How-To Lessons

Kafka Integration with API Management

Kafka messaging busses are becoming more prevalent in today’s enterprises. In this video, I briefly discuss why, and then demonstrate integration with an API management solution (using Layer7 as the example – if you use a different API management solution, this will likely have differences).

How to Publish GraphQL APIs to a Developer Portal

So you’ve been using and getting all the benefits that GraphQL has to offer with the Arvata GraphQL server for a while now, and you keep hearing about these concepts with an API developer portal involving client→API mappings and account/API plans. What are these concepts and how can you benefit from them? Client → API […]

How to Include Rich Content in Your API Documentation

Clear documentation is a vital part of any API that you publish for broad consumption. No matter the quality of the API itself, consumers need documentation to get the most out of the API with a minimum amount of friction. A comprehensive specification is a great starting point, but often more is needed to establish […]

How to Protect Existing GraphQL Endpoints using an API Gateway

You’ve spent months building a GraphQL API. The schema is just right, and your front-end developers are thrilled with it. At first it’s only exposed internally, so you’re not that worried about security, but then as different clients find out that you have this awesome API out there, they want to start using it as […]

How to Deploy a GraphQL Server Using Arvata Euclid

GraphQL is a powerful and relatively new paradigm that can greatly enhance your API offerings, and now it is possible to create a GraphQL API on the Layer7 API Gateway using Arvata Euclid. There are 4 prerequisites to deploy a GraphQL server to a Layer7 API Gateway. Let’s take a look at each. #1: The […]

How-to: API Management and HTTP/2

As usage of the HTTP/2 protocol becomes more prevalent, it’s clear that your API security solution must be able to handle HTTP/2 traffic. The performance enhancements offered by HTTP/2 make it ideal for high volume network traffic and IOT use cases, and even simpler use cases will reap the benefits. What once seemed like a […]

How-to: Real-time API Monitoring

Knowing how your API is performing has always been key, but as our APIs become a more important and a key part of your customer experience it needs to be looked at differently. Traditional API monitoring relies on the API and its components as part of application infrastructure. Although this is important it also misses […]

Why Insufficient Logging and Monitoring Can Help Attackers Hide in Plain Sight

I’ve been working in information security for nearly 45 years and started my long journey with punch cards and mainframes leading to today’s cloud and zero-trust. Our world of computing has certainly evolved, and I can’t even recall how many post-security breach investigation teams I’ve been part of or how many cyber incident management teams […]

Reactive Logic Overview

Reactive logic is your requirements entered as rules for your schema tables and views in Layer7 Live API Creator. These rules can include event rules, validation rules, and derivation rules. Live API Creator shares these rules across all resources that you explicitly define for your API and associates it with the row objects. This automatic […]