Skip to content

The benefits of JWT + JWS + JWE on API Designs

By Wagner Brunca | January 21, 2020

In this post I cover some good reasons to adopt JWT (JSON Web Token), JWS (JSON Web Sign), and JWE (JSON Web Encryption) in your API Designs. JWTs are a modern solution to an old problem: how to I know who this user is? They help us by being signed and stateless, and by having…

How to Use Policy to Retrieve a Portal API OAuth Token

By Geoff Duck | December 4, 2019

An API Gateway can be a fast, easy way to manage entities in an API Portal.  The Portal API (PAPI) provides entry-points to perform tasks such as onboard users, manage APIs that are protected by the gateway runtime, manage and update API versions and documentation, and administer API Management items such as application definitions, organizations,…

Enriching and Externalizing Gateway Metrics to Splunk

By Ping Tan | November 11, 2019

Overview Gateway metrics are a critical piece of intel to determine the health of Services and traffic throughput on an API Gateway. Using Layer7 API Management as an example, there are a few ways we can obtain this information: Policy Manager: Dashboard, PAPIM (Precision API Monitoring), sending this information to a monitoring solution via Gateway…

DevOps: REST API Execution Through Bash Shell Scripting III

By Thomas Cheng | October 28, 2019

A Simple Framework (Experiences) This is the third and last part of the paper proposing a framework that enables DevOps teams to issue REST API calls via bash shell scripts. This part shares some experiences/lessons learned from real world applications. Experiences It would be nice if API publishers simply provided an API client SDK in…

DevOps: REST API Execution Through Bash Shell Scripting II

By Thomas Cheng | October 24, 2019

A Simple Framework (Extension) This is the second part of the paper proposing a framework that enables DevOps teams to issue REST API calls via bash shell scripts. This part discusses the extension beyond the core of the proposed framework. The third part shares some lessons learned from real world applications. The Basics The basic…

How API Languages Evolve

By Ronnie Mitra | July 16, 2018

As API systems mature, knowing the history and evolution of various API languages will help organizations create robust and successful landscapes. How (API) Languages Evolve APIs are languages: they specify how providers and consumers of capabilities communicate. The things that can be “said” in an API conversation are determined by the expressivity of the involved…

Applying and Extending DHARMA

By Matt McLarty | July 11, 2018

This post gives some practical examples of the DHARMA method for API Security in a Microservice Architecture, and also shares some opportunities for extending the model. This article shares concepts from the O’Reilly book Securing Microservice APIs. If you’re attending OSCON next week, Rob Wilson and Matt McLarty will be signing and giving away print copies during lunch…

API Design 101: API Design Basics

By Ronnie Mitra | April 23, 2018

The term “API design” or “API architecture” refers to the process of developing a software interface that exposes backend data and application functionality for use in new applications. In this lesson, we provide an overview of the API architecture process, as a starting point for a deeper exploration of design and implementation best practices in…

The Microservice Design Canvas

By Ronnie Mitra | August 23, 2017

Learn how to apply a more traditional business canvas when designing microservices Microservices often have organic origins, emerging from the bubbling cauldron of existing monolithic applications to fill an immediate need. Given the desire for improved delivery speed that drive the adoption of microservices, developers often take a “code first, ask questions later” approach and…

Microservices, APIs and Innovation: The Power of APIs

By Mike Amundsen | April 21, 2017

Explore the role APIs play in empowering teams and enabling organizations to innovate. API Academy member Mike Amundsen shares his observations about the role APIs play in empowering teams and organizations to craft stable, cost-effective solutions for a wide range of distribution channels. In this article, part two of a three part series (you can read part…

Scroll To Top