SlideShare a Scribd company logo

One Gateway to Rule them All: Building a Federated API Management Platform

Sven Bernhardt
Sven Bernhardt

Presentation held at DOAG 2023 in Nuremberg. There is no alternative for companies today to introduce an API strategy and set up an API management platform if they want to remain successful in the long term. In times of hybrid, multi-cloud architectures, characteristics such as efficiency, flexibility and manageability are required. A federated API management approach offers all of this. Kong offers an API gateway that is flexible and extensible and is therefore ideally suited for setting up such an approach. This presentation will introduce how Kong can be used to build an API platform that can be used to securely deploy and manage APIs across multiple environments. In this context, I will cover the following aspects: - Federated API Management: what it is and how it differs from other approaches - Features of the Kong API gateway and its capabilities - Strategies for managing APIs across multiple environments with Kong - Implementation details and good practices for building a federated API management platform with Kong The goal of the presentation is to convey the benefits of a federated approach by demonstrating how API development and management can be unified across multiple environments, reducing complexity and overhead and improving overall security and compliance.

Technology
1 of 39
Download to read offline
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 1 Building a Federated API Management Platform Nuremberg, 2023-11-22 Sven Bernhardt ONE GATEWAY TO RULE THEM ALL
© OPITZ CONSULTING 2023 / Öffentlich THAT‘S ME One Gateway to rule them all 2 Sven Bernhardt Cloud-Native enthusiast, API & integration geek. Always curious how new technologies and concepts can help to make things more valuable and efficient. @sbernhardt https://svenbernhardt.wordpress.com/ Chief Architect / Integration Evangelist OPITZ CONSULTING Deutschland GmbH
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 3 WHERE WE ARE 01 APIS & GATEWAYS 02 CONCLUSION 04 API PLATFORMS 03
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 4 WHERE WE ARE 01
© OPITZ CONSULTING 2023 / Öffentlich THE WORLD IS CLOUD-NATIVE … One Gateway to rule them all 5 ¢ Characteristics of Cloud-native apps: ¢ Loose coupling ¢ Resilient and fault-tolerant ¢ Scalable ¢ Manageable ¢ Observable “… loosely coupled systems that are resilient, manageable, and observable. Combined with robust automation, they allow engineers to make high-impact changes frequently and predictably with minimal toil.” (CNCF definition Cloud-native) Cloud-native Microservices & APIs CI / CD DevOps Containers
© OPITZ CONSULTING 2023 / Öffentlich … AND OFTEN AT LEAST HYBRID OR HYBRID, MULTI-CLOUD One Gateway to rule them all 6 ¢ Shift to the Cloud continues ¢ Trend leads toward using multiple Clouds (Best-of-breed approach) ¢ On-prem systems are replaced or complemented by SaaS offerings
© OPITZ CONSULTING 2023 / Öffentlich MOVE TO THE CLOUD AND CLOUD-NATIVE PRINCIPLES FURTHERS TREND TO DECENTRALIZATION One Gateway to rule them all 7 Centralized STATIC ON-PREM MONOLITH VIRTUAL MACHINES MANUAL CHANGE PROCESS Decentralized DYNAMIC CLOUD / MULTI-CLOUD MICROSERVICES / SERVERLESS CONTAINERS, KUBERNETES AUTOMATED CI/CD TOOL CHAIN # Services & APIs CONTROL AND VISIBILITY
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all Gen 0 ESB Gen 1 XML Appliances Gen 2 REST & API Gateways Gen 3 µGateways Timeline 2006 2011 2014 API GATEWAY EVOLUTION: FROM SIMPLE REVERSE PROXIES TO MICROGATEWAYS 8
© OPITZ CONSULTING 2023 / Öffentlich WE’RE FACING A MAJOR TECHNOLOGY TRANSITION THAT WE SHOULD ACTIVELY SHAPE One Gateway to rule them all 9 Source: https://www.youtube.com/watch?v=D41cLljxZ-U&list=PLg_AhYkg50vi_DVrEqKPX11blSwom6YUr&index=4
© OPITZ CONSULTING 2023 / Öffentlich HAVING AN API VISION THAT DEFINES THE WHY, HOW AND WHAT IS IMPORTANT TO SUCCEED! One Gateway to rule them all 10 ¢ When thinking about APIs, it should have a business impact ¢ APIs are digital products and should be handled as such ¢ Product orientation mainly impacts people and the organization ¢ Technology is a vehicle that enables sustainable Product management ¢ API Vision needs to ensure that change happens in a balanced way People Organization Technologies
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 11 APIS & GATEWAYS 02
© OPITZ CONSULTING 2023 / Öffentlich API-PRODUCTS ARE USED TO COMPREHENSIBLE INTERACT WITH THE OPERATIONAL DATA WITHIN A DOMAIN One Gateway to rule them all ¢ Characteristics of an API product: ¢ User experience (UX) ¢ Reliability ¢ API products are consumer-centric ¢ API products may have different In- /Output Ports: ¢ Sync for User-centric interactions ¢ Async for System-centric interactions (e.g. Cross-Domain interactions) API Contract (e.g. Open API) 12
© OPITZ CONSULTING 2023 / Öffentlich REALIZE THAT APIS ARE SUBJECT TO A LIFECYCLE One Gateway to rule them all 13 ¢ A stable API lifecycle is an essential part of an effective API governance strategy ¢ API lifecycle ¢ Reaches from idea to „ready to use API“ ¢ Supports fast innovation lifecycles ¢ Helps to implement API-first strategy ¢ There are different lifecycles for producers & consumers – but related ¢ Benefits ¢ Increased productivity ¢ Greater visibility ¢ Organizational alignment Design Review & build Deploy Promote, deprecate, retire Operate & observe Learn & evolve API ideation & planning Back to design due to consumer feedback during development
© OPITZ CONSULTING 2023 / Öffentlich API CONTRACTS NEED TO DELIVER A GREAT USER EXPERIENCE (UX) One Gateway to rule them all ¢ Focus on potential consumers ¢ How will a consumer use my API? ¢ What kind of resources and operations are needed by the consumers? ¢ APIs should be consumer-centric and thus be consumable ¢ Well-designed, secured and compliant ¢ Documented, discoverable and accessible ¢ Performant, reliable and scalable Source: https://konghq.com/blog/what-is-apiops/ Compliant Functional Findable The intersection of the three characteristics defines consumable APIs! When we talk about APIs, we don't necessarily mean REST APIs! 14
© OPITZ CONSULTING 2023 / Öffentlich ESTABLISH API GATEWAY AS A SINGLE ENTRY POINT TO AN ENTERPRISES BACKEND SERVICES One Gateway to rule them all 15 ¢ Cares about APIs at runtime ¢ Allow for consistent Governance ¢ Increase transparency ¢ API usage ¢ APIs available ¢ Conform with security standards ¢ Increase Developer Productivity Managing APIs means more than just having an API Gateway in place! Things (mostly) automated API lifecycle as well as community management.
© OPITZ CONSULTING 2023 / Öffentlich API GATEWAY AS A SHARED POLICY LAYER One Gateway to rule them all 16 Business Logic (B) Policy (P) OTHER MONOLITH Routing Load Balancing Authentication Authorization Logs & Metrics Rate Limiting Caching Validation Transformation MICROSERVICES MULTI-CLOUD & KUBERNETES ON-PREMISE HOSTING B Shared Policy Layer (API Gateway) B B B B B B B B B Serverless (e.g. AWS Lambda) More applications and services More languages and protocols REST} { More deployment types 3RD-PARTY
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 17 CHALLENGE: BALANCE BETWEEN SPEED AND CONSISTENCE https://opitzcloud.canto.global/b/I3FO4
© OPITZ CONSULTING 2023 / Öffentlich DECENTRALISED API MANAGEMENT: FOCUS ON SPEED One Gateway to rule them all 18 API Platform Dev Team 1 Dev Team 2 Dev Team n API Standard 1 API Standard 2 API Standard n Decreasing consistency
© OPITZ CONSULTING 2023 / Öffentlich CENTRALISED API MANAGEMENT: FOCUS ON CONSISTENCE One Gateway to rule them all 19 API Platform Dev Team 1 Dev Team 2 Dev Team n API Platform Team Review loop Review loop Review loop API Guidelines API Guidelines API Guidelines Decreased speed
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 20 AUTOMATION TO BALANCE SPEED AND CONSISTENCE https://opitzcloud.canto.global/b/OQR0O
© OPITZ CONSULTING 2023 / Öffentlich APIOPS APPROACH: FOCUS ON SPEED AND CONSISTENCE One Gateway to rule them all 21 API Platform Dev Team 1 Dev Team 2 Dev Team n API Platform Team API Guidelines API Guidelines API Guidelines Automated deployment Governance layer Defines Guidelines, Rules & Restrictions Automated, direct feedback Automated, direct feedback Automated, direct feedback
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 22 API PLATFORMS 03
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 23 CHARACTERISTICS OF A MODERN API PLATFORM Modern Tooling: Use modern engineering tools and techniques, infrastructure as code and automation Easy Onboarding: Low ramp for new internal teams to onboard to the platform Minimize cognitive load: Empower developers to foucs on delivering core business value Continually evolve: The Platform should be flexible enough to support new use cases (Desing4Change) 01 02 03 04
© OPITZ CONSULTING 2023 / Öffentlich WHEN TALKING ABOUT PLATFORMS WE NEED TO TALK ABOUT PLATFORM ENGINEERING One Gateway to rule them all 24 What is Platform Engineering? “Platform engineering is an emerging technology (concept) that can accelerate the delivery of applications and the pace at which they produce business value.” Gartner
© OPITZ CONSULTING 2023 / Öffentlich A MODERN API PLATFORM NEEDS TO BE READY TO ADDRESS CHALLENGES IN MORE AND MORE DISTRIBUTED WORLD One Gateway to rule them all ¢ Postulate: Modern architectures are at least hybrid and may be hybrid, multi-cloud ¢ Ideally, a distributed API platform is unified ¢ Increases efficiency in operating ¢ Allow to easily evolve the platform ¢ Different models to organize an API Platform ¢ Siloed ¢ Centralized ¢ Federated 25
© OPITZ CONSULTING 2023 / Öffentlich SILOED MODEL One Gateway to rule them all 26 ¢ Deployment blueprints (IaC) provided by Platform team ¢ Fully isolated platform for each Product / Domain team ¢ No dependency on the central team ¢ Maintenance, Updating / Patching ¢ Security, Hardening ¢ Product / Domain teams are not bound to central governance processes ¢ Reusage and sharing between teams is limited
© OPITZ CONSULTING 2023 / Öffentlich CENTRALIZED MODEL One Gateway to rule them all 27 ¢ The platform team is responsible for the API platform ¢ Maintenance, Updating / Patching ¢ Security, Hardening ¢ Scaling ¢ Deployed API gateways are shared between teams ¢ A shared Platform team can become a bottleneck ¢ Limited ability to implement strict isolation between different business units
© OPITZ CONSULTING 2023 / Öffentlich WHAT DOES “FEDERATION” MEAN? One Gateway to rule them all 28 ¢ Characteristics ¢ Central federal governance unit ¢ Defines guidelines ¢ Defines binding rules ¢ Self-governing sub-units ¢ Using guidelines, but are free to implement ¢ Internal autonomy ¢ Clear delineation of responsibilities ¢ Shared ¢ Exclusive (executed by central unit) ¢ Decisions made by sub-units cannot be overruled by the central unit “A federation (a federal state) is a political entity characterized by a union of partially self-governing provinces, states, or other regions under a central federal government (federalism). Alternatively, a federation is a form of government in which sovereign power is formally divided between a central authority and several constituent regions so that each region retains some degree of control over its internal affairs.” (Def. Federation (political), Source: Wikipedia)
© OPITZ CONSULTING 2023 / Öffentlich FEDERATED MODEL One Gateway to rule them all 29 ¢ One centralized Control plane run by a Platform team ¢ Used by all teams within an organization ¢ Multi-tenancy ¢ Multiple API gateways (Data planes) ¢ Managed by Product / Domain teams ¢ Helps teams become more independent ¢ Configuration managed within the teams ¢ Golden images provided by a Platform team ¢ Updates / Security (Hardening) managed centrally ¢ Automated provisioning (IaC) Source: https://konghq.com/blog/enterprise/federated-api-management
© OPITZ CONSULTING 2023 / Öffentlich CHALLENGES FOR FEDERATED MODELS IN HETEROGENEOUS ARCHITECTURES One Gateway to rule them all 30 ¢ Some API vendors offer federated API platforms for heterogeneous architectures ¢ Heterogeneous approach ¢ Different Gateways from different vendors ¢ No standard for communication between CP and DPs ¢ Limited feature support (e.g. just syncing API contracts, not configuration)
© OPITZ CONSULTING 2023 / Öffentlich WHAT IS KONG? One Gateway to rule them all 31 ¢ Lightweight, fast, and flexible cloud native API gateway ¢ Facts: ¢ 400B+ API Calls ¢ 312M+ Downloads ¢ 35K+ GitHub stars ¢ Characteristics: ¢ Fully automated (APIOps) ¢ Deployment agnostic ¢ Highly extensible
© OPITZ CONSULTING 2023 / Öffentlich FEDERATED API MANAGEMENT WITH KONG One Gateway to rule them all 32
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 33 DEMO
© OPITZ CONSULTING 2023 / Öffentlich DEMO SETUP One Gateway to rule them all 34 ¢ Hybrid and Multi-Cloud architecture ¢ Data Planes distributed over ¢ Oracle Cloud (Compute) ¢ AWS (EC2) ¢ On-prem (Dockerized deployment) ¢ K8s example Kong Ingress Controller ¢ Oracle Container Engine For Kubernetes (OKE) ¢ All managed through Kong Konnect
© OPITZ CONSULTING 2023 / Öffentlich DEMO OVERVIEW One Gateway to rule them all 35 OCI AWS Kong Konnect On-Premises Cloud Kong Ingress Controller (KIC) manages manages manages Management Plane
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 36 CONCLUSION 04
© OPITZ CONSULTING 2023 / Öffentlich KEY TAKEAWAYS One Gateway to rule them all 37 ¢ APIs need to be managed ¢ Collaboration is key for good API products ¢ It’s all about community ¢ To be able to efficiently manage your APIs a platform is needed ¢ Focus on Developer Experience (DX) ¢ Focus on Automation ¢ Focus on Standardization ¢ The federated model provides flexibility, but also requires buy-in from Product teams
© OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 38 Q & A
© OPITZ CONSULTING 2023 / Öffentlich INTEGRATION IS THE FOUNDATION FOR IT-MODERNIZATION One Gateway to rule them all Sven Bernhardt Chief Architect sven.bernhardt@opitz- consulting.com www.opitz-consulting.com Thanks for your attention! Questions left? Contact me! 39

Recommended

Efficient API delivery with APIOps
Efficient API delivery with APIOpsEfficient API delivery with APIOps
Efficient API delivery with APIOps
Sven Bernhardt
 
Efficient API delivery with APIOps
Efficient API delivery with APIOpsEfficient API delivery with APIOps
Efficient API delivery with APIOps
Sven Bernhardt
 
Elevating Development: Embracing APIOps for Enhanced Developer Productivity
Elevating Development: Embracing APIOps for Enhanced Developer ProductivityElevating Development: Embracing APIOps for Enhanced Developer Productivity
Elevating Development: Embracing APIOps for Enhanced Developer Productivity
Sven Bernhardt
 
API Gateway or Service Mesh - Complementary or excluding concepts
API Gateway or Service Mesh - Complementary or excluding conceptsAPI Gateway or Service Mesh - Complementary or excluding concepts
API Gateway or Service Mesh - Complementary or excluding concepts
Sven Bernhardt
 
Mit APIs auf der Überholspur zur produktorientierten Organisation
Mit APIs auf der Überholspur zur produktorientierten OrganisationMit APIs auf der Überholspur zur produktorientierten Organisation
Mit APIs auf der Überholspur zur produktorientierten Organisation
Fabian Hardt
 
Integration architectures based on Microservices, APIs and events
Integration architectures based on Microservices, APIs and eventsIntegration architectures based on Microservices, APIs and events
Integration architectures based on Microservices, APIs and events
Sven Bernhardt
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCI
Sven Bernhardt
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCI
Sven Bernhardt
 

Recommended

Efficient API delivery with APIOps
Efficient API delivery with APIOpsEfficient API delivery with APIOps
Efficient API delivery with APIOps
Sven Bernhardt
 
Efficient API delivery with APIOps
Efficient API delivery with APIOpsEfficient API delivery with APIOps
Efficient API delivery with APIOps
Sven Bernhardt
 
Elevating Development: Embracing APIOps for Enhanced Developer Productivity
Elevating Development: Embracing APIOps for Enhanced Developer ProductivityElevating Development: Embracing APIOps for Enhanced Developer Productivity
Elevating Development: Embracing APIOps for Enhanced Developer Productivity
Sven Bernhardt
 
API Gateway or Service Mesh - Complementary or excluding concepts
API Gateway or Service Mesh - Complementary or excluding conceptsAPI Gateway or Service Mesh - Complementary or excluding concepts
API Gateway or Service Mesh - Complementary or excluding concepts
Sven Bernhardt
 
Mit APIs auf der Überholspur zur produktorientierten Organisation
Mit APIs auf der Überholspur zur produktorientierten OrganisationMit APIs auf der Überholspur zur produktorientierten Organisation
Mit APIs auf der Überholspur zur produktorientierten Organisation
Fabian Hardt
 
Integration architectures based on Microservices, APIs and events
Integration architectures based on Microservices, APIs and eventsIntegration architectures based on Microservices, APIs and events
Integration architectures based on Microservices, APIs and events
Sven Bernhardt
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCI
Sven Bernhardt
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCI
Sven Bernhardt
 
API design-first and Microservices
API design-first and MicroservicesAPI design-first and Microservices
API design-first and Microservices
Sven Bernhardt
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCI
Sven Bernhardt
 
API Gateway or Service mesh - Complementary or excluding concepts
API Gateway or Service mesh - Complementary or excluding conceptsAPI Gateway or Service mesh - Complementary or excluding concepts
API Gateway or Service mesh - Complementary or excluding concepts
Sven Bernhardt
 
Cloud-native Application Development - The new normal
Cloud-native Application Development - The new normalCloud-native Application Development - The new normal
Cloud-native Application Development - The new normal
Sven Bernhardt
 
Declarative observability management for Microservice architectures
Declarative observability management for Microservice architecturesDeclarative observability management for Microservice architectures
Declarative observability management for Microservice architectures
Sven Bernhardt
 
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
OPITZ CONSULTING Deutschland
 
Cloud-native is just part of the game
Cloud-native is just part of the gameCloud-native is just part of the game
Cloud-native is just part of the game
Sven Bernhardt
 
API-first design - Basis for an consistent API-Management approach
API-first design - Basis for an consistent API-Management approachAPI-first design - Basis for an consistent API-Management approach
API-first design - Basis for an consistent API-Management approach
Sven Bernhardt
 
Analytics meets Integration – Modern Development mit Data APIs
Analytics meets Integration – Modern Development mit Data APIsAnalytics meets Integration – Modern Development mit Data APIs
Analytics meets Integration – Modern Development mit Data APIs
Fabian Hardt
 
API first Design and Microservices
API first Design and MicroservicesAPI first Design and Microservices
API first Design and Microservices
Sven Bernhardt
 
Kong 101 - Jumpstart into the world of APIs
Kong 101 - Jumpstart into the world of APIsKong 101 - Jumpstart into the world of APIs
Kong 101 - Jumpstart into the world of APIs
Sven Bernhardt
 
Service integration made easy with Open Source Kuma
Service integration made easy with Open Source KumaService integration made easy with Open Source Kuma
Service integration made easy with Open Source Kuma
Sven Bernhardt
 
MuleSoft Meetup Valletta 1.0
MuleSoft Meetup Valletta 1.0MuleSoft Meetup Valletta 1.0
MuleSoft Meetup Valletta 1.0
Anastasiia Linnas
 
Evolution of API-driven architectures
Evolution of API-driven architecturesEvolution of API-driven architectures
Evolution of API-driven architectures
Sven Bernhardt
 
Evolution of API-driven Architectures
Evolution of API-driven ArchitecturesEvolution of API-driven Architectures
Evolution of API-driven Architectures
OPITZ CONSULTING Deutschland
 
Cloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle CloudCloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle Cloud
Sven Bernhardt
 
Cloud-native Application Development on OCI
Cloud-native Application Development on OCICloud-native Application Development on OCI
Cloud-native Application Development on OCI
Sven Bernhardt
 
Analytics meets Integration - Modern Development with Data APIs
Analytics meets Integration - Modern Development with Data APIsAnalytics meets Integration - Modern Development with Data APIs
Analytics meets Integration - Modern Development with Data APIs
Sven Bernhardt
 
API First - Best Practices for consistent API management
API First - Best Practices for consistent API managementAPI First - Best Practices for consistent API management
API First - Best Practices for consistent API management
Sven Bernhardt
 
API Management and why it matters (Oracle API Platform)
API Management and why it matters (Oracle API Platform) API Management and why it matters (Oracle API Platform)
API Management and why it matters (Oracle API Platform)
OPITZ CONSULTING Deutschland
 
Effective and simple - integration architectures with Apache Camel and Quarkus
Effective and simple - integration architectures with Apache Camel and QuarkusEffective and simple - integration architectures with Apache Camel and Quarkus
Effective and simple - integration architectures with Apache Camel and Quarkus
Sven Bernhardt
 
Modernization options for Oracle Forms applications
Modernization options for Oracle Forms applicationsModernization options for Oracle Forms applications
Modernization options for Oracle Forms applications
Sven Bernhardt
 

More Related Content

Similar to One Gateway to Rule them All: Building a Federated API Management Platform

API design-first and Microservices
API design-first and MicroservicesAPI design-first and Microservices
API design-first and Microservices
Sven Bernhardt
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCI
Sven Bernhardt
 
API Gateway or Service mesh - Complementary or excluding concepts
API Gateway or Service mesh - Complementary or excluding conceptsAPI Gateway or Service mesh - Complementary or excluding concepts
API Gateway or Service mesh - Complementary or excluding concepts
Sven Bernhardt
 
Cloud-native Application Development - The new normal
Cloud-native Application Development - The new normalCloud-native Application Development - The new normal
Cloud-native Application Development - The new normal
Sven Bernhardt
 
Declarative observability management for Microservice architectures
Declarative observability management for Microservice architecturesDeclarative observability management for Microservice architectures
Declarative observability management for Microservice architectures
Sven Bernhardt
 
Cloud-native is just part of the game
Cloud-native is just part of the gameCloud-native is just part of the game
Cloud-native is just part of the game
Sven Bernhardt
 
API-first design - Basis for an consistent API-Management approach
API-first design - Basis for an consistent API-Management approachAPI-first design - Basis for an consistent API-Management approach
API-first design - Basis for an consistent API-Management approach
Sven Bernhardt
 
API first Design and Microservices
API first Design and MicroservicesAPI first Design and Microservices
API first Design and Microservices
Sven Bernhardt
 
Kong 101 - Jumpstart into the world of APIs
Kong 101 - Jumpstart into the world of APIsKong 101 - Jumpstart into the world of APIs
Kong 101 - Jumpstart into the world of APIs
Sven Bernhardt
 
Service integration made easy with Open Source Kuma
Service integration made easy with Open Source KumaService integration made easy with Open Source Kuma
Service integration made easy with Open Source Kuma
Sven Bernhardt
 
Evolution of API-driven architectures
Evolution of API-driven architecturesEvolution of API-driven architectures
Evolution of API-driven architectures
Sven Bernhardt
 
Cloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle CloudCloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle Cloud
Sven Bernhardt
 
API Management and why it matters (Oracle API Platform)
API Management and why it matters (Oracle API Platform) API Management and why it matters (Oracle API Platform)
API Management and why it matters (Oracle API Platform)
OPITZ CONSULTING Deutschland
 

Similar to One Gateway to Rule them All: Building a Federated API Management Platform (20)

API design-first and Microservices
API design-first and MicroservicesAPI design-first and Microservices
API design-first and Microservices
 
Implementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCIImplementing API-led Cloud-native apps on OCI
Implementing API-led Cloud-native apps on OCI
 
API Gateway or Service mesh - Complementary or excluding concepts
API Gateway or Service mesh - Complementary or excluding conceptsAPI Gateway or Service mesh - Complementary or excluding concepts
API Gateway or Service mesh - Complementary or excluding concepts
 
Cloud-native Application Development - The new normal
Cloud-native Application Development - The new normalCloud-native Application Development - The new normal
Cloud-native Application Development - The new normal
 
Declarative observability management for Microservice architectures
Declarative observability management for Microservice architecturesDeclarative observability management for Microservice architectures
Declarative observability management for Microservice architectures
 
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
Architecture Room Stuttgart - "Cloud-native ist nur ein Teil des Spiels!"
 
Cloud-native is just part of the game
Cloud-native is just part of the gameCloud-native is just part of the game
Cloud-native is just part of the game
 
API-first design - Basis for an consistent API-Management approach
API-first design - Basis for an consistent API-Management approachAPI-first design - Basis for an consistent API-Management approach
API-first design - Basis for an consistent API-Management approach
 
Analytics meets Integration – Modern Development mit Data APIs
Analytics meets Integration – Modern Development mit Data APIsAnalytics meets Integration – Modern Development mit Data APIs
Analytics meets Integration – Modern Development mit Data APIs
 
API first Design and Microservices
API first Design and MicroservicesAPI first Design and Microservices
API first Design and Microservices
 
Kong 101 - Jumpstart into the world of APIs
Kong 101 - Jumpstart into the world of APIsKong 101 - Jumpstart into the world of APIs
Kong 101 - Jumpstart into the world of APIs
 
Service integration made easy with Open Source Kuma
Service integration made easy with Open Source KumaService integration made easy with Open Source Kuma
Service integration made easy with Open Source Kuma
 
MuleSoft Meetup Valletta 1.0
MuleSoft Meetup Valletta 1.0MuleSoft Meetup Valletta 1.0
MuleSoft Meetup Valletta 1.0
 
Evolution of API-driven architectures
Evolution of API-driven architecturesEvolution of API-driven architectures
Evolution of API-driven architectures
 
Evolution of API-driven Architectures
Evolution of API-driven ArchitecturesEvolution of API-driven Architectures
Evolution of API-driven Architectures
 
Cloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle CloudCloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle Cloud
 
Cloud-native Application Development on OCI
Cloud-native Application Development on OCICloud-native Application Development on OCI
Cloud-native Application Development on OCI
 
Analytics meets Integration - Modern Development with Data APIs
Analytics meets Integration - Modern Development with Data APIsAnalytics meets Integration - Modern Development with Data APIs
Analytics meets Integration - Modern Development with Data APIs
 
API First - Best Practices for consistent API management
API First - Best Practices for consistent API managementAPI First - Best Practices for consistent API management
API First - Best Practices for consistent API management
 
API Management and why it matters (Oracle API Platform)
API Management and why it matters (Oracle API Platform) API Management and why it matters (Oracle API Platform)
API Management and why it matters (Oracle API Platform)
 

More from Sven Bernhardt

Effective and simple - integration architectures with Apache Camel and Quarkus
Effective and simple - integration architectures with Apache Camel and QuarkusEffective and simple - integration architectures with Apache Camel and Quarkus
Effective and simple - integration architectures with Apache Camel and Quarkus
Sven Bernhardt
 
Modernization options for Oracle Forms applications
Modernization options for Oracle Forms applicationsModernization options for Oracle Forms applications
Modernization options for Oracle Forms applications
Sven Bernhardt
 
Build and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using KumaBuild and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using Kuma
Sven Bernhardt
 
Torch the light - Implementing Observability for Microservice Architectures
Torch the light - Implementing Observability for Microservice ArchitecturesTorch the light - Implementing Observability for Microservice Architectures
Torch the light - Implementing Observability for Microservice Architectures
Sven Bernhardt
 
Modern Integration based on OCI Cloud-native Services
Modern Integration based on OCI Cloud-native ServicesModern Integration based on OCI Cloud-native Services
Modern Integration based on OCI Cloud-native Services
Sven Bernhardt
 
Service Mesh Advanced Use Cases
Service Mesh Advanced Use CasesService Mesh Advanced Use Cases
Service Mesh Advanced Use Cases
Sven Bernhardt
 
Rumble in the Jungle - API Kickstart with Kong
Rumble in the Jungle - API Kickstart with KongRumble in the Jungle - API Kickstart with Kong
Rumble in the Jungle - API Kickstart with Kong
Sven Bernhardt
 
Flexible, hybrid API-led software architectures with Kong
Flexible, hybrid API-led software architectures with KongFlexible, hybrid API-led software architectures with Kong
Flexible, hybrid API-led software architectures with Kong
Sven Bernhardt
 
Next Gen Big Data Plattform mit Hadoop, APIs und Kubernetes
Next Gen Big Data Plattform mit Hadoop, APIs und KubernetesNext Gen Big Data Plattform mit Hadoop, APIs und Kubernetes
Next Gen Big Data Plattform mit Hadoop, APIs und Kubernetes
Sven Bernhardt
 
Cloud-Native Microservices using Helidon
Cloud-Native Microservices using HelidonCloud-Native Microservices using Helidon
Cloud-Native Microservices using Helidon
Sven Bernhardt
 

More from Sven Bernhardt (13)

Effective and simple - integration architectures with Apache Camel and Quarkus
Effective and simple - integration architectures with Apache Camel and QuarkusEffective and simple - integration architectures with Apache Camel and Quarkus
Effective and simple - integration architectures with Apache Camel and Quarkus
 
Modernization options for Oracle Forms applications
Modernization options for Oracle Forms applicationsModernization options for Oracle Forms applications
Modernization options for Oracle Forms applications
 
Build and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using KumaBuild and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using Kuma
 
Build and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using KumaBuild and Manage Multi-Cloud Applications Using Kuma
Build and Manage Multi-Cloud Applications Using Kuma
 
Torch the light - Implementing Observability for Microservice Architectures
Torch the light - Implementing Observability for Microservice ArchitecturesTorch the light - Implementing Observability for Microservice Architectures
Torch the light - Implementing Observability for Microservice Architectures
 
Modern Integration based on OCI Cloud-native Services
Modern Integration based on OCI Cloud-native ServicesModern Integration based on OCI Cloud-native Services
Modern Integration based on OCI Cloud-native Services
 
Service Mesh Advanced Use Cases
Service Mesh Advanced Use CasesService Mesh Advanced Use Cases
Service Mesh Advanced Use Cases
 
Rumble in the Jungle - API Kickstart with Kong
Rumble in the Jungle - API Kickstart with KongRumble in the Jungle - API Kickstart with Kong
Rumble in the Jungle - API Kickstart with Kong
 
Implementing Cloud-native apps on OCI
Implementing Cloud-native apps on OCIImplementing Cloud-native apps on OCI
Implementing Cloud-native apps on OCI
 
Cloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle CloudCloud-native Integration in the Oracle Cloud
Cloud-native Integration in the Oracle Cloud
 
Flexible, hybrid API-led software architectures with Kong
Flexible, hybrid API-led software architectures with KongFlexible, hybrid API-led software architectures with Kong
Flexible, hybrid API-led software architectures with Kong
 
Next Gen Big Data Plattform mit Hadoop, APIs und Kubernetes
Next Gen Big Data Plattform mit Hadoop, APIs und KubernetesNext Gen Big Data Plattform mit Hadoop, APIs und Kubernetes
Next Gen Big Data Plattform mit Hadoop, APIs und Kubernetes
 
Cloud-Native Microservices using Helidon
Cloud-Native Microservices using HelidonCloud-Native Microservices using Helidon
Cloud-Native Microservices using Helidon
 

Recently uploaded

CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
giselly40
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
Puma Security, LLC
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
Enterprise Knowledge
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
Principled Technologies
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Miguel Araújo
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
Enterprise Knowledge
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
UK Journal
 

Recently uploaded (20)

CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 

One Gateway to Rule them All: Building a Federated API Management Platform

  • 1. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 1 Building a Federated API Management Platform Nuremberg, 2023-11-22 Sven Bernhardt ONE GATEWAY TO RULE THEM ALL
  • 2. © OPITZ CONSULTING 2023 / Öffentlich THAT‘S ME One Gateway to rule them all 2 Sven Bernhardt Cloud-Native enthusiast, API & integration geek. Always curious how new technologies and concepts can help to make things more valuable and efficient. @sbernhardt https://svenbernhardt.wordpress.com/ Chief Architect / Integration Evangelist OPITZ CONSULTING Deutschland GmbH
  • 3. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 3 WHERE WE ARE 01 APIS & GATEWAYS 02 CONCLUSION 04 API PLATFORMS 03
  • 4. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 4 WHERE WE ARE 01
  • 5. © OPITZ CONSULTING 2023 / Öffentlich THE WORLD IS CLOUD-NATIVE … One Gateway to rule them all 5 ¢ Characteristics of Cloud-native apps: ¢ Loose coupling ¢ Resilient and fault-tolerant ¢ Scalable ¢ Manageable ¢ Observable “… loosely coupled systems that are resilient, manageable, and observable. Combined with robust automation, they allow engineers to make high-impact changes frequently and predictably with minimal toil.” (CNCF definition Cloud-native) Cloud-native Microservices & APIs CI / CD DevOps Containers
  • 6. © OPITZ CONSULTING 2023 / Öffentlich … AND OFTEN AT LEAST HYBRID OR HYBRID, MULTI-CLOUD One Gateway to rule them all 6 ¢ Shift to the Cloud continues ¢ Trend leads toward using multiple Clouds (Best-of-breed approach) ¢ On-prem systems are replaced or complemented by SaaS offerings
  • 7. © OPITZ CONSULTING 2023 / Öffentlich MOVE TO THE CLOUD AND CLOUD-NATIVE PRINCIPLES FURTHERS TREND TO DECENTRALIZATION One Gateway to rule them all 7 Centralized STATIC ON-PREM MONOLITH VIRTUAL MACHINES MANUAL CHANGE PROCESS Decentralized DYNAMIC CLOUD / MULTI-CLOUD MICROSERVICES / SERVERLESS CONTAINERS, KUBERNETES AUTOMATED CI/CD TOOL CHAIN # Services & APIs CONTROL AND VISIBILITY
  • 8. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all Gen 0 ESB Gen 1 XML Appliances Gen 2 REST & API Gateways Gen 3 µGateways Timeline 2006 2011 2014 API GATEWAY EVOLUTION: FROM SIMPLE REVERSE PROXIES TO MICROGATEWAYS 8
  • 9. © OPITZ CONSULTING 2023 / Öffentlich WE’RE FACING A MAJOR TECHNOLOGY TRANSITION THAT WE SHOULD ACTIVELY SHAPE One Gateway to rule them all 9 Source: https://www.youtube.com/watch?v=D41cLljxZ-U&list=PLg_AhYkg50vi_DVrEqKPX11blSwom6YUr&index=4
  • 10. © OPITZ CONSULTING 2023 / Öffentlich HAVING AN API VISION THAT DEFINES THE WHY, HOW AND WHAT IS IMPORTANT TO SUCCEED! One Gateway to rule them all 10 ¢ When thinking about APIs, it should have a business impact ¢ APIs are digital products and should be handled as such ¢ Product orientation mainly impacts people and the organization ¢ Technology is a vehicle that enables sustainable Product management ¢ API Vision needs to ensure that change happens in a balanced way People Organization Technologies
  • 11. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 11 APIS & GATEWAYS 02
  • 12. © OPITZ CONSULTING 2023 / Öffentlich API-PRODUCTS ARE USED TO COMPREHENSIBLE INTERACT WITH THE OPERATIONAL DATA WITHIN A DOMAIN One Gateway to rule them all ¢ Characteristics of an API product: ¢ User experience (UX) ¢ Reliability ¢ API products are consumer-centric ¢ API products may have different In- /Output Ports: ¢ Sync for User-centric interactions ¢ Async for System-centric interactions (e.g. Cross-Domain interactions) API Contract (e.g. Open API) 12
  • 13. © OPITZ CONSULTING 2023 / Öffentlich REALIZE THAT APIS ARE SUBJECT TO A LIFECYCLE One Gateway to rule them all 13 ¢ A stable API lifecycle is an essential part of an effective API governance strategy ¢ API lifecycle ¢ Reaches from idea to „ready to use API“ ¢ Supports fast innovation lifecycles ¢ Helps to implement API-first strategy ¢ There are different lifecycles for producers & consumers – but related ¢ Benefits ¢ Increased productivity ¢ Greater visibility ¢ Organizational alignment Design Review & build Deploy Promote, deprecate, retire Operate & observe Learn & evolve API ideation & planning Back to design due to consumer feedback during development
  • 14. © OPITZ CONSULTING 2023 / Öffentlich API CONTRACTS NEED TO DELIVER A GREAT USER EXPERIENCE (UX) One Gateway to rule them all ¢ Focus on potential consumers ¢ How will a consumer use my API? ¢ What kind of resources and operations are needed by the consumers? ¢ APIs should be consumer-centric and thus be consumable ¢ Well-designed, secured and compliant ¢ Documented, discoverable and accessible ¢ Performant, reliable and scalable Source: https://konghq.com/blog/what-is-apiops/ Compliant Functional Findable The intersection of the three characteristics defines consumable APIs! When we talk about APIs, we don't necessarily mean REST APIs! 14
  • 15. © OPITZ CONSULTING 2023 / Öffentlich ESTABLISH API GATEWAY AS A SINGLE ENTRY POINT TO AN ENTERPRISES BACKEND SERVICES One Gateway to rule them all 15 ¢ Cares about APIs at runtime ¢ Allow for consistent Governance ¢ Increase transparency ¢ API usage ¢ APIs available ¢ Conform with security standards ¢ Increase Developer Productivity Managing APIs means more than just having an API Gateway in place! Things (mostly) automated API lifecycle as well as community management.
  • 16. © OPITZ CONSULTING 2023 / Öffentlich API GATEWAY AS A SHARED POLICY LAYER One Gateway to rule them all 16 Business Logic (B) Policy (P) OTHER MONOLITH Routing Load Balancing Authentication Authorization Logs & Metrics Rate Limiting Caching Validation Transformation MICROSERVICES MULTI-CLOUD & KUBERNETES ON-PREMISE HOSTING B Shared Policy Layer (API Gateway) B B B B B B B B B Serverless (e.g. AWS Lambda) More applications and services More languages and protocols REST} { More deployment types 3RD-PARTY
  • 17. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 17 CHALLENGE: BALANCE BETWEEN SPEED AND CONSISTENCE https://opitzcloud.canto.global/b/I3FO4
  • 18. © OPITZ CONSULTING 2023 / Öffentlich DECENTRALISED API MANAGEMENT: FOCUS ON SPEED One Gateway to rule them all 18 API Platform Dev Team 1 Dev Team 2 Dev Team n API Standard 1 API Standard 2 API Standard n Decreasing consistency
  • 19. © OPITZ CONSULTING 2023 / Öffentlich CENTRALISED API MANAGEMENT: FOCUS ON CONSISTENCE One Gateway to rule them all 19 API Platform Dev Team 1 Dev Team 2 Dev Team n API Platform Team Review loop Review loop Review loop API Guidelines API Guidelines API Guidelines Decreased speed
  • 20. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 20 AUTOMATION TO BALANCE SPEED AND CONSISTENCE https://opitzcloud.canto.global/b/OQR0O
  • 21. © OPITZ CONSULTING 2023 / Öffentlich APIOPS APPROACH: FOCUS ON SPEED AND CONSISTENCE One Gateway to rule them all 21 API Platform Dev Team 1 Dev Team 2 Dev Team n API Platform Team API Guidelines API Guidelines API Guidelines Automated deployment Governance layer Defines Guidelines, Rules & Restrictions Automated, direct feedback Automated, direct feedback Automated, direct feedback
  • 22. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 22 API PLATFORMS 03
  • 23. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 23 CHARACTERISTICS OF A MODERN API PLATFORM Modern Tooling: Use modern engineering tools and techniques, infrastructure as code and automation Easy Onboarding: Low ramp for new internal teams to onboard to the platform Minimize cognitive load: Empower developers to foucs on delivering core business value Continually evolve: The Platform should be flexible enough to support new use cases (Desing4Change) 01 02 03 04
  • 24. © OPITZ CONSULTING 2023 / Öffentlich WHEN TALKING ABOUT PLATFORMS WE NEED TO TALK ABOUT PLATFORM ENGINEERING One Gateway to rule them all 24 What is Platform Engineering? “Platform engineering is an emerging technology (concept) that can accelerate the delivery of applications and the pace at which they produce business value.” Gartner
  • 25. © OPITZ CONSULTING 2023 / Öffentlich A MODERN API PLATFORM NEEDS TO BE READY TO ADDRESS CHALLENGES IN MORE AND MORE DISTRIBUTED WORLD One Gateway to rule them all ¢ Postulate: Modern architectures are at least hybrid and may be hybrid, multi-cloud ¢ Ideally, a distributed API platform is unified ¢ Increases efficiency in operating ¢ Allow to easily evolve the platform ¢ Different models to organize an API Platform ¢ Siloed ¢ Centralized ¢ Federated 25
  • 26. © OPITZ CONSULTING 2023 / Öffentlich SILOED MODEL One Gateway to rule them all 26 ¢ Deployment blueprints (IaC) provided by Platform team ¢ Fully isolated platform for each Product / Domain team ¢ No dependency on the central team ¢ Maintenance, Updating / Patching ¢ Security, Hardening ¢ Product / Domain teams are not bound to central governance processes ¢ Reusage and sharing between teams is limited
  • 27. © OPITZ CONSULTING 2023 / Öffentlich CENTRALIZED MODEL One Gateway to rule them all 27 ¢ The platform team is responsible for the API platform ¢ Maintenance, Updating / Patching ¢ Security, Hardening ¢ Scaling ¢ Deployed API gateways are shared between teams ¢ A shared Platform team can become a bottleneck ¢ Limited ability to implement strict isolation between different business units
  • 28. © OPITZ CONSULTING 2023 / Öffentlich WHAT DOES “FEDERATION” MEAN? One Gateway to rule them all 28 ¢ Characteristics ¢ Central federal governance unit ¢ Defines guidelines ¢ Defines binding rules ¢ Self-governing sub-units ¢ Using guidelines, but are free to implement ¢ Internal autonomy ¢ Clear delineation of responsibilities ¢ Shared ¢ Exclusive (executed by central unit) ¢ Decisions made by sub-units cannot be overruled by the central unit “A federation (a federal state) is a political entity characterized by a union of partially self-governing provinces, states, or other regions under a central federal government (federalism). Alternatively, a federation is a form of government in which sovereign power is formally divided between a central authority and several constituent regions so that each region retains some degree of control over its internal affairs.” (Def. Federation (political), Source: Wikipedia)
  • 29. © OPITZ CONSULTING 2023 / Öffentlich FEDERATED MODEL One Gateway to rule them all 29 ¢ One centralized Control plane run by a Platform team ¢ Used by all teams within an organization ¢ Multi-tenancy ¢ Multiple API gateways (Data planes) ¢ Managed by Product / Domain teams ¢ Helps teams become more independent ¢ Configuration managed within the teams ¢ Golden images provided by a Platform team ¢ Updates / Security (Hardening) managed centrally ¢ Automated provisioning (IaC) Source: https://konghq.com/blog/enterprise/federated-api-management
  • 30. © OPITZ CONSULTING 2023 / Öffentlich CHALLENGES FOR FEDERATED MODELS IN HETEROGENEOUS ARCHITECTURES One Gateway to rule them all 30 ¢ Some API vendors offer federated API platforms for heterogeneous architectures ¢ Heterogeneous approach ¢ Different Gateways from different vendors ¢ No standard for communication between CP and DPs ¢ Limited feature support (e.g. just syncing API contracts, not configuration)
  • 31. © OPITZ CONSULTING 2023 / Öffentlich WHAT IS KONG? One Gateway to rule them all 31 ¢ Lightweight, fast, and flexible cloud native API gateway ¢ Facts: ¢ 400B+ API Calls ¢ 312M+ Downloads ¢ 35K+ GitHub stars ¢ Characteristics: ¢ Fully automated (APIOps) ¢ Deployment agnostic ¢ Highly extensible
  • 32. © OPITZ CONSULTING 2023 / Öffentlich FEDERATED API MANAGEMENT WITH KONG One Gateway to rule them all 32
  • 33. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 33 DEMO
  • 34. © OPITZ CONSULTING 2023 / Öffentlich DEMO SETUP One Gateway to rule them all 34 ¢ Hybrid and Multi-Cloud architecture ¢ Data Planes distributed over ¢ Oracle Cloud (Compute) ¢ AWS (EC2) ¢ On-prem (Dockerized deployment) ¢ K8s example Kong Ingress Controller ¢ Oracle Container Engine For Kubernetes (OKE) ¢ All managed through Kong Konnect
  • 35. © OPITZ CONSULTING 2023 / Öffentlich DEMO OVERVIEW One Gateway to rule them all 35 OCI AWS Kong Konnect On-Premises Cloud Kong Ingress Controller (KIC) manages manages manages Management Plane
  • 36. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 36 CONCLUSION 04
  • 37. © OPITZ CONSULTING 2023 / Öffentlich KEY TAKEAWAYS One Gateway to rule them all 37 ¢ APIs need to be managed ¢ Collaboration is key for good API products ¢ It’s all about community ¢ To be able to efficiently manage your APIs a platform is needed ¢ Focus on Developer Experience (DX) ¢ Focus on Automation ¢ Focus on Standardization ¢ The federated model provides flexibility, but also requires buy-in from Product teams
  • 38. © OPITZ CONSULTING 2023 / Öffentlich One Gateway to rule them all 38 Q & A
  • 39. © OPITZ CONSULTING 2023 / Öffentlich INTEGRATION IS THE FOUNDATION FOR IT-MODERNIZATION One Gateway to rule them all Sven Bernhardt Chief Architect sven.bernhardt@opitz- consulting.com www.opitz-consulting.com Thanks for your attention! Questions left? Contact me! 39