs in Azure API Management by using subscriptions or by using certificates? Subscription Keys or plans Access control policies Monitoring and analytics Certificate Management Certificates in Azure Key Vault Configure API Management Policies
  • 13. Secure APIs by using subscriptions Subscription key scopes Scope Details All APIs Applies to every API accessible from the gateway Single API This scope applies to a single imported API and all of its endpoints Product A product is a collection of one or more APIs that you configure in API Management. You can assign APIs to more than one product. Products can have different access rules, usage quotas, and terms of use.
  • 14. Applications that call protected APIs • Must include the key in every request • You can regenerate these subscription keys at any time. • Every subscription has two keys, a primary and a secondary. Secure APIs by using subscriptions Applications that call protected APIs
  • 15. Keys can be passed in the request header, or as a query string in the URL. • The default header name is Ocp-Apim- Subscription-Key. • Use the developer portal to test out API calls Secure APIs by using subscriptions Call an API with the subscription key
  • 16. Secure APIs by using certificates Certificates can be used to provide Transport Layer Security (TLS) mutual authentication between the client and the API gateway. You can configure the API Management gateway to allow only requests with certificates containing a specific thumbprint. The authorization at the gateway level is handled through inbound policies. 1 2 3
  • 17. • Accepting client certificates in the Consumption tier • Certificate Authorization Policies • Check the thumbprint of a client certificate • Check the thumbprint against certificates uploaded to API Management • Check the issuer and subject of a client certificate Secure APIs by using certificates