Apigee | Google Cloud, profile picture
Uploaded byApigee | Google Cloud
PDF, PPTX4,806 views

Modernize Service-Oriented Architecture with APIs

The document presents a journey of a large organization transitioning from a service-oriented architecture (SOA) to API management, highlighting business and technology drivers for this modernization. It outlines the current infrastructure, existing capabilities, gaps, and requirements for implementing an effective API strategy. Key lessons learned include the importance of integrating both SOAP and REST APIs, and utilizing API management to enhance productivity while ensuring security and scalability.

Embed presentation

Download as PDF, PPTX
©2016 Apigee Corp. All Rights Reserved.
Robert Broeckelmann RCBJ Consulting robert.broeckelmann@rcbjconsulting.com Dino Chiesa Apigee dchiesa@apigee.com Today’s presenters
Slideshare slideshare.com/apigee Apigee Community https://community.apigee.com YouTube" youtube.com/apigee
Modernizing Service Oriented Architecture with APIs!
ABOUT ME! •  Founder and Principal Consultant at RCBJ Consulting, LLC. •  Being bought by Levvel, LLC •  Now, Principal Consultant at Levvel, LLC •  Levvel, LLC is a fast-growing IT consulting firm that combines the innovative DNA of a startup with the wisdom, scalability, and process rigor of a Fortune 100 company. •  Offers technical and strategic advisory services including DevOps, Cloud, Mobile, UX/UI, Big Data,Analytics, Payment Strategy, and more •  Masters degree in Computer Science from Washington University in Saint Louis •  Started working with Apigee Edge Server in 2014 •  Worked with WebSphere DataPower since 2010
DISCLAIMERS, WARNINGS, HEALTH HAZARDS! •  What we present here is one of numerous possible ways to use Apigee technology. Your situation and requirements will probably differ. •  As always, test things in a non-production environment prior to using anything in production. •  We are not responsible for spontaneous combustion of the known universe or any other undesirable outcomes associated with using what is discussed here. •  This presentation describes a large organization’s journey from an existing SOA & Integration platform to API Management. •  Unfortunately, the organization will remain nameless
AGENDA! 1.  Business &Technology Drivers 2.  Current Infrastructure, SOA & Integration Capabilities 3.  Gaps 4.  Considerations & Requirements 5.  Lessons Learned & End-State Architecture
WHAT ARE THE DRIVERS?! •  Business •  Mobile •  B2B Integration •  SaaS Solution Integration •  Facilitate wider adoption •  Increase Business opportunities •  Technology •  Direction Industry is going •  APIs easier to develop with than predecessor standards •  Maturing standards •  Security:Authentication & Authorization (OAuth 2.0, OpenID Connect 1.0, and JWT) •  Interface Definition: Swagger 2.0 •  JSON Schema
EXISTING SOA/INTEGRATION CAPABILITIES! •  SOA Capabilities •  SOA governance/service life-cycle management •  Service meta-data registry/repository •  Service versioning/routing/security policy •  Security model •  Standard messaging models •  Enterprise service standards •  Standard error handling, reporting, and statistics logging •  Integration Capabilities •  Integrating dozens of on-premise Commercial Off-The-Shelf (COTS) apps/third-party systems •  SOAP over HTTPS and XML over Websphere MQ •  Data transformations/protocol transformations/security integration
EXISTING SOA/INTEGRATION CAPABILITIES! •  Use the IBM Integration Stack •  WebSphere Message Broker/IIB •  WebSphere DataPower •  WebSphere Services Registry & Repository •  WebSphere MQ •  WebSphereTransformation Extender(WTX) •  Focusing on WebSphere DataPower •  Relevant Patterns •  Enterprise Service Bus (ESB) •  Service Gateway
ENTERPRISE SERVICE BUS! •  These products make up the IBM Integration and SOA Stack •  Service Consumers and Service Providers are combination of SOAP web services, MQ Message Consumers and Message Producers, XML/JSON REST Services, and APIs •  DataPower is the front door to the ESB (for services and API traffic) – standard IBM pattern
SERVICE GATEWAY! •  All traffic is encrypted viaTLS orVPN •  Ingress and Egress scenarios use the same physical appliances – different Application Domains. •  Single Ingress/Egress point for SOAP Services/APIs traffic involving internet •  DataPower protects SOAP and API endpoints at the edge of the network •  IdP/STS/IAM systems not shown •  Load Balancers and other systems that do not contribute to this pattern are not shown
CURRENT INFRASTRUCTURE: GAPS! •  Legacy Baggage •  Primarily created by organization, not the technology •  Creates complications and obstacles that must be dealt with •  Existing integration stack products not built with REST/APIs & JSON in mind •  Added as afterthought •  Missing developer portal •  One stop, self-service shop for developers throughout the development lifecycle •  Ties into DevOps plans for the organization
CURRENT INFRASTRUCTURE: GAPS! •  Information, current as of Q4, 2014. •  All products mentioned under ongoing active development. •  Cannot perform JSON schema validation and API request/response validation based upon Swagger 2.0 data definitions •  Limited support for APIs and Swagger 2.0 in existing service registry •  No support for a standards-based API security model •  OAuth 2.0, Open ID Connect 1.0, and JWT 1.0 •  Current infrastructure is all on-premise •  Limited to single part of the country •  No geo-location based routing of API requests.
WHY MODERNIZE? WHY USE APIS?! •  APIs have become the industry standard for system interfaces of all kinds •  Hide complexity; expose existing functionality •  Use APIs as the basis for porting systems/functionality into the cloud •  Make it easier for other business units and business partners to access systems and data, but maintain security •  Next step in evolution of SOA/Integration platforms
REQUIREMENTS! •  Want to use •  API-First Design methodology for APIs •  Swagger 2.0 as the interface definition language •  Ties together security model, standard data/messaging models, API standards, and internal SDLC •  Also provides a testing mechanism for APIs •  Developer portal that serves as a one-stop, self-service shop for developer access to •  Developer registration •  Application registration •  API documentation •  Security registration •  Self service
REQUIREMENTS! •  Same Service-Lifecycle used with SOAP Web Services applies to API Lifecycle •  Do not want to lose structure and discipline of SOA Governance and service life-cycle management •  Let’s call this API Governance and API Life-Cycle Management •  Continue to realize ROI in the IBM Integration Stack •  Includes DataPower •  Supported Use Cases •  Single Page Web Applications •  B2B integration •  System-to-System communication •  Want to leverage organization’s existing programming skill sets •  Java & Javascript
REQUIREMENTS! •  SAML 2.0/WS-Trust 1.3/WS-Security 1.0 Security Model used with SOAP Web Services as a model for OAuth 2.0/OpenID Connect 1.0/ JWT 1.0 Security Model for APIs •  Standards-based approach to security •  PCI Compliance could be a requirement in the future •  Cloud-based solution •  Extend on-premise integration stack capabilities into the cloud •  Going forward, many SaaS API Providers and API Consumers versus on-premise deployments •  Do not want to be limited to a single cloud provider •  All the other benefits of a cloud-based infrastructure
API MANAGEMENT! •  What is API Management? •  The process of publishing, promoting, and overseeing APIs in a secure, scalable environment •  Ensures that developers and partners are productive •  Manages, secures, and mediates your API traffic •  Allows an organization to grow their API program to meet increasing demands •  Three components •  Management Portal •  Developer Portal •  Runtime Gateway
LESSONS LEARNED! •  Used DataPower on-premise for ESB Gateway and DMZ Gateway; used Apigee Edge Server in the cloud.Allowed ROI of the original IBM Integration Stack deployment to continue to be realized •  Avoid cloud-based API Gateway run-time dependencies that tie back to your data center – potentially creating a single point of failure •  Using SaaS middleware solutions allows organizations to focus on mission-critical, business-oriented problems •  There will be a mix of SOAP & REST/APIs for the foreseeable future •  API/REST related specs are evolving, but still young compared to WS-* specs. •  Existing organization of infrastructure and middleware administrators, developers, and SOA Governance group were able to adapt to manage and utilize APIs
END-STATE ARCHITECTURE! •  Apigee Edge Server extends Integration Stack capabilities into the cloud •  Handles Internet-facing API Providers •  Primary API endpoint •  Cloud-based B2B Integration •  APIs & SOAP WebServices •  Developer Portal •  Key component of mobile platform
©2016 Apigee. All Rights Reserved. Thank you! Continue the conversation at " https://community.apigee.com

More Related Content

PPSX
Preparing for Microsoft 365 Copilot - Best Practices for Governance and Data ...
byNikki Chapple
 
PDF
Microsoft Zero Trust
byDavid J Rosenthal
 
PPTX
Microsoft 365 and Microsoft Cloud App Security
byAlbert Hoitingh
 
PDF
Azure web apps
byVaibhav Gujral
 
PPTX
Microsoft Information Protection.pptx
byChrisaldyChandra
 
PDF
Azure Application insights - An Introduction
byMatthias Güntert
 
PDF
DevOps Roadshow - continuous delivery and release management
byMicrosoft Developer Norway
 
PDF
농심 그룹 메가마트 : 온프레미스 Exadata의 AWS 클라우드 환경 전환 사례 공유-김동현, NDS Cloud Innovation Ce...
byAmazon Web Services Korea
 
Preparing for Microsoft 365 Copilot - Best Practices for Governance and Data ...
byNikki Chapple
 
Microsoft Zero Trust
byDavid J Rosenthal
 
Microsoft 365 and Microsoft Cloud App Security
byAlbert Hoitingh
 
Azure web apps
byVaibhav Gujral
 
Microsoft Information Protection.pptx
byChrisaldyChandra
 
Azure Application insights - An Introduction
byMatthias Güntert
 
DevOps Roadshow - continuous delivery and release management
byMicrosoft Developer Norway
 
농심 그룹 메가마트 : 온프레미스 Exadata의 AWS 클라우드 환경 전환 사례 공유-김동현, NDS Cloud Innovation Ce...
byAmazon Web Services Korea
 

What's hot

PPTX
Enabling Sharing & Collaboration in OneDrive & SharePoint
byDrew Madelung
 
PPTX
Azure Migration Program Overview
byNicholas Vossburg
 
PPTX
AWS Monitoring & Logging
byJason Poley
 
PDF
AWS Summit Seoul 2023 | 산업용 ‘이음(e-Um) 5G’ 특화망을 위한 KT의 AWS 기반 사설 5G 서비스
byAmazon Web Services Korea
 
PDF
API Management Solution Powerpoint Presentation Slides
bySlideTeam
 
PPTX
Dynatrace: New Approach to Digital Performance Management - Gartner Symposium...
byMichael Allen
 
PPTX
Azure B2C
byMarco De Sanctis
 
PPTX
Cinema booking system | Movie Booking System
bysekarsadasivam
 
PPTX
Azure Identity and access management
byDinusha Kumarasiri
 
PPTX
Azure App Service Architecture. Web Apps.
byAlexander Feschenko
 
PPTX
Everything you need to know about external sharing in OneDrive, SharePoint, a...
byDrew Madelung
 
PPTX
Monetization: Unlock More Value from Your APIs
byApigee | Google Cloud
 
PDF
AWS IoT サービス アップデートのご紹介
byAmazon Web Services Japan
 
PPTX
Azure API Management
byDaniel Toomey
 
PDF
대용량 데이터레이크 마이그레이션 사례 공유 [카카오게임즈 - 레벨 200] - 조은희, 팀장, 카카오게임즈 ::: Games on AWS ...
byAmazon Web Services Korea
 
PDF
Architecting an Enterprise API Management Strategy
byWSO2
 
PPTX
Migrations Startegy: Lotus Notes to Office 365 & Azure
byWinWire Technologies Inc
 
PPTX
Microsoft Cloud Adoption Framework for Azure: Governance Conversation
byNicholas Vossburg
 
PPTX
Breakdown of Microsoft Purview Solutions
byDrew Madelung
 
PDF
AWS 를 활용한 저지연 라이브 (Low Latency Live) 서비스 구현 - 류재춘 컨설턴트/에반젤리스트, GS Neot다 :: AW...
byAmazon Web Services Korea
 
Enabling Sharing & Collaboration in OneDrive & SharePoint
byDrew Madelung
 
Azure Migration Program Overview
byNicholas Vossburg
 
AWS Monitoring & Logging
byJason Poley
 
AWS Summit Seoul 2023 | 산업용 ‘이음(e-Um) 5G’ 특화망을 위한 KT의 AWS 기반 사설 5G 서비스
byAmazon Web Services Korea
 
API Management Solution Powerpoint Presentation Slides
bySlideTeam
 
Dynatrace: New Approach to Digital Performance Management - Gartner Symposium...
byMichael Allen
 
Azure B2C
byMarco De Sanctis
 
Cinema booking system | Movie Booking System
bysekarsadasivam
 
Azure Identity and access management
byDinusha Kumarasiri
 
Azure App Service Architecture. Web Apps.
byAlexander Feschenko
 
Everything you need to know about external sharing in OneDrive, SharePoint, a...
byDrew Madelung
 
Monetization: Unlock More Value from Your APIs
byApigee | Google Cloud
 
AWS IoT サービス アップデートのご紹介
byAmazon Web Services Japan
 
Azure API Management
byDaniel Toomey
 
대용량 데이터레이크 마이그레이션 사례 공유 [카카오게임즈 - 레벨 200] - 조은희, 팀장, 카카오게임즈 ::: Games on AWS ...
byAmazon Web Services Korea
 
Architecting an Enterprise API Management Strategy
byWSO2
 
Migrations Startegy: Lotus Notes to Office 365 & Azure
byWinWire Technologies Inc
 
Microsoft Cloud Adoption Framework for Azure: Governance Conversation
byNicholas Vossburg
 
Breakdown of Microsoft Purview Solutions
byDrew Madelung
 
AWS 를 활용한 저지연 라이브 (Low Latency Live) 서비스 구현 - 류재춘 컨설턴트/에반젤리스트, GS Neot다 :: AW...
byAmazon Web Services Korea
 

Viewers also liked

PDF
Is Microservices SOA Done Right?
byApigee | Google Cloud
 
PPTX
What's Better than Microservices? Serverless Microservices.
byApigee | Google Cloud
 
PDF
Deep Dive: Strategic Importance of BaaS
byApigee | Google Cloud
 
PPT
Modernizing an Existing SOA-based Architecture with APIs
byApigee | Google Cloud
 
PPTX
Deep-Dive: API Security in the Digital Age
byApigee | Google Cloud
 
PPTX
API Management and Kubernetes
byApigee | Google Cloud
 
PPTX
Managing Sensitive Information in an API and Microservices World
byApigee | Google Cloud
 
PDF
Web component driven development
byGil Fink
 
PPTX
OAuth - Don’t Throw the Baby Out with the Bathwater
byApigee | Google Cloud
 
PDF
Clean Architecture
byNSCoder Mexico
 
PDF
API Governance
bySunil Kuchipudi
 
PDF
AE Foyer: Soa Integration Architecture and Api Management
byAE - architects for business and ict
 
PDF
OpenID Connect: The new standard for connecting to your Customers, Partners, ...
bySalesforce Developers
 
PDF
API-first, going beyond SOA, ESB & Integration
byApigee | Google Cloud
 
PDF
OAuth based reference architecture for API Management
byWSO2
 
PDF
OpenID Connect Explained
byVladimir Dzhuvinov
 
PPTX
ITANA 2016: API Architecture and Implementation
byColin Bell
 
PDF
MT 102 Dell Effectively powering the 21st century digital workplace
byDell EMC World
 
PDF
Success with APIs: A Checklist
byCA Technologies
 
PPTX
Deep-Dive: Secure API Management
byApigee | Google Cloud
 
Is Microservices SOA Done Right?
byApigee | Google Cloud
 
What's Better than Microservices? Serverless Microservices.
byApigee | Google Cloud
 
Deep Dive: Strategic Importance of BaaS
byApigee | Google Cloud
 
Modernizing an Existing SOA-based Architecture with APIs
byApigee | Google Cloud
 
Deep-Dive: API Security in the Digital Age
byApigee | Google Cloud
 
API Management and Kubernetes
byApigee | Google Cloud
 
Managing Sensitive Information in an API and Microservices World
byApigee | Google Cloud
 
Web component driven development
byGil Fink
 
OAuth - Don’t Throw the Baby Out with the Bathwater
byApigee | Google Cloud
 
Clean Architecture
byNSCoder Mexico
 
API Governance
bySunil Kuchipudi
 
AE Foyer: Soa Integration Architecture and Api Management
byAE - architects for business and ict
 
OpenID Connect: The new standard for connecting to your Customers, Partners, ...
bySalesforce Developers
 
API-first, going beyond SOA, ESB & Integration
byApigee | Google Cloud
 
OAuth based reference architecture for API Management
byWSO2
 
OpenID Connect Explained
byVladimir Dzhuvinov
 
ITANA 2016: API Architecture and Implementation
byColin Bell
 
MT 102 Dell Effectively powering the 21st century digital workplace
byDell EMC World
 
Success with APIs: A Checklist
byCA Technologies
 
Deep-Dive: Secure API Management
byApigee | Google Cloud
 

Similar to Modernize Service-Oriented Architecture with APIs

PPT
#1922 rest-push2 ap-im-v6
byJack Carnes
 
PPTX
Oracle Developer Meetup March 2018
byPhil Wilkins
 
PPTX
API Management and Integrated SOA Governance
bySumanth Chinthagunta
 
PDF
IBM API management Philip Little
byValeri Illescas
 
PPTX
Platform for Secure Digital Business
byAkana
 
PDF
Extend soa with api management Sangam18
byVinay Kumar
 
PPTX
API Services: Harness the Power of Enterprise Infrastructure
byApigee | Google Cloud
 
PPTX
Platform for Secure Digital Business
byAkana
 
PDF
Design - Start Your API Journey Today
byLaurenWendler
 
PDF
Octo API-days 2015
byAntoine CHANTALOU
 
PDF
Top 7 wrong common beliefs about Enterprise API implementation
byOCTO Technology
 
PPTX
Driving API Economy with Apigee.pptx
byssuseree0a28
 
PDF
Oracle API Platform Cloud Service Best Practices & Lessons Learnt
byluisw19
 
PDF
Oracle Code Beijing/Sydney APIM & Microservices: A Match Made in Heaven
byCapgemini
 
PDF
Manage your ap is securely and easily ibm apim 4.0
bysflynn073
 
PDF
What's new in API Connect and DataPower - 2019
byIBM DataPower Gateway
 
PDF
API strategy with IBM API connect
byKellton Tech Solutions Ltd
 
PDF
UKOUG - Implementing Enterprise API Management in the Oracle Cloud
byluisw19
 
PPTX
Extend soa with api management spoug- Madrid
byVinay Kumar
 
PDF
Api management update for optus
bysflynn073
 
#1922 rest-push2 ap-im-v6
byJack Carnes
 
Oracle Developer Meetup March 2018
byPhil Wilkins
 
API Management and Integrated SOA Governance
bySumanth Chinthagunta
 
IBM API management Philip Little
byValeri Illescas
 
Platform for Secure Digital Business
byAkana
 
Extend soa with api management Sangam18
byVinay Kumar
 
API Services: Harness the Power of Enterprise Infrastructure
byApigee | Google Cloud
 
Platform for Secure Digital Business
byAkana
 
Design - Start Your API Journey Today
byLaurenWendler
 
Octo API-days 2015
byAntoine CHANTALOU
 
Top 7 wrong common beliefs about Enterprise API implementation
byOCTO Technology
 
Driving API Economy with Apigee.pptx
byssuseree0a28
 
Oracle API Platform Cloud Service Best Practices & Lessons Learnt
byluisw19
 
Oracle Code Beijing/Sydney APIM & Microservices: A Match Made in Heaven
byCapgemini
 
Manage your ap is securely and easily ibm apim 4.0
bysflynn073
 
What's new in API Connect and DataPower - 2019
byIBM DataPower Gateway
 
API strategy with IBM API connect
byKellton Tech Solutions Ltd
 
UKOUG - Implementing Enterprise API Management in the Oracle Cloud
byluisw19
 
Extend soa with api management spoug- Madrid
byVinay Kumar
 
Api management update for optus
bysflynn073
 

More from Apigee | Google Cloud

PDF
How Secure Are Your APIs?
byApigee | Google Cloud
 
PDF
Magazine Luiza at a glance (1)
byApigee | Google Cloud
 
PDF
Apigee Demo: API Platform Overview
byApigee | Google Cloud
 
PDF
Ticketmaster at a glance
byApigee | Google Cloud
 
PDF
AccuWeather: Recasting API Experiences in a Developer-First World
byApigee | Google Cloud
 
PDF
Which Application Modernization Pattern Is Right For You?
byApigee | Google Cloud
 
PPTX
Apigee Product Roadmap Part 2
byApigee | Google Cloud
 
PPTX
The Four Transformative Forces of the API Management Market
byApigee | Google Cloud
 
PDF
Walgreens at a glance
byApigee | Google Cloud
 
PDF
Apigee Edge: Intro to Microgateway
byApigee | Google Cloud
 
PDF
Managing the Complexity of Microservices Deployments
byApigee | Google Cloud
 
PDF
Pitney Bowes at a glance
byApigee | Google Cloud
 
PPTX
Microservices Done Right: Key Ingredients for Microservices Success
byApigee | Google Cloud
 
PDF
Adapt or Die: Opening Keynote with Chet Kapoor
byApigee | Google Cloud
 
PDF
Adapt or Die: Keynote with Greg Brail
byApigee | Google Cloud
 
PDF
Adapt or Die: Keynote with Anant Jhingran
byApigee | Google Cloud
 
PDF
London Adapt or Die: Opening Keynot
byApigee | Google Cloud
 
PDF
London Adapt or Die: Lunch keynote
byApigee | Google Cloud
 
PDF
London Adapt or Die: Closing Keynote — Adapt Now!
byApigee | Google Cloud
 
PPTX
London adapt or-die opening keynote chet kapoor
byApigee | Google Cloud
 
How Secure Are Your APIs?
byApigee | Google Cloud
 
Magazine Luiza at a glance (1)
byApigee | Google Cloud
 
Apigee Demo: API Platform Overview
byApigee | Google Cloud
 
Ticketmaster at a glance
byApigee | Google Cloud
 
AccuWeather: Recasting API Experiences in a Developer-First World
byApigee | Google Cloud
 
Which Application Modernization Pattern Is Right For You?
byApigee | Google Cloud
 
Apigee Product Roadmap Part 2
byApigee | Google Cloud
 
The Four Transformative Forces of the API Management Market
byApigee | Google Cloud
 
Walgreens at a glance
byApigee | Google Cloud
 
Apigee Edge: Intro to Microgateway
byApigee | Google Cloud
 
Managing the Complexity of Microservices Deployments
byApigee | Google Cloud
 
Pitney Bowes at a glance
byApigee | Google Cloud
 
Microservices Done Right: Key Ingredients for Microservices Success
byApigee | Google Cloud
 
Adapt or Die: Opening Keynote with Chet Kapoor
byApigee | Google Cloud
 
Adapt or Die: Keynote with Greg Brail
byApigee | Google Cloud
 
Adapt or Die: Keynote with Anant Jhingran
byApigee | Google Cloud
 
London Adapt or Die: Opening Keynot
byApigee | Google Cloud
 
London Adapt or Die: Lunch keynote
byApigee | Google Cloud
 
London Adapt or Die: Closing Keynote — Adapt Now!
byApigee | Google Cloud
 
London adapt or-die opening keynote chet kapoor
byApigee | Google Cloud
 

Recently uploaded

PDF
The Future of Search: Why LLM Optimization Matters for Every Website
byav0763436
 
PDF
Cybersecurity Prevention and Detection Specialization
byVICTOR MAESTRE RAMIREZ
 
PDF
Transforming SAP® Processes Through Automation: 2026 Trends and Challenges.pdf
byPrecisely
 
PDF
Generative AI in UiPath: Mastering the Generative Extractor for Intelligent D...
byDianaGray10
 
PDF
TPPmark2025 Kenta Inoue's answer 12/04/2025
byKenta Inoue
 
PDF
The Ultimate Guide to Problem Management Dashboards for IT Teams.pdf
byomnex systems
 
PDF
Top Cybersecurity Threats 2025 Guide by Sureshdas
byPrintersassist
 
PPTX
The Landscape of Computer Software Development Companies
byYash Singh
 
PDF
Mobile-Computing-A-Revolution-in-Our-Hands.pdf
bymimbulatove
 
PDF
Cleveland, OH Developer Group Dec 2, 2025 Slides for December Demos
byLynda Kane
 
PDF
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
PDF
Recursive Self Improvement vs Continuous Learning
byBob Marcus
 
PDF
Ransomware_Resilience_Strategic_Playbook.pdf
byAfonso Henrique Rodrigues Alves
 
PDF
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
PDF
Top 7 Manufacturing Software for Small Businesses Boosting Growth in 2025
byEnvertis Software Solutions
 
DOCX
Introduction to the World of Computers (Hardware & Software)
byALIABBAS ABASOV
 
PDF
Safeguarding AI-Based Financial Infrastructure
bysleepandremedies
 
PPTX
The Future of IT Service Management AI Automation & Beyond.pptx
byChetu
 
PDF
Generative AI in 2026: Hype, Bubble, Winter or The Real Deal?
byDr. Tathagat Varma
 
PDF
Agentic Automation for Testers – A Hands-On Deep Dive
byUiPathCommunity
 
The Future of Search: Why LLM Optimization Matters for Every Website
byav0763436
 
Cybersecurity Prevention and Detection Specialization
byVICTOR MAESTRE RAMIREZ
 
Transforming SAP® Processes Through Automation: 2026 Trends and Challenges.pdf
byPrecisely
 
Generative AI in UiPath: Mastering the Generative Extractor for Intelligent D...
byDianaGray10
 
TPPmark2025 Kenta Inoue's answer 12/04/2025
byKenta Inoue
 
The Ultimate Guide to Problem Management Dashboards for IT Teams.pdf
byomnex systems
 
Top Cybersecurity Threats 2025 Guide by Sureshdas
byPrintersassist
 
The Landscape of Computer Software Development Companies
byYash Singh
 
Mobile-Computing-A-Revolution-in-Our-Hands.pdf
bymimbulatove
 
Cleveland, OH Developer Group Dec 2, 2025 Slides for December Demos
byLynda Kane
 
Decoding the DNA: The Digital Networks Act, the Open Internet, and IP interco...
byCSUC - Consorci de Serveis Universitaris de Catalunya
 
Recursive Self Improvement vs Continuous Learning
byBob Marcus
 
Ransomware_Resilience_Strategic_Playbook.pdf
byAfonso Henrique Rodrigues Alves
 
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
Top 7 Manufacturing Software for Small Businesses Boosting Growth in 2025
byEnvertis Software Solutions
 
Introduction to the World of Computers (Hardware & Software)
byALIABBAS ABASOV
 
Safeguarding AI-Based Financial Infrastructure
bysleepandremedies
 
The Future of IT Service Management AI Automation & Beyond.pptx
byChetu
 
Generative AI in 2026: Hype, Bubble, Winter or The Real Deal?
byDr. Tathagat Varma
 
Agentic Automation for Testers – A Hands-On Deep Dive
byUiPathCommunity
 
In this document
Powered by AI
See More

Introduction of presenters Robert Broeckelmann and Dino Chiesa, and links to Apigee's social media and community resources.

Overview of a presentation on modernizing Service Oriented Architecture through API technologies, with disclaimers regarding different organizational needs.

The agenda outlines five key sections: Business & Tech Drivers, Current Infrastructure, Gaps, Requirements, and Lessons Learned.

Discussion of business and technology drivers for API adoption, including mobile integration, SaaS, and evolving security standards.

Examination of current SOA and integration capabilities using IBM Integration Stack, including governance, security models, and integration standards.

Overview of the Enterprise Service Bus (ESB) and Service Gateway architecture utilizing IBM products for secure API traffic management.

Identification of gaps in current infrastructure including legacy issues, limited API management support, and need for a developer portal.

Importance of modernizing legacy systems by adopting APIs for better functionality access, cloud integration, and enhanced business agility.

Key requirements for API implementation including API-First methodology, governance, security models, and cloud integration.

Definition of API Management as the process for publishing and overseeing APIs, including key components for effective management.

Reflects on lessons learned from using both on-premise and cloud solutions, including adaptation to mixed environments of SOAP and REST APIs.

Description of the end-state architecture leveraging Apigee to extend integration stack capabilities, focusing on cloud and mobile platforms.

Modernize Service-Oriented Architecture with APIs

  • 1.
    ©2016 Apigee Corp.All Rights Reserved.
  • 2.
  • 3.
  • 4.
    Modernizing Service OrientedArchitecture with APIs!
  • 5.
    ABOUT ME! •  Founderand Principal Consultant at RCBJ Consulting, LLC. •  Being bought by Levvel, LLC •  Now, Principal Consultant at Levvel, LLC •  Levvel, LLC is a fast-growing IT consulting firm that combines the innovative DNA of a startup with the wisdom, scalability, and process rigor of a Fortune 100 company. •  Offers technical and strategic advisory services including DevOps, Cloud, Mobile, UX/UI, Big Data,Analytics, Payment Strategy, and more •  Masters degree in Computer Science from Washington University in Saint Louis •  Started working with Apigee Edge Server in 2014 •  Worked with WebSphere DataPower since 2010
  • 6.
    DISCLAIMERS, WARNINGS, HEALTHHAZARDS! •  What we present here is one of numerous possible ways to use Apigee technology. Your situation and requirements will probably differ. •  As always, test things in a non-production environment prior to using anything in production. •  We are not responsible for spontaneous combustion of the known universe or any other undesirable outcomes associated with using what is discussed here. •  This presentation describes a large organization’s journey from an existing SOA & Integration platform to API Management. •  Unfortunately, the organization will remain nameless
  • 7.
    AGENDA! 1.  Business &TechnologyDrivers 2.  Current Infrastructure, SOA & Integration Capabilities 3.  Gaps 4.  Considerations & Requirements 5.  Lessons Learned & End-State Architecture
  • 8.
    WHAT ARE THEDRIVERS?! •  Business •  Mobile •  B2B Integration •  SaaS Solution Integration •  Facilitate wider adoption •  Increase Business opportunities •  Technology •  Direction Industry is going •  APIs easier to develop with than predecessor standards •  Maturing standards •  Security:Authentication & Authorization (OAuth 2.0, OpenID Connect 1.0, and JWT) •  Interface Definition: Swagger 2.0 •  JSON Schema
  • 9.
    EXISTING SOA/INTEGRATION CAPABILITIES! • SOA Capabilities •  SOA governance/service life-cycle management •  Service meta-data registry/repository •  Service versioning/routing/security policy •  Security model •  Standard messaging models •  Enterprise service standards •  Standard error handling, reporting, and statistics logging •  Integration Capabilities •  Integrating dozens of on-premise Commercial Off-The-Shelf (COTS) apps/third-party systems •  SOAP over HTTPS and XML over Websphere MQ •  Data transformations/protocol transformations/security integration
  • 10.
    EXISTING SOA/INTEGRATION CAPABILITIES! • Use the IBM Integration Stack •  WebSphere Message Broker/IIB •  WebSphere DataPower •  WebSphere Services Registry & Repository •  WebSphere MQ •  WebSphereTransformation Extender(WTX) •  Focusing on WebSphere DataPower •  Relevant Patterns •  Enterprise Service Bus (ESB) •  Service Gateway
  • 11.
    ENTERPRISE SERVICE BUS! • These products make up the IBM Integration and SOA Stack •  Service Consumers and Service Providers are combination of SOAP web services, MQ Message Consumers and Message Producers, XML/JSON REST Services, and APIs •  DataPower is the front door to the ESB (for services and API traffic) – standard IBM pattern
  • 12.
    SERVICE GATEWAY! •  Alltraffic is encrypted viaTLS orVPN •  Ingress and Egress scenarios use the same physical appliances – different Application Domains. •  Single Ingress/Egress point for SOAP Services/APIs traffic involving internet •  DataPower protects SOAP and API endpoints at the edge of the network •  IdP/STS/IAM systems not shown •  Load Balancers and other systems that do not contribute to this pattern are not shown
  • 13.
    CURRENT INFRASTRUCTURE: GAPS! • Legacy Baggage •  Primarily created by organization, not the technology •  Creates complications and obstacles that must be dealt with •  Existing integration stack products not built with REST/APIs & JSON in mind •  Added as afterthought •  Missing developer portal •  One stop, self-service shop for developers throughout the development lifecycle •  Ties into DevOps plans for the organization
  • 14.
    CURRENT INFRASTRUCTURE: GAPS! • Information, current as of Q4, 2014. •  All products mentioned under ongoing active development. •  Cannot perform JSON schema validation and API request/response validation based upon Swagger 2.0 data definitions •  Limited support for APIs and Swagger 2.0 in existing service registry •  No support for a standards-based API security model •  OAuth 2.0, Open ID Connect 1.0, and JWT 1.0 •  Current infrastructure is all on-premise •  Limited to single part of the country •  No geo-location based routing of API requests.
  • 15.
    WHY MODERNIZE? WHYUSE APIS?! •  APIs have become the industry standard for system interfaces of all kinds •  Hide complexity; expose existing functionality •  Use APIs as the basis for porting systems/functionality into the cloud •  Make it easier for other business units and business partners to access systems and data, but maintain security •  Next step in evolution of SOA/Integration platforms
  • 16.
    REQUIREMENTS! •  Want touse •  API-First Design methodology for APIs •  Swagger 2.0 as the interface definition language •  Ties together security model, standard data/messaging models, API standards, and internal SDLC •  Also provides a testing mechanism for APIs •  Developer portal that serves as a one-stop, self-service shop for developer access to •  Developer registration •  Application registration •  API documentation •  Security registration •  Self service
  • 17.
    REQUIREMENTS! •  Same Service-Lifecycleused with SOAP Web Services applies to API Lifecycle •  Do not want to lose structure and discipline of SOA Governance and service life-cycle management •  Let’s call this API Governance and API Life-Cycle Management •  Continue to realize ROI in the IBM Integration Stack •  Includes DataPower •  Supported Use Cases •  Single Page Web Applications •  B2B integration •  System-to-System communication •  Want to leverage organization’s existing programming skill sets •  Java & Javascript
  • 18.
    REQUIREMENTS! •  SAML 2.0/WS-Trust1.3/WS-Security 1.0 Security Model used with SOAP Web Services as a model for OAuth 2.0/OpenID Connect 1.0/ JWT 1.0 Security Model for APIs •  Standards-based approach to security •  PCI Compliance could be a requirement in the future •  Cloud-based solution •  Extend on-premise integration stack capabilities into the cloud •  Going forward, many SaaS API Providers and API Consumers versus on-premise deployments •  Do not want to be limited to a single cloud provider •  All the other benefits of a cloud-based infrastructure
  • 19.
    API MANAGEMENT! •  Whatis API Management? •  The process of publishing, promoting, and overseeing APIs in a secure, scalable environment •  Ensures that developers and partners are productive •  Manages, secures, and mediates your API traffic •  Allows an organization to grow their API program to meet increasing demands •  Three components •  Management Portal •  Developer Portal •  Runtime Gateway
  • 20.
    LESSONS LEARNED! •  UsedDataPower on-premise for ESB Gateway and DMZ Gateway; used Apigee Edge Server in the cloud.Allowed ROI of the original IBM Integration Stack deployment to continue to be realized •  Avoid cloud-based API Gateway run-time dependencies that tie back to your data center – potentially creating a single point of failure •  Using SaaS middleware solutions allows organizations to focus on mission-critical, business-oriented problems •  There will be a mix of SOAP & REST/APIs for the foreseeable future •  API/REST related specs are evolving, but still young compared to WS-* specs. •  Existing organization of infrastructure and middleware administrators, developers, and SOA Governance group were able to adapt to manage and utilize APIs
  • 21.
    END-STATE ARCHITECTURE! •  ApigeeEdge Server extends Integration Stack capabilities into the cloud •  Handles Internet-facing API Providers •  Primary API endpoint •  Cloud-based B2B Integration •  APIs & SOAP WebServices •  Developer Portal •  Key component of mobile platform
  • 22.
    ©2016 Apigee. AllRights Reserved. Thank you! Continue the conversation at " https://community.apigee.com