Implement API Gateway using Azure API Management

Download as pptx, pdf

4 likes2,039 views

The document discusses the implementation of an API gateway using Azure API Management, focusing on the reasons for its adoption and essential features like pricing tiers, developer portals, and security options. It highlights the transition from a monolithic app to a more flexible structure, detailing concerns about API visibility, usage control, and associated analytics. Additionally, it presents the capabilities of Azure API Management, including policies for managing API behavior and security measures such as OAuth 2.0.

Engineering

More Related Content

What's hot (20)

PDF

DevSecOps: What Why and How : Blackhat 2019NotSoSecure Global Services

PPTX

Building better security for your API platform using Azure API ManagementEldert Grootenboer

PDF

Azure DevOps PresentationInCycleSoftware

PPTX

Azure devopsMohit Chhabra

PDF

Demystifying DevSecOpsArchana Joshi

PDF

DevSecOps and the CI/CD PipelineJames Wickett

PDF

Observability driven developmentGeert van der Cruijsen

PPTX

Benefits of DevSecOpsFinto Thomas , CISSP, TOGAF, CCSP, ITIL. JNCIS

PPTX

App Modernization Pitch Deck.pptxMONISH407209

PPTX

Azure API Managementjeremysbrown

PPTX

Site reliability engineeringJason Loeffler

PPTX

What is an API Gateway?LunchBadger

PDF

DevSecOps in Baby StepsPriyanka Aash

PDF

MuleSoft Anypoint Platform and Three Tier ArchitectureHarish Kumar

PDF

Apigee Edge: Intro to MicrogatewayApigee | Google Cloud

PPTX

Azure DevOps in ActionCallon Campbell

PPTX

Api testingKeshav Kashyap

PDF

Practical DevSecOps Course - Part 1Mohammed A. Imran

PPTX

Microservices Best Practices MuleSoft

PDF

DevSecOps What Why and HowNotSoSecure Global Services

DevSecOps: What Why and How : Blackhat 2019NotSoSecure Global Services

Building better security for your API platform using Azure API ManagementEldert Grootenboer

Azure DevOps PresentationInCycleSoftware

Azure devopsMohit Chhabra

Demystifying DevSecOpsArchana Joshi

DevSecOps and the CI/CD PipelineJames Wickett

Observability driven developmentGeert van der Cruijsen

Benefits of DevSecOpsFinto Thomas , CISSP, TOGAF, CCSP, ITIL. JNCIS

App Modernization Pitch Deck.pptxMONISH407209

Azure API Managementjeremysbrown

Site reliability engineeringJason Loeffler

What is an API Gateway?LunchBadger

DevSecOps in Baby StepsPriyanka Aash

MuleSoft Anypoint Platform and Three Tier ArchitectureHarish Kumar

Apigee Edge: Intro to MicrogatewayApigee | Google Cloud

Azure DevOps in ActionCallon Campbell

Api testingKeshav Kashyap

Practical DevSecOps Course - Part 1Mohammed A. Imran

Microservices Best Practices MuleSoft

DevSecOps What Why and HowNotSoSecure Global Services

Viewers also liked (13)

PPTX

Usage of Reliable Actors in Azure Service FabricAlexander Laysha

PPTX

Azure API Management UpdateBizTalk360

PPT

API Management architect presentationsflynn073

PPTX

Service Fabric – building tomorrows applications todayBizTalk360

PPTX

Azure Service Fabric and the Actor Model: when did we forget Object Orientation?João Pedro Martins

PPT

Todas las APIs de GoogleCarlos Toxtli

PPTX

Azure API ManagementPlain Concepts

PDF

Treat Your API Like a ProductElie Chevignard

PPTX

API Management DemystifiedSoftware AG

PDF

An Inside Look at a Sophisticated, Multi-vector DDoS AttackImperva

PPTX

Why Network and Endpoint Security Isn’t EnoughImperva

ODP

ESB vs API managementAdroitLogic

PPTX

Microsoft Cloud Computing - Windows Azure PlatformDavid Chou

Usage of Reliable Actors in Azure Service FabricAlexander Laysha

Azure API Management UpdateBizTalk360

API Management architect presentationsflynn073

Service Fabric – building tomorrows applications todayBizTalk360

Azure Service Fabric and the Actor Model: when did we forget Object Orientation?João Pedro Martins

Todas las APIs de GoogleCarlos Toxtli

Azure API ManagementPlain Concepts

Treat Your API Like a ProductElie Chevignard

API Management DemystifiedSoftware AG

An Inside Look at a Sophisticated, Multi-vector DDoS AttackImperva

Why Network and Endpoint Security Isn’t EnoughImperva

ESB vs API managementAdroitLogic

Microsoft Cloud Computing - Windows Azure PlatformDavid Chou

Similar to Implement API Gateway using Azure API Management (20)

PPTX

Azure API Management to expose backend services securelyDinusha Kumarasiri

PDF

Azure Spring Clean 2024 event - Azure API Management: Architecting for Perfor...Hamida Rebai Trabelsi

PDF

Improve API Security and Performance with Azure API Management.pdfvivekbagri7

PDF

Global Azure Sydney 2025 - Anupam Ranku.pdfAnupam Ranku

PDF

Azure API Manegement Introduction and Integeration with BizTalkShailesh Dwivedi

PPTX

Azure API Management - why should I care?Jouni Heikniemi

PDF

Everything you always wanted to know about API Management (but were afraid to...Massimo Bonanni

PPTX

Intro to Azure Api Management - With CatsXamariners

PDF

Grand tour of Azure API Management.pdfSherman37

PPTX

Secure and Optimize APIs using Azure API ManagementBizTalk360

PDF

Azure API Management - Global Azure Bootcamp 2019Sam Fernando

PPTX

API Management: Rise of the Planet of the Apps (2016 09-26 - Porto.Data)Sandro Pereira

PDF

API Management: La Puerta de enlace (por Francisco Nieto)Jorge Millán Cabrera

PPTX

Azure APIM Presentation to understand about.pptxpythagorus143

PDF

APIs In Action -Harnessing the Power of Azure API Management: Building Robust...Hamida Rebai Trabelsi

PDF

M meijer api management - tech-days 2015Freelance Consultant / Manager / co-CTO

PDF

Tutto quello che avreste voluto sapere sull'API Management (e non avete mai o...Massimo Bonanni

PPTX

Transformation through the APIAlex Danvy

PDF

AZ-204: Connect to and consume Azure services and third-party services - Part 1AzureEzy1

PPTX

Build 2017 - P4034 - Agile app development with Azure API ManagementWindows Developer

Azure API Management to expose backend services securelyDinusha Kumarasiri

Azure Spring Clean 2024 event - Azure API Management: Architecting for Perfor...Hamida Rebai Trabelsi

Improve API Security and Performance with Azure API Management.pdfvivekbagri7

Global Azure Sydney 2025 - Anupam Ranku.pdfAnupam Ranku

Azure API Manegement Introduction and Integeration with BizTalkShailesh Dwivedi

Azure API Management - why should I care?Jouni Heikniemi

Everything you always wanted to know about API Management (but were afraid to...Massimo Bonanni

Intro to Azure Api Management - With CatsXamariners

Grand tour of Azure API Management.pdfSherman37

Secure and Optimize APIs using Azure API ManagementBizTalk360

Azure API Management - Global Azure Bootcamp 2019Sam Fernando

API Management: Rise of the Planet of the Apps (2016 09-26 - Porto.Data)Sandro Pereira

API Management: La Puerta de enlace (por Francisco Nieto)Jorge Millán Cabrera

Azure APIM Presentation to understand about.pptxpythagorus143

APIs In Action -Harnessing the Power of Azure API Management: Building Robust...Hamida Rebai Trabelsi

M meijer api management - tech-days 2015Freelance Consultant / Manager / co-CTO

Tutto quello che avreste voluto sapere sull'API Management (e non avete mai o...Massimo Bonanni

Transformation through the APIAlex Danvy

AZ-204: Connect to and consume Azure services and third-party services - Part 1AzureEzy1

Build 2017 - P4034 - Agile app development with Azure API ManagementWindows Developer

Recently uploaded (20)

PDF

13th International Conference of Security, Privacy and Trust Management (SPTM...ijcisjournal

PPTX

LECTURE 7 COMPUTATIONS OF LEVELING DATA APRIL 2025.pptxrr22001247

PDF

تقرير عن التحليل الديناميكي لتدفق الهواء حول جناح.pdfمحمد قصص فتوتة

PPTX

Comparison of Flexible and Rigid Pavements in BangladeshArifur Rahman

PDF

Designing for Tomorrow – Architecture’s Role in the Sustainability MovementBIM Services

PPTX

WHO And BIS std- for water quality .pptxdhanashree78

PDF

PRIZ Academy - Process functional modellingPRIZ Guru

PDF

June 2025 Top 10 Sites -Electrical and Electronics Engineering: An Internatio...elelijjournal653

PDF

FSE-Journal-First-Automated code editing with search-generate-modify.pdfcl144

PDF

Validating a Citizen Observatories enabling Platform by completing a Citizen ...Diego López-de-Ipiña González-de-Artaza

PPTX

Bharatiya Antariksh Hackathon 2025 Idea Submission PPT.pptxAsadShad4

PDF

Rapid Prototyping for XR: Lecture 1 Introduction to PrototypingMark Billinghurst

PPTX

Kel.3_A_Review_on_Internet_of_Things_for_Defense_v3.pptxEndang Saefullah

PPT

FINAL plumbing code for board exam passerMattKristopherDiaz

PDF

Rapid Prototyping for XR: Lecture 5 - Cross Platform DevelopmentMark Billinghurst

PPTX

How to Un-Obsolete Your Legacy Keypad DesignEpec Engineered Technologies

PDF

Rapid Prototyping for XR: Lecture 4 - High Level Prototyping.Mark Billinghurst

PDF

Python Mini Project: Command-Line Quiz Game for School/College StudentsMPREETHI7

PPTX

FSE_LLM4SE1_A Tool for In-depth Analysis of Code Execution Reasoning of Large...cl144

PDF

How to Buy Verified CashApp Accounts IN 2025Buy Verified CashApp Accounts

13th International Conference of Security, Privacy and Trust Management (SPTM...ijcisjournal

LECTURE 7 COMPUTATIONS OF LEVELING DATA APRIL 2025.pptxrr22001247

تقرير عن التحليل الديناميكي لتدفق الهواء حول جناح.pdfمحمد قصص فتوتة

Comparison of Flexible and Rigid Pavements in BangladeshArifur Rahman

Designing for Tomorrow – Architecture’s Role in the Sustainability MovementBIM Services

WHO And BIS std- for water quality .pptxdhanashree78

PRIZ Academy - Process functional modellingPRIZ Guru

June 2025 Top 10 Sites -Electrical and Electronics Engineering: An Internatio...elelijjournal653

FSE-Journal-First-Automated code editing with search-generate-modify.pdfcl144

Validating a Citizen Observatories enabling Platform by completing a Citizen ...Diego López-de-Ipiña González-de-Artaza

Bharatiya Antariksh Hackathon 2025 Idea Submission PPT.pptxAsadShad4

Rapid Prototyping for XR: Lecture 1 Introduction to PrototypingMark Billinghurst

Kel.3_A_Review_on_Internet_of_Things_for_Defense_v3.pptxEndang Saefullah

FINAL plumbing code for board exam passerMattKristopherDiaz

Rapid Prototyping for XR: Lecture 5 - Cross Platform DevelopmentMark Billinghurst

How to Un-Obsolete Your Legacy Keypad DesignEpec Engineered Technologies

Rapid Prototyping for XR: Lecture 4 - High Level Prototyping.Mark Billinghurst

Python Mini Project: Command-Line Quiz Game for School/College StudentsMPREETHI7

FSE_LLM4SE1_A Tool for In-depth Analysis of Code Execution Reasoning of Large...cl144

How to Buy Verified CashApp Accounts IN 2025Buy Verified CashApp Accounts

Implement API Gateway using Azure API Management

1. IMPLEMENT API GATEWAY USING AZURE API MANAGEMENT ALEXANDER LAYSHA, CHIEF SOFTWARE ENGINEER AT EPAM SYSTEMS

2. AGENDA • WHY WE IMEPLEMENTED API GATEWAY • INTRODUCTION TO AZURE API MANAGEMENT • DESIGN FOR PRICING TIERS • OVERVIEW OF PUBLISH AND DEVELOPER PORTALS • POLICY DISCUSSION • OPTIONS FOR SECURITY

3. EVOLUTION OF OUR PROJECT UI SOAP REST API 1 REST API 2 REST API N REST APIs DEVELOPERS APPS BEFORE AFTER MONOLITH APP

4. OUR CONCERNS IN API MANAGEMENT • ACCESS TO PUBLIC & INTERNAL APIs • VISIBILITY OF APIs TO CUSTOMERS BASE ON PRICING TIER • CONTROL OF API USAGE BASE ON PRICING TIER • ANALYTICS OF APIs USAGE BY CUSTOMERS • FUTURE NEEDS AND GROWTH PLANS

5. HOW WE ADDRESSED CONCERNS? UI SOAP REST API 1 REST API 2 REST API N REST APIs DEVELOPERS APPS BEFORE AFTER MONOLITH APP APIGATEWAY

6. A BIT ABOUT API GATEWAY & HISTORY API GATEWAY SERVICE TRANSFORMATION SECURITY USAGE QUOTAS & LIMITS MONETIZATION LOGS ANALYTICS DEV SUPPORT VISIBILITY • CREATE API TO EXPOSE BACK-END SERVICES • ACTS AS REVERSE-PROXY • VENDORS: Apigee, WSO2, MuleSoft, AWS API Gateway, Azure API Management

7. INTRO TO AZURE API MANAGEMENT API DEVELOPER PORTAL PUBLISHER PORTAL PROXY AZURE API MANAGEMENT PUBLISHER / ADMIN DEVELOPERS APPS BACKEND

8. API MANAGEMENT FEATURES DEVELOPER PORTAL PUBLISHER PORTAL PROXY AZURE API MANAGEMENT REGISTRATION DOCUMENTATION INTERACTIVE API CONSOLE DEVELOPER ANALYTICS APP GALLERY FORUMS NEWS ISSUES WIKI API PUBLISHING SUBSCRIPTION MANAGEMENT SECURITY MEDIATION CONTENT PUBLISHING SITE CUSTOMIZATION ISSUE MANAGEMENT ANALYTICS REPORTS SCALING CACHING MONITORING TRAFFIC MANAGEMENT TRANSFORMATION

9. API MANAGEMENT ENTITIES USER PRODUCT OPEN|PROTECTED API RATE LIMITS & QUOTAs GROUP

10. DEMO: OUR DESIGN FOR PRICING TIERS TRIAL PRODUCT PROTECTED PAID PRODUCT PROTECTED SYS PRODUCT PROTECTED Health Check API LIMITS FOR TRIAL SYS GROUP LIMITS FOR PAID TRIAL GROUP ADMIN GROUP UNLIMITED SYS ACCOUNT TRIAL ACCOUNT PAID ACCOUNT ADMIN ACCOUNT API NAPI 2API 1 APIs CUSTOMER PRODUCTS INTERNAL USE ADMIN USE BUSINESS USE PAID GROUP

11. API MANAGEMENT POLICY “In Azure API Management, policies are a powerful capability of the system that allow the publisher to change the behavior of the API through configuration. Policies are a collection of Statements that are executed sequentially on the request or response of an API. ” POLICY SCOPES ARE EVALUATED IN THE FOLLOWING ORDER: • Global scope • Product scope • API scope • Operation scope

12. POLICY TEMPLATE <policies> <inbound>  </inbound> <backend>  </backend> <outbound>  </outbound> <on-error>  </on-error> </policies> POLICY REFERENCE: https://docs.microsoft.com/en-us/azure/api-management/api-management-policy-reference

13. HOW TO DEBUG API MANAGEMENT? • API INSPECTOR TOOL HEADER: Ocp-Apim-Trace = true • EVENT HUB LOGGER <log-to-eventhub logger-id ='logger-id'> @( string.Join(",", DateTime.UtcNow, ...)) </log-to-eventhub>

14. DEMO: POLICY TO DOWNLOAD A FILE DEVELOPERS AZURE BLOB STORAGE CUSTOMPOLICY AZURE WEB APP AZUREAPIMANAGEMENT URL + SAS 2 5 URL + SAS FILE ID 3 4 FILE FILE ID FILE 1 6

15. WHAT ARE OPTIONS TO SECURE API? • SECURITY BY OBSCURITY • BASIC AUTH • MUTUAL SSL • VNET • OAUTH 2.0 • OPENID

16. DEMO: OUR DESIGN FOR SECURITY DEVELOPERS AZURE API MANAGEMENT SUBSCIPTION KEY AZURE WEB APPs CERTIFICATIO NFILE BUSINESS PROCESS TO REGISTER NEW CUSTOMER SUBSCIPTION KEY API NAPI 1

17. Q&A