WSO2, profile picture
Uploaded byWSO2
488 views

[WSO2Con EU 2018] WSO2 API Manager - Why, What, How, and What's Next

The document discusses the necessity of API management in response to the growing demand for applications and digital transformation, highlighting five essential features needed from an API management system. It covers the importance of API creation, security, discoverability, governance, and analytics, while also touching on the future of APIs with developer-focused ecosystems and advanced technologies. The content emphasizes the role of APIs in enabling business opportunities and adapting to evolving architectural paradigms.

Technology
Related topics:
API Management Trends

Embed presentation

Downloaded 60 times
Director, API Architecture WSO2 API Manager: Why, What, How, and What's Next Nuwan Dias
Why do you need API Management? Image source: blog.dailysteak.co
APIs are essential to address the problem of app explosion ● Demand for consumption is on the rise. (easier/convenient ways to consume information and services). ● Demand for consumption is driving digital transformation. ● Digital transformation creates opportunity for $$. ● APIs are the key to enabling digital transformation.
What do you need from an API Management System? 1. Creating and publishing APIs. 2. API security and rate limiting. 3. Platform for discovering, searching and consuming APIs. 4. API governance and lifecycle management. 5. API analytics, specialization and evolution.
Maslow’s hierarchy of needs Image source: verywellmind.com
What do you need from an API Management System? 1. Creating and publishing APIs. - Physiological needs. 2. API security and rate limiting. - Safety needs. 3. Platform for discovering, searching and consuming APIs - Love and belonging needs. 4. API governance and lifecycle management. - Esteem needs. 5. API analytics, specialization and evolution - Self actualization needs.
Creating and publishing APIs Defining the contract between the API provider and the API consumers - The API developer portal.
API Design - Import Definition
API Design - Start new
API Design - Resource Definition
API Documentation
API Publishing
API Security and Rate Limiting Allow verified, permitted and controlled access into your assets - API Gateways.
API Gateways: The enforcement point of all policies
API Security ● Trusted Sub-systems ○ Mutual TLS ○ Basic Authentication ● Delegated Authentication ○ OAuth2.0 ● Authorization ○ OAuth2.0 Scopes ○ OIDC ○ XACML ● CORS
Authentication: OAuth2.0 Grant Types
Federated Authentication
Authorization XACML
Rate Limiting ● Quotas: for monetization ○ By number of requests or bytes ● Fair usage policy ● Entry point control rules ● Protection from over usage ● Custom policies
API Consumption The need for APIs to be easily discoverable, searchable and consumable - The app developer portal.
API Discovery: Registry of APIs ● Paginated listing of APIs ● Tags ● Groups
API Searching
Application Management
Consuming the API ● API documentation ● API testing ● SDKs ● Developer tooltips
API Governance and Lifecycle Management Formalizing the evolution of APIs and assurance of standards and practices.
API Versioning ● Different version formats. ● Backwards compatibility and transitioning of apps to use the latest and greatest version. ● Running multiple versions in parallel. ● Deep copy of documents and policies ● Transitioning current subscribers to latest version ● Notifying current subscribers.
Declaration and execution of custom defined API lifecycles.
Execution of custom defined workflows for.. ● API state transitions ● Developer onboarding ● Application registration ● API subscriptions ● Generation of application keys
Tooling for automation of CI/CD processes
API Analytics and specialization ● Observing and reacting to abnormalities and trends. ● Optimizing the value chain of APIs by specializing and scaling.
API Analytics: Business Insights ● Business performance ● New opportunities ● Expansions ● Promotions ● EOLs ● Achievers ● Laggards
API Analytics: Operational ● Performance metrics ● Abnormalities ● Trends ● Tracing ● Debugging ● Alerting
Specialization and evolution of APIs ● Different API types ○ SOAP APIs ○ gRPC APIs ○ Websockets ○ Event streams ● API gateways evolving into microgateways
Whats Next? How do we address the trillion endpoints problem?
The trillion endpoints problem
What’s Next? ● Developer first APIs and microgateways. ● Integration with service mesh technologies. ● Dynamic service discovery: etcd, consul, etc. ● Dynamic APIs: Short lived APIs that adapt and evolve or die. ● Serverless API gateways. ● API Management for event driven architectures. ● Embedded/Native API management on large scale-cloud infrastructures.
THANK YOU wso2.com

More Related Content

PDF
Digital Transformation for Karnataka Bank Through API-led Integration
byWSO2
 
PDF
[APIdays NY] Managing the usage of Asynchronous APIs: What does it take?
byWSO2
 
PDF
Wso2 api manager analytics and reporting
byChanaka Fernando
 
PDF
[WSO2Con EU 2018] Hybrid Cloud API Management - API Microgateways Anywhere
byWSO2
 
PDF
[WSO2Con EU 2018] Building Reactive Applications Using Event Driven Architecture
byWSO2
 
PPTX
apidays LIVE New York 2021 - Managing the usage of Asynchronous APIs: What do...
byapidays
 
PDF
Stream Processing in Action
byWSO2
 
PDF
[WSO2Con EU 2018] Identity APIs is the New Black
byWSO2
 
Digital Transformation for Karnataka Bank Through API-led Integration
byWSO2
 
[APIdays NY] Managing the usage of Asynchronous APIs: What does it take?
byWSO2
 
Wso2 api manager analytics and reporting
byChanaka Fernando
 
[WSO2Con EU 2018] Hybrid Cloud API Management - API Microgateways Anywhere
byWSO2
 
[WSO2Con EU 2018] Building Reactive Applications Using Event Driven Architecture
byWSO2
 
apidays LIVE New York 2021 - Managing the usage of Asynchronous APIs: What do...
byapidays
 
Stream Processing in Action
byWSO2
 
[WSO2Con EU 2018] Identity APIs is the New Black
byWSO2
 

What's hot

PPTX
What is APIGEE? What are the benefits of APIGEE?
byIQ Online Training
 
PDF
[Workshop] API-driven Integration
byWSO2
 
PDF
[WSO2 Summit Americas 2020] APIs: The Products of the 21st Century.pdf
byWSO2
 
PDF
Nurturing API Platforms with API Analytics
byWSO2
 
PDF
Best Practices for Productizing APIs with API Management and Automated Testing
byWSO2
 
PDF
WSO2 Product Release Webinar Introducing WSO2 API Manager for Complete API ...
byWSO2
 
PDF
Building Sustainable Ecosystems: The Economics of Collaboration
byWSO2
 
PDF
How to Enable Monetization of Your API Ecosystem
byWSO2
 
PDF
[WSO2 API Manager Community Call: Streaming API Support in WSO2 API Manager 4.0
byWSO2
 
PPTX
Apigee Insights: Data & Context-Driven Actions
byApigee | Google Cloud
 
PDF
[WSO2 Summit Sydney 2019] Emerging Architecture Patterns: API-centric and Cel...
byWSO2
 
PDF
apidays LIVE Singapore 2021 - What financial services can learn from Marketpl...
byapidays
 
PDF
Digital Asset Governance for the Enterprise
byWSO2
 
PDF
Deploying GraphQL Services as Managed APIs
byWSO2
 
PDF
[APIdays Singapore 2019] Managing the API lifecycle with Open Source Technolo...
byWSO2
 
PDF
API Driven Applications - An ecosystem architecture
byWSO2
 
PDF
[WSO2 Summit EMEA 2020] Experiencing the Benefits of API Driven Open Banking
byWSO2
 
PDF
Exposing Lambda Functions as Managed APIs
byWSO2
 
PDF
[WSO2 Summit Americas 2020] Creating Smart Endpoints Using Integration Micros...
byWSO2
 
PDF
Adaptive Scaling of Microgateways on Kubernetes
byWSO2
 
What is APIGEE? What are the benefits of APIGEE?
byIQ Online Training
 
[Workshop] API-driven Integration
byWSO2
 
[WSO2 Summit Americas 2020] APIs: The Products of the 21st Century.pdf
byWSO2
 
Nurturing API Platforms with API Analytics
byWSO2
 
Best Practices for Productizing APIs with API Management and Automated Testing
byWSO2
 
WSO2 Product Release Webinar Introducing WSO2 API Manager for Complete API ...
byWSO2
 
Building Sustainable Ecosystems: The Economics of Collaboration
byWSO2
 
How to Enable Monetization of Your API Ecosystem
byWSO2
 
[WSO2 API Manager Community Call: Streaming API Support in WSO2 API Manager 4.0
byWSO2
 
Apigee Insights: Data & Context-Driven Actions
byApigee | Google Cloud
 
[WSO2 Summit Sydney 2019] Emerging Architecture Patterns: API-centric and Cel...
byWSO2
 
apidays LIVE Singapore 2021 - What financial services can learn from Marketpl...
byapidays
 
Digital Asset Governance for the Enterprise
byWSO2
 
Deploying GraphQL Services as Managed APIs
byWSO2
 
[APIdays Singapore 2019] Managing the API lifecycle with Open Source Technolo...
byWSO2
 
API Driven Applications - An ecosystem architecture
byWSO2
 
[WSO2 Summit EMEA 2020] Experiencing the Benefits of API Driven Open Banking
byWSO2
 
Exposing Lambda Functions as Managed APIs
byWSO2
 
[WSO2 Summit Americas 2020] Creating Smart Endpoints Using Integration Micros...
byWSO2
 
Adaptive Scaling of Microgateways on Kubernetes
byWSO2
 

Similar to [WSO2Con EU 2018] WSO2 API Manager - Why, What, How, and What's Next

PDF
Api management best practices with wso2 api manager
byChanaka Fernando
 
PDF
API Management within a Microservice Architecture
byWSO2
 
PPTX
API Management Within a Microservices Architecture
byNadeesha Gamage
 
PDF
Architecting an Enterprise API Management Strategy
byWSO2
 
PDF
WSO2 API Platform: Vision and Roadmap
byWSO2
 
PPTX
API Management Platform Technical Evaluation Framework
byWSO2
 
PDF
[WSO2 Summit Sydney 2019] Building a Successful API Strategy from Scratch and...
byWSO2
 
PDF
Extend soa with api management Sangam18
byVinay Kumar
 
PDF
Role of API Management in an API led Digital Economy
byWSO2
 
PDF
Api centric enterprises
byWSO2
 
PDF
Extend soa with api management Doag18
byVinay Kumar
 
PDF
[Workshop] Managing the API lifecycle with Open Source Technologies
byWSO2
 
PPTX
Extend soa with api management spoug- Madrid
byVinay Kumar
 
PDF
[WSO2 Summit EMEA 2020] APIs: The Products of the 21st Century
byWSO2
 
PDF
[WSO2 Integration Summit Bern 2019] Transforming Your Business through APIs
byWSO2
 
PDF
Application Development with API Manager
byWSO2
 
PDF
[WSO2 Summit APAC 2020] APIs: The Products of the 21st Century
byWSO2
 
PDF
Managing your Business APIs is using WSO2 API Manager
byWSO2
 
PPTX
Open api in enterprise
byGuru Lakshmeekar B
 
PDF
Building an API Centric SOA
byWSO2
 
Api management best practices with wso2 api manager
byChanaka Fernando
 
API Management within a Microservice Architecture
byWSO2
 
API Management Within a Microservices Architecture
byNadeesha Gamage
 
Architecting an Enterprise API Management Strategy
byWSO2
 
WSO2 API Platform: Vision and Roadmap
byWSO2
 
API Management Platform Technical Evaluation Framework
byWSO2
 
[WSO2 Summit Sydney 2019] Building a Successful API Strategy from Scratch and...
byWSO2
 
Extend soa with api management Sangam18
byVinay Kumar
 
Role of API Management in an API led Digital Economy
byWSO2
 
Api centric enterprises
byWSO2
 
Extend soa with api management Doag18
byVinay Kumar
 
[Workshop] Managing the API lifecycle with Open Source Technologies
byWSO2
 
Extend soa with api management spoug- Madrid
byVinay Kumar
 
[WSO2 Summit EMEA 2020] APIs: The Products of the 21st Century
byWSO2
 
[WSO2 Integration Summit Bern 2019] Transforming Your Business through APIs
byWSO2
 
Application Development with API Manager
byWSO2
 
[WSO2 Summit APAC 2020] APIs: The Products of the 21st Century
byWSO2
 
Managing your Business APIs is using WSO2 API Manager
byWSO2
 
Open api in enterprise
byGuru Lakshmeekar B
 
Building an API Centric SOA
byWSO2
 

More from WSO2

PPTX
WSO2Con 2025 - AI-Driven API Design, Development, and Consumption with Enhanc...
byWSO2
 
PPTX
WSO2Con 2025 - Unified Management of Ingress and Egress Across Multiple API G...
byWSO2
 
PDF
Modern Platform Engineering with Choreo - The AI-Native Internal Developer Pl...
byWSO2
 
PDF
Build Smarter, Deliver Faster with Choreo - An AI Native Internal Developer P...
byWSO2
 
PDF
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
byWSO2
 
PPTX
WSO2Con 2025 - Building Secure Business Customer and Partner Experience (B2B)...
byWSO2
 
PPTX
WSO2Con 2025 - How an Internal Developer Platform Lets Developers Focus on Code
byWSO2
 
PDF
Accelerate Enterprise Software Engineering with Platformless
byWSO2
 
PDF
Platformless Modernization with Choreo.pdf
byWSO2
 
PDF
Application Modernization with Choreo for the BFSI Sector
byWSO2
 
PDF
Application Modernization with Choreo - The AI-Native Internal Developer Plat...
byWSO2
 
PDF
Choreo - The AI-Native Internal Developer Platform as a Service: Overview
byWSO2
 
PPTX
WSO2Con 2025 - Building AI Applications in the Enterprise (Part 1)
byWSO2
 
PPTX
WSO2Con 2025 - Building Secure Customer Experience Apps
byWSO2
 
PDF
Mastering Intelligent Digital Experiences with Platformless Modernization
byWSO2
 
PDF
[Roundtable] Choreo - The AI-Native Internal Developer Platform as a Service
byWSO2
 
PDF
Demystifying CMS-0057-F - Compliance Made Seamless with WSO2
byWSO2
 
PPTX
WSO2Con 2025 - Architecting Cloud-Native Applications
byWSO2
 
PPTX
WSO2Con 2025 - AI-Driven API Design, Development, and Consumption with Enhanc...
byWSO2
 
PDF
Quantum Threats Are Closer Than You Think – Act Now to Stay Secure
byWSO2
 
WSO2Con 2025 - AI-Driven API Design, Development, and Consumption with Enhanc...
byWSO2
 
WSO2Con 2025 - Unified Management of Ingress and Egress Across Multiple API G...
byWSO2
 
Modern Platform Engineering with Choreo - The AI-Native Internal Developer Pl...
byWSO2
 
Build Smarter, Deliver Faster with Choreo - An AI Native Internal Developer P...
byWSO2
 
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
byWSO2
 
WSO2Con 2025 - Building Secure Business Customer and Partner Experience (B2B)...
byWSO2
 
WSO2Con 2025 - How an Internal Developer Platform Lets Developers Focus on Code
byWSO2
 
Accelerate Enterprise Software Engineering with Platformless
byWSO2
 
Platformless Modernization with Choreo.pdf
byWSO2
 
Application Modernization with Choreo for the BFSI Sector
byWSO2
 
Application Modernization with Choreo - The AI-Native Internal Developer Plat...
byWSO2
 
Choreo - The AI-Native Internal Developer Platform as a Service: Overview
byWSO2
 
WSO2Con 2025 - Building AI Applications in the Enterprise (Part 1)
byWSO2
 
WSO2Con 2025 - Building Secure Customer Experience Apps
byWSO2
 
Mastering Intelligent Digital Experiences with Platformless Modernization
byWSO2
 
[Roundtable] Choreo - The AI-Native Internal Developer Platform as a Service
byWSO2
 
Demystifying CMS-0057-F - Compliance Made Seamless with WSO2
byWSO2
 
WSO2Con 2025 - Architecting Cloud-Native Applications
byWSO2
 
WSO2Con 2025 - AI-Driven API Design, Development, and Consumption with Enhanc...
byWSO2
 
Quantum Threats Are Closer Than You Think – Act Now to Stay Secure
byWSO2
 

Recently uploaded

PPTX
Neo4j Fraud GraphTalk Singapore Nov 2025
bygourisachdeva2
 
PPTX
Closing Plenary - Esri UK Welsh Conference 2025
byEsri UK
 
PPTX
Opening Plenary - Esri UK Welsh Conference 2025
byEsri UK
 
PDF
Running Non-Cloud-Native Databases in Cloud-Native Environments_ Challenges a...
byAlkin Tezuysal
 
PDF
IDSECCONF2025 - Budi Rahardjo - Cyber Security and AI.pdf
byidsecconf
 
PDF
Build an AI/ML-driven image archive processing workflow: Image archive, analy...
bywesley chun
 
PPTX
Discover - Assemble - and Gain Insights into your Content with SharePoint Con...
byDrew Madelung
 
PDF
Webinar: Introduction to LF Energy SEAPATH
byDanBrown980551
 
PDF
Beyond Basics: How to Build Scalable, Intelligent Imagery Pipelines
bySafe Software
 
PDF
Building Powerful Web Apps to Improve Productivity and Engagement - Esri UK W...
byEsri UK
 
PDF
What's Driving Growth in the Video Surveillance Market 2025?
byMemoori
 
PDF
OutSystsems User Group Brabant November 2025
bymail496323
 
PPTX
Redcentric Data Centres: vision, mission and values
byRedcentric
 
PDF
How to Spot a Fraudulent Shopping Website
byAshwini Singh
 
PDF
AI in Food Production (Foodwell) - AI Solutions Supporting Operations
bybyteLAKE
 
PPTX
Explaining ourselves – people, computers and AI
byAlan Dix
 
PPTX
Osmosis webinar presentation Nov 2025:Empowering UK Nursing Education
byJisc
 
PDF
IDSECCONF2025 - Rama Tri Nanda - Hunting Stingray GSM on Budget.pdf
byidsecconf
 
PDF
Introduction to Shell Scripting - RHCSA+.pdf
byLinuxCert Guru
 
PDF
Algorithmic Auditing for Music Discoverability @ Mozilla Festival 2025
byLorenzo Porcaro
 
Neo4j Fraud GraphTalk Singapore Nov 2025
bygourisachdeva2
 
Closing Plenary - Esri UK Welsh Conference 2025
byEsri UK
 
Opening Plenary - Esri UK Welsh Conference 2025
byEsri UK
 
Running Non-Cloud-Native Databases in Cloud-Native Environments_ Challenges a...
byAlkin Tezuysal
 
IDSECCONF2025 - Budi Rahardjo - Cyber Security and AI.pdf
byidsecconf
 
Build an AI/ML-driven image archive processing workflow: Image archive, analy...
bywesley chun
 
Discover - Assemble - and Gain Insights into your Content with SharePoint Con...
byDrew Madelung
 
Webinar: Introduction to LF Energy SEAPATH
byDanBrown980551
 
Beyond Basics: How to Build Scalable, Intelligent Imagery Pipelines
bySafe Software
 
Building Powerful Web Apps to Improve Productivity and Engagement - Esri UK W...
byEsri UK
 
What's Driving Growth in the Video Surveillance Market 2025?
byMemoori
 
OutSystsems User Group Brabant November 2025
bymail496323
 
Redcentric Data Centres: vision, mission and values
byRedcentric
 
How to Spot a Fraudulent Shopping Website
byAshwini Singh
 
AI in Food Production (Foodwell) - AI Solutions Supporting Operations
bybyteLAKE
 
Explaining ourselves – people, computers and AI
byAlan Dix
 
Osmosis webinar presentation Nov 2025:Empowering UK Nursing Education
byJisc
 
IDSECCONF2025 - Rama Tri Nanda - Hunting Stingray GSM on Budget.pdf
byidsecconf
 
Introduction to Shell Scripting - RHCSA+.pdf
byLinuxCert Guru
 
Algorithmic Auditing for Music Discoverability @ Mozilla Festival 2025
byLorenzo Porcaro
 

[WSO2Con EU 2018] WSO2 API Manager - Why, What, How, and What's Next

  • 1.
    Director, API Architecture WSO2API Manager: Why, What, How, and What's Next Nuwan Dias
  • 2.
    Why do youneed API Management? Image source: blog.dailysteak.co
  • 3.
    APIs are essentialto address the problem of app explosion ● Demand for consumption is on the rise. (easier/convenient ways to consume information and services). ● Demand for consumption is driving digital transformation. ● Digital transformation creates opportunity for $$. ● APIs are the key to enabling digital transformation.
  • 4.
    What do youneed from an API Management System? 1. Creating and publishing APIs. 2. API security and rate limiting. 3. Platform for discovering, searching and consuming APIs. 4. API governance and lifecycle management. 5. API analytics, specialization and evolution.
  • 5.
    Maslow’s hierarchy ofneeds Image source: verywellmind.com
  • 6.
    What do youneed from an API Management System? 1. Creating and publishing APIs. - Physiological needs. 2. API security and rate limiting. - Safety needs. 3. Platform for discovering, searching and consuming APIs - Love and belonging needs. 4. API governance and lifecycle management. - Esteem needs. 5. API analytics, specialization and evolution - Self actualization needs.
  • 7.
    Creating and publishing APIs Definingthe contract between the API provider and the API consumers - The API developer portal.
  • 8.
    API Design -Import Definition
  • 9.
    API Design -Start new
  • 10.
    API Design -Resource Definition
  • 11.
  • 12.
  • 13.
    API Security and RateLimiting Allow verified, permitted and controlled access into your assets - API Gateways.
  • 14.
    API Gateways: Theenforcement point of all policies
  • 15.
    API Security ● TrustedSub-systems ○ Mutual TLS ○ Basic Authentication ● Delegated Authentication ○ OAuth2.0 ● Authorization ○ OAuth2.0 Scopes ○ OIDC ○ XACML ● CORS
  • 16.
  • 17.
  • 18.
  • 19.
    Rate Limiting ● Quotas:for monetization ○ By number of requests or bytes ● Fair usage policy ● Entry point control rules ● Protection from over usage ● Custom policies
  • 20.
    API Consumption The needfor APIs to be easily discoverable, searchable and consumable - The app developer portal.
  • 21.
    API Discovery: Registryof APIs ● Paginated listing of APIs ● Tags ● Groups
  • 22.
  • 23.
  • 24.
    Consuming the API ●API documentation ● API testing ● SDKs ● Developer tooltips
  • 25.
    API Governance and Lifecycle Management Formalizingthe evolution of APIs and assurance of standards and practices.
  • 26.
    API Versioning ● Differentversion formats. ● Backwards compatibility and transitioning of apps to use the latest and greatest version. ● Running multiple versions in parallel. ● Deep copy of documents and policies ● Transitioning current subscribers to latest version ● Notifying current subscribers.
  • 27.
    Declaration and executionof custom defined API lifecycles.
  • 28.
    Execution of customdefined workflows for.. ● API state transitions ● Developer onboarding ● Application registration ● API subscriptions ● Generation of application keys
  • 29.
    Tooling for automationof CI/CD processes
  • 30.
    API Analytics and specialization ●Observing and reacting to abnormalities and trends. ● Optimizing the value chain of APIs by specializing and scaling.
  • 31.
    API Analytics: BusinessInsights ● Business performance ● New opportunities ● Expansions ● Promotions ● EOLs ● Achievers ● Laggards
  • 32.
    API Analytics: Operational ●Performance metrics ● Abnormalities ● Trends ● Tracing ● Debugging ● Alerting
  • 33.
    Specialization and evolutionof APIs ● Different API types ○ SOAP APIs ○ gRPC APIs ○ Websockets ○ Event streams ● API gateways evolving into microgateways
  • 34.
    Whats Next? How dowe address the trillion endpoints problem?
  • 35.
  • 36.
    What’s Next? ● Developerfirst APIs and microgateways. ● Integration with service mesh technologies. ● Dynamic service discovery: etcd, consul, etc. ● Dynamic APIs: Short lived APIs that adapt and evolve or die. ● Serverless API gateways. ● API Management for event driven architectures. ● Embedded/Native API management on large scale-cloud infrastructures.
  • 37.