#oowbr - como gerenciar apis na era digital, daniel amadei
TRANSCRIPT
Copyright © 2016, Oracle and/or its affiliates. All rights reserved. |
API Platform Cloud ServicePower your APIs Everywhere
Robert WunderlichSr. Principal Product Manager
Daniel AmadeiPrincipal Sales Consultant
https://www.linkedin.com/in/wunderlich
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | Oracle Confidential – Internal/Restricted/Highly Restricted 3
Safe Harbor StatementThe following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle’s products remains at the sole discretion of Oracle.
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | Oracle Confidential – Internal/Restricted/Highly Restricted 4
API Platform – Core Value Proposition
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | Oracle Confidential – Internal/Restricted/Highly Restricted 5
Empower enterprises to maximize the benefit of APIs • Keep unwanted people & robots out of your systems– Authorization and Authentication– Threat Protection
• Enable new consumers without coding or configuration– Plan Driven Entitlements– Interface and Volume Scoping– Routing
• Understand what is happening with your APIs– Discovery, Usage, and Concerns– History
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | Oracle Confidential – Internal/Restricted/Highly Restricted 6
API Platform – Architecture
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |
Management Service
GatewaysGatewaysGateways
APIs
Integration
Amazon
OracleServices
DMZ (Optional)
Cloud or On-Premise
Management PortalDeveloper Portal
Applications
API Platform Architecture
Custom
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |
Management Service
GatewaysGatewaysGateways
APIs
SOA
JCS
ICSServices
DMZ (Optional)
Oracle Cloud or On-Premise
Management Portal
Applications
API Platform Architecture
Custom
Developer Portal
Cloud or On-Premise
On-Premise• DMZ, GZ
Cloud• Oracle• Amazon• Other
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |
Management Service
GatewaysGatewaysGateways
APIs
SOA
JCS
ICSServices
DMZ (Optional)
Cloud or On-Premise
Management Portal
Applications
API Platform Architecture
Custom
Developer Portal
APIs
DMZ (Optional)
GatewaysGatewaysGateways
Cloud StatePolicies• Java• Groovy• Config.
Identity• WLS Auth.• Custom
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |
Management Service
Gateway Topologies
DMZ A – A1(node)
DMZ A – A2(node)
LB A
GZ B – B1(node)
GZ B – B2(node)
LB B
LB AWS
AWS OR 1(node)
AWS OR 2(node)
AWS VA 1(node)
AWS VA 2(node)
DMZ Z – Z1(node)
DMZ Z – Z2(node)
LB Z (DR)
GZ X – X1(node)
GZ X – X2(node)
LB X (DR)
Production GZ(logical GW)
Production DMZ(logical GW)
Production AWS (logical GW)
DEV Team A(logical GW)
DEV John(logical GW)
QA UAT(logical GW) OPC Dev B
(node)
OPC Dev A(node)
OPC Dev C(node)
OPC Dev D(node)
OPC Dev E(node)
OPC QA 1(node)
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |
Management Service
GatewaysGatewaysGateways
APIs
Integration
Amazon
OracleServices
DMZ (Optional)
Cloud or On-Premise
Management PortalDeveloper Portal
Applications
API Platform Architecture
Custom
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |
Management Service
GatewaysGatewaysGateways
APIs
SOA
JCS
ICSServices
DMZ (Optional)
Cloud or On-Premise
Management Portal
Applications
API Platform Architecture
Custom
Developer Portal
Management Service
Security• Roles• Grants
APIs• Automation• Extension• Process
Identity• IDCS• Federation
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |
Management Service
GatewaysGatewaysGateways
APIs
SOA
JCS
ICSServices
DMZ (Optional)
Cloud or On-Premise
Management Portal
Applications
API Platform Architecture
Custom
Developer Portal Management Portal
UI• JavaScript Policies• Oracle JET• HATEOAS Driven
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |
Management Service
GatewaysGatewaysGateways
APIs
SOA
JCS
ICSServices
DMZ (Optional)
Cloud or On-Premise
Management Portal
Applications
API Platform Architecture
Custom
Developer Portal
Style• Custom CSS• Custom Text
Extend• JQuery
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |15
Application BaaS Firewall API Gateway Integration Backend Service
API Platform Gateway Placement
LB
IDMOauthMonitoring BI/Analytics
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |16
Application BaaS Firewall API Gateway Integration Backend Service
API Platform Gateway Placement
LB
IDMOauthMonitoring BI/Analytics
SecurityAgilityAnalytics
API Gateway
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | 17
Primary Objects
Instances of Objects
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | 18
States or Sub-Types of Relationship
Type
s of R
elati
onsh
ips
Instances of Relationships
Possible Relationships
RelationshipDetails
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | 19
Relationship Details
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | 20
States or Sub-Types of Relationships
Type
s of R
elati
onsh
ips
Instances of Relationships
Possible Relationships
RelationshipDetails
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | 21
PossibleRelationships
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | 22
Relationship Definition
Relationship Details
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | Oracle Confidential – Internal/Restricted/Highly Restricted 23
Demo
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |
Inherent & Derived APIs, System & Presentation APIs
Derived API/content
Service 1(apiary)
Inherent API/quote
Derived API/management
Service 2(apiary)
Inherent API/games
Trivia Game Game Store Management Tool
Darko – API Manager (Internal)
James – API Manager (Internal)
Kathryn – App DevPartner
Yogesh – App DevInternal
“Presentation APIs”
“System APIs”
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | Oracle Confidential – Internal/Restricted/Highly Restricted 25
API Platform – Feature Capabilities
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | 26
Summer 2016 – Feature Overview• API Inventory & Catalog: Know what APIs are available• API Implementation: Build new APIs using our UI• Policies: 20 top security, quality of service, and routing policies• API Deployment: Deploy, Activate, Deprecate, and Remove APIs• Interactive Documentation: Give API consumers the information they need to succeed• User Roles & Grants: Control access to your APIs with API level entitlements• Application Registration & Management: Manage the applications using your APIs to
ensure proper usage• Operational Analytics: 10 charts to see who is using your API, how, and if they are
encountering issues
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |
• Security– Oauth 2– Basic Auth– Key Validation– IP Filtering– Service Auth– CORS
27
Summer 2016 – List of Policies• Routing– Header Based Routing– Resource Based Routing– Application Based Routing– Gateway Based Routing
• Other– Groovy Script– Service Callout– Logging
• Traffic Management– API Rate Limiting– API Rate Limiting Per Application– API Throttling
• Interface Management– Interface Filtering– Method Mapping– Redaction– Header Validation
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |
• General– Request Volume• Success• Reject• Error
– Response Time• API Layer• Service Layer
– Payload Size• Inbound• Outbound
– Requests by Resource• Success• Reject• Error
28
Summer 2016 – Initial List of Operational Analytics• Rejections & Errors– Policy Rejection Rate• Inbound/Outbound• By Policy
– Policy Rejection Distribution– Error Rate• Service Errors• Policy Errors• By Error
– Error Distribution
• Application– Requests by Application• Requests• Rejections• Errors
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | 29
Fall 2016 – Additional Features• Services: Inventory, Reuse, Grants, Analytics• Additional 6 Policies: Security, SOAP/XML/SAML, Message Variables• Dev Portal: Anonymous Users, Self Registration• Analytics: Application Analytics, 5 New Analytics Charts, Event Overlays, Registrations• Deeper Apiary Integration: API Interface Filtering via Swagger 2.0 or API Blueprint• Miscellaneous: Policy Drag and Drop
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |
• Security– WS-Security– SAML
30
Fall 2016 – List of Policies• Traffic Management– API Throttling Per Application– API Throttling - Queueing
• Transformation– XML to JSON– JSON to XML– REST to SOAP
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |
Error Management (TBD)
Plans (Monetization part 1) (+6 months)
31
API Platform Cloud Service (+ on-prem gateway)
Custom Policies (TBD)
Notifications (TBD)
Services (+3 months)
Billing (Monetization part 2) (TBD)
API Platform Roadmap
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | Oracle Confidential – Internal/Restricted/Highly Restricted 32
We Can’t Wait
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. | Oracle Confidential – Internal/Restricted/Highly Restricted 33
Oracle API Platform Cloud Service in the Real World• Proof of Concepts Already Delivered• 50+ Use Cases• Able to address +90% of the use cases– Core policies– Custom policies– Groovy scripting
• Integration with other Oracle on-prem / cloud – Service Bus– Log Analytics Cloud Service
Oracle Confidential – Internal/Restricted/Highly RestrictedCopyright © 2015, Oracle and/or its affiliates. All rights reserved. |
Extending the PlatformA sample case of detailed payload auditing
34
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |
Gateway Managed Server
Gateway Managed Server
External Process
Custom Logstash ConfigCSV Analytics
Invoke Deployed API EDREDR
(Collation + Aggregation)
EDRLog File
EDRLog File
Analytics Agent
Analytics Agent
EDR LogRotation
LogstashProcess
Manager
Gateway Runtime
Gateway Runtime
JMS
Topi
c for
EDR
s
APICS Management Service
EDR Log FileEDR Log File EDR Log File EDR Log File
Application
Copyright © 2015, Oracle and/or its affiliates. All rights reserved. |
LOGSTASH PLUGINS
CSV e-mail
http
websocket
tcp
udp