Download pptx - #oowBR - Como gerenciar APIs na Era Digital, Daniel Amadei

Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |

API Platform Cloud ServicePower your APIs Everywhere

Robert WunderlichSr. Principal Product Manager

Daniel AmadeiPrincipal Sales Consultant

https://www.linkedin.com/in/wunderlich

Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | Oracle Confidential – Internal/Restricted/Highly Restricted 3

Safe Harbor StatementThe following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle’s products remains at the sole discretion of Oracle.


API Platform – Core Value Proposition


Empower enterprises to maximize the benefit of APIs • Keep unwanted people & robots out of your systems– Authorization and Authentication– Threat Protection

• Enable new consumers without coding or configuration– Plan Driven Entitlements– Interface and Volume Scoping– Routing

• Understand what is happening with your APIs– Discovery, Usage, and Concerns– History


API Platform – Architecture


Management Service

GatewaysGatewaysGateways

APIs

Integration

Amazon

OracleServices

DMZ (Optional)

Cloud or On-Premise

Management PortalDeveloper Portal

Applications

API Platform Architecture

Custom


Management Service


APIs

SOA

JCS

ICSServices

DMZ (Optional)

Oracle Cloud or On-Premise

Management Portal

Applications


Custom

Developer Portal

Cloud or On-Premise

On-Premise• DMZ, GZ

Cloud• Oracle• Amazon• Other


Management Service


APIs

SOA

JCS

ICSServices

DMZ (Optional)

Cloud or On-Premise

Management Portal

Applications


Custom

Developer Portal

APIs

DMZ (Optional)


Cloud StatePolicies• Java• Groovy• Config.

Identity• WLS Auth.• Custom


Management Service

Gateway Topologies

DMZ A – A1(node)

DMZ A – A2(node)

LB A

GZ B – B1(node)

GZ B – B2(node)

LB B

LB AWS

AWS OR 1(node)

AWS OR 2(node)

AWS VA 1(node)

AWS VA 2(node)

DMZ Z – Z1(node)

DMZ Z – Z2(node)

LB Z (DR)

GZ X – X1(node)

GZ X – X2(node)

LB X (DR)

Production GZ(logical GW)

Production DMZ(logical GW)

Production AWS (logical GW)

DEV Team A(logical GW)

DEV John(logical GW)

QA UAT(logical GW) OPC Dev B

(node)

OPC Dev A(node)

OPC Dev C(node)

OPC Dev D(node)

OPC Dev E(node)

OPC QA 1(node)


Management Service


APIs

Integration

Amazon

OracleServices

DMZ (Optional)

Cloud or On-Premise

Management PortalDeveloper Portal

Applications


Custom


Management Service


APIs

SOA

JCS

ICSServices

DMZ (Optional)

Cloud or On-Premise

Management Portal

Applications


Custom

Developer Portal

Management Service

Security• Roles• Grants

APIs• Automation• Extension• Process

Identity• IDCS• Federation


Management Service


APIs

SOA

JCS

ICSServices

DMZ (Optional)

Cloud or On-Premise

Management Portal

Applications


Custom

Developer Portal Management Portal

UI• JavaScript Policies• Oracle JET• HATEOAS Driven


Management Service


APIs

SOA

JCS

ICSServices

DMZ (Optional)

Cloud or On-Premise

Management Portal

Applications


Custom

Developer Portal

Style• Custom CSS• Custom Text

Extend• JQuery

Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |15

Application BaaS Firewall API Gateway Integration Backend Service

API Platform Gateway Placement

LB

IDMOauthMonitoring BI/Analytics

Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |16

Application BaaS Firewall API Gateway Integration Backend Service

API Platform Gateway Placement

LB

IDMOauthMonitoring BI/Analytics

SecurityAgilityAnalytics

API Gateway

Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | 17

Primary Objects

Instances of Objects


States or Sub-Types of Relationship

Type

s of R

elati

onsh

ips

Instances of Relationships

Possible Relationships

RelationshipDetails


Relationship Details


States or Sub-Types of Relationships

Type

s of R

elati

onsh

ips

Instances of Relationships

Possible Relationships

RelationshipDetails


PossibleRelationships


Relationship Definition

Relationship Details


Demo


Inherent & Derived APIs, System & Presentation APIs

Derived API/content

Service 1(apiary)

Inherent API/quote

Derived API/management

Service 2(apiary)

Inherent API/games

Trivia Game Game Store Management Tool

Darko – API Manager (Internal)

James – API Manager (Internal)

Kathryn – App DevPartner

Yogesh – App DevInternal

“Presentation APIs”

“System APIs”


API Platform – Feature Capabilities


Summer 2016 – Feature Overview• API Inventory & Catalog: Know what APIs are available• API Implementation: Build new APIs using our UI• Policies: 20 top security, quality of service, and routing policies• API Deployment: Deploy, Activate, Deprecate, and Remove APIs• Interactive Documentation: Give API consumers the information they need to succeed• User Roles & Grants: Control access to your APIs with API level entitlements• Application Registration & Management: Manage the applications using your APIs to

ensure proper usage• Operational Analytics: 10 charts to see who is using your API, how, and if they are

encountering issues


• Security– Oauth 2– Basic Auth– Key Validation– IP Filtering– Service Auth– CORS

27

Summer 2016 – List of Policies• Routing– Header Based Routing– Resource Based Routing– Application Based Routing– Gateway Based Routing

• Other– Groovy Script– Service Callout– Logging

• Traffic Management– API Rate Limiting– API Rate Limiting Per Application– API Throttling

• Interface Management– Interface Filtering– Method Mapping– Redaction– Header Validation


• General– Request Volume• Success• Reject• Error

– Response Time• API Layer• Service Layer

– Payload Size• Inbound• Outbound

– Requests by Resource• Success• Reject• Error

28

Summer 2016 – Initial List of Operational Analytics• Rejections & Errors– Policy Rejection Rate• Inbound/Outbound• By Policy

– Policy Rejection Distribution– Error Rate• Service Errors• Policy Errors• By Error

– Error Distribution

• Application– Requests by Application• Requests• Rejections• Errors


Fall 2016 – Additional Features• Services: Inventory, Reuse, Grants, Analytics• Additional 6 Policies: Security, SOAP/XML/SAML, Message Variables• Dev Portal: Anonymous Users, Self Registration• Analytics: Application Analytics, 5 New Analytics Charts, Event Overlays, Registrations• Deeper Apiary Integration: API Interface Filtering via Swagger 2.0 or API Blueprint• Miscellaneous: Policy Drag and Drop


• Security– WS-Security– SAML

30

Fall 2016 – List of Policies• Traffic Management– API Throttling Per Application– API Throttling - Queueing

• Transformation– XML to JSON– JSON to XML– REST to SOAP


Error Management (TBD)

Plans (Monetization part 1) (+6 months)

31

API Platform Cloud Service (+ on-prem gateway)

Custom Policies (TBD)

Notifications (TBD)

Services (+3 months)

Billing (Monetization part 2) (TBD)

API Platform Roadmap


We Can’t Wait


Oracle API Platform Cloud Service in the Real World• Proof of Concepts Already Delivered• 50+ Use Cases• Able to address +90% of the use cases– Core policies– Custom policies– Groovy scripting

• Integration with other Oracle on-prem / cloud – Service Bus– Log Analytics Cloud Service

Oracle Confidential – Internal/Restricted/Highly RestrictedCopyright © 2015, Oracle and/or its affiliates. All rights reserved. |

Extending the PlatformA sample case of detailed payload auditing

34


Gateway Managed Server

Gateway Managed Server

External Process

Custom Logstash ConfigCSV Analytics

Invoke Deployed API EDREDR

(Collation + Aggregation)

EDRLog File

EDRLog File

Analytics Agent

Analytics Agent

EDR LogRotation

LogstashProcess

Manager

Gateway Runtime

Gateway Runtime

JMS

Topi

c for

EDR

s

APICS Management Service

EDR Log FileEDR Log File EDR Log File EDR Log File

Application


LOGSTASH PLUGINS

CSV e-mail

http

websocket

tcp

udp