SlideShare a Scribd company logo

Oracle API Gateway

Rakesh Gujjarlapudi
Rakesh Gujjarlapudi

Oracle API Gateway integrates, accelerates, governs, and secures Web API and SOA-based systems. It serves REST APIs and SOAP Web Services to clients, converting between REST and SOAP and XML and JSON. It applies security rules like authentication and content filtering. It also provides monitoring of API and service usage, caching, and traffic management.

1 of 14
Oracle API Gateway Rakesh Gujjarlapudi rakesh_gujJ@yahoo.com
Oracle API Gateway - Basic Architecture CLIENTS Application Servers Partner Applications Mobile Applications XML / JSON Oracle API Gateway Web Applications Cloud-Based Services Oracle API Gateway integrates, accelerates, governs, and secures Web API and SOA-based systems. Serves REST APIs and SOAP Web Services to clients  Converts REST to SOAP  Converts XML to JSON Supports other protocols also  FTP, SFTP, FTPS, TIBCO Rendezvous and EMS, JMS (to IBM WebSphere MQ, ActiveMQ, JBOSS Messaging) Applies security rules  Authentication: OAuth, HTTP Auth, Certificate Auth, WS-Security Content Filtering: Detection of SQL Injection, XSS, Viruses Monitoring of API and Service usage Caching and Traffic Management (routing, throttling) Legacy Applications Data
Oracle API Gateway - Deployment Architecture GREEN ZONE Shared Services Layer RED ZONE First Line Of Defense CLIENTS End point security HTTP, SOAP, REST, XML, JMS Cloud-Based Services Webservice Clients REST-WS Clients OES PDP WS-Security, Basic Auth, Digest, X509, UNT,SAML, Kerberos Sign & Encrypt EXTRANET Oracle Service Bus Oracle API Gateway (Service Virtualization) Firewall Web Applications Internal Firewall Mobile Applications Oracle Webservices Manager Partner Applications WS-Security, Basic Auth, Digest, X509, UNT, SAML, Kerberos Sign & Encrypt O W S M BPEL/Web Service End point security HTTP, SOAP, REST, XML, JMS O W S M BPM Process End point security HTTP, SOAP, REST, XML, JMS O W S M Application INTRANET DMZ In Green Zone security use OWSM in conjunction with Oracle FMW products(SOA Suite, OSB, etc. both on the Client Side and Service Side Policy In Red Zone security OEG on the Service Side Policy.
Oracle API Gateway – Security Overview Flooding Recursive Payloads Oversized Payloads Memory Leak • • Injection & Malicious Code SQL Injection XPath Injection Cross-site scripting Malformed content Logic bombs Confidentiality Integrity Sniffing Parameter Tampering Schema Poisoning External Entity Canonicalization • Firewall DOS Attacks GREEN ZONE DMZ ZONE Firewall Oracle API Gateway protection against Virtualize a web services Inbuilt Out-ofthe-Box filters Throttle the inbound message flow Privilege Escalation Attacks Dictionary Format String Buffer Overflow Race Conditions Symlink Unprotected interfaces Oracle Webservices Manager O W S M Backend Web Service End point security O W S M Oracle API Gateway Internet/Cloud Filtered Messages • • • • • Reconnaissance Attacks Code templates Forceful browsing Directory Reversal WSDL scanning Registry Disclosure End point security Malformed Request First Line Of Defense AuthC AuthZ Auditing Signature Verification Message Encryption/Decryption Last-Mile Security Backend Web Service End point security O W S M Backend Web Service
Oracle API Gateway – Virtualization, Data/Protocol Bridging GREEN ZONE DMZ ZONE Firewall Firewall HTTP GET/POST - REST SSOToken REST/JSON < weatherreport city=“San Francisco" weather=“42" >< /weatherreport> SAML Token Oracle Webservices Manager Required transport & format protocol RESTful Web Service REST/XML SOAP Oracle API Gateway { "weatherreport" : {"city":“San Francisco", "weather":“42"} } JMS SAML Token SOAP Web Service Required transport & format protocol Data Format Transformations XML to JSON and vice versa Protocol bridging REST to SOAP and vice versa First Line Of Defense Last-Mile Security
Oracle API Gateway – DMZ Security & Access Control GREEN ZONE DMZ ZONE Firewall Firewall HTTP GET/POST - REST SAML Token SSOToken JMS SOAP/REST Virtual Web Services { "weatherreport" : {"city":“San Francisco", "weather":“42"} } Oracle Service Bus SOAP Oracle API Gateway (Service Virtualization) REST/XML Oracle Webservices Manager < weatherreport city=“San Francisco" weather=“42" >< /weatherreport> REST/JSON Required transport & format protocol RESTful Web Service SAML Token SOAP Web Service • • • • • • API SSO, Authorization, XML/WS Security Enforcement at DMZ WS Authentication, Security token translation, Federation: WS-Security, WS-SecureConversation, WSTrust (single/multiple STSs). REST Security: OAuth2, SAML (OIT). Happening on the Gateway. Protocol Security: XML Security, WS-Security, REST Security Authorization, Data Redaction, Risk: Leveraging Embedded OES PDP or remote OAM/OES PDP Required transport & format protocol
Oracle API Gateway – Social Connectivity DMZ ZONE 3rd Party IDPs GREEN ZONE OAuth OpenID Connect SAML Firewall Firewall f SAML Token Token Required transport & format protocol SOAP/REST Virtual Web Services { "weatherreport" : {"city":“San Francisco", "weather":“42"} } Oracle Service Bus Oracle API Gateway API/Web Request with Required Token (SAML, OAM, Kerberos, OAuth etc.) (Service Virtualization) API Request App/Device/User Credential Web SSO Oracle Webservices Manager < weatherreport city=“San Francisco" weather=“42" >< /weatherreport> RESTful Web Service SAML Token SOAP Web Service HTTP/REST/SOAP/OAuth Clients Required transport & format protocol
Oracle API Gateway – Fine Grained AuthZ and Data Redaction GREEN ZONE DMZ ZONE Firewall {<Response> <Response Data 1>, <Response Data 2>, <Response Data 3> <Response Data 4>, <Response Data 5>, } Firewall HTTP GET/POST – REST {<Request>} Response Data1 Response Data2 SSOToken Response Data3 {<Response> <Response Data 3> <Response Data 4>} Oracle API Gateway { <Response>} SOAP {<Request>} {<Response> <Response Data 1> <Response Data 2>} Response Data5 SAML Token/ Request End point security O W S M RESTful/SOAP Web Service Response PEP JMS {<Request>} (Service Virtualization) {<Response> <Response Data 5>} Response Data4 Oracle Service Bus {< Request>} Oracle Webservices Manager REST/JSON {<Request>} REST/XML {<Request>} Existing API/WS Returns PDP {<Response> <Response Data 1>} Entitlements Server Data Format Transformations XML to JSON and vice versa Protocol bridging REST to SOAP and vice versa First Line Of Defense Last-Mile Security
Oracle API Gateway – API Key Management(Cloud Consumer) GREEN ZONE DMZ ZONE Firewall Google Firewall APIKey_Google Oracle API Gateway SSOToken Oracle Service Bus { <Response>} (Service Virtualization) APIKey_Y API Key + Web Service Request X {< Request>} APIKey_Google Oracle Webservices Manager APIKey_X Y APIKey_X APIKey_Y First Line Of Defense Last-Mile Security SAML Token/ Request End point security O W S M Response RESTful/SOAP Web Service
Oracle API Gateway – Configuration & Management Tools Policy Studio Oracle API Gateway Policy Studio is a policy development and configuration tool • Enables policy developers to easily configure API Gateway policies and settings to control and protect deployed API services and Web services. • Policy Studio is typically installed on a separate machine from the API Gateway to enable remote administration. Manager API Gateway Manager is a centralized web-based dashboard • Enables administrators to control and manage API Gateways and groups in a domain. • Connects to the Node Manager on each host, and displays aggregated monitoring data from multiple API Gateway instances. Oracle API Gateway Instance (Core Engine) Policy Development A Oracle API Gateway policy developer typically performs the following tasks: • • • • Develops API Gateway policies and solution packs. Customizes and extends the API Gateway using scripting. Creates Java classes and/or custom filters using the API Gateway filter SDK. Uses the Policy Studio, API Gateway Explorer, and API Gateway Manager tools. Connector Usage Metrics Connector Connector Connector Analytics API Gateway Analytics is a separately installed tool used by administrators • Generates reports and charts based on usage metrics for all services and API Gateways in a domain. • API Gateway Analytics provides integration with databases such as MySQL Server, MS SQL Server, and Oracle. • Includes both real-time and historical metrics.
Oracle API Gateway – Managed Domain Architecture POLICY STUDIO Browser-based Manager UI DOMAIN ADMIN NODE MANAGER Domain is the set of all hosts(Physical machine) running API Gateway instances, which are managed centrally by the API Gateway Manager tool. NODE MANAGER Server Instance 1 Services Group 1 Server Instance 2 Server Instance 1 Services Group 2 Server Instance 2 Server Instance 1 TEST GROUP Node 1(Master) Node 2 API Gateway's group-based domain architecture, which enables to break down projects into logical groups and manage configuration across your organization. This provides manageability and scalability, and enables you to perform load balancing and failover across distributed deployments Group • Number of API Gateway instances that all run the same configuration. • Can runs across more than one physical host machine. • Can include more than one API Gateway instance on the same host • Each API Gateway in the group runs the same configuration • Each API Gateway has its own deployment descriptor file (envSettings.properties) • A group also has a deployment descriptor, which specifies settings values that are the same across the group but may differ in different environments. • A standalone API Gateway runs in a group of one member (TEST GROUP in the diagram). • Deploy, manage, and monitor a group of API Gateways using the Policy Studio and the browser-based API Gateway Manager. Node Manager(Server side process) • Manages & Monitors API Gateway instances on the host • Only one Node Manager runs per host. • Communication between the Node Manager and the API Gateway is secured using SSL. • Policy Studio and the browser-based API Gateway Manager are clients of the Node Manager. • The first Node Manager added in a domain is known as the Admin Node Manager. • The Admin Node Manager acts as the master Node Manager. It performs Role-Based Access Control (RBAC), and forwards requests to other Node Managers when required. • The Admin Node Manager also manages and deploys configuration to the API Gateway instance(s) in a domain.
Oracle API Gateway – Concepts(Filter, Policy, Message Attribute, Selector, Faults, Policy Shortcuts & Alerts ) Filter is an executable rule that performs a specific type of processing on a message. • Example: Message Size filter rejects messages that are greater or less than a specified size. • Categories of message filters available with the API Gateway, including authentication, authorization, content filtering, signing, and conversion. Policy is a network of message filters in which each filter is a modular unit that processes a message. • A message can traverse different paths through the policy, depending on which filters succeed or fail. • A policy can also contain other policies, which enables you to build modular reusable policies. • A policy must have a Start filter. Filters labeled End stop the execution of the policy if the filter execution fails. • A policy starts with a START filter and ends with END Filter Policy Policy Filter The following example screen shot shows an example policy with success paths and a single failure path: Message Attributes Each filter requires input data and produces output data(message attributes) . Specific filters to create your own message attributes, and to set their values. The Trace filter enables you to trace message attribute values at execution time. Message Attributes Selector is a special syntax that enables API Gateway configuration settings to be evaluated and expanded at runtime based on metadata Faults When a SOAP transaction fails, you can use a SOAP fault to return error information to the SOAP client. Policy Shortcut enables you to create a link from one policy to another policy. Ex: Create a policy that inserts security tokens into a message, and another that adds HTTP headers. You can then create a third policy that calls the other two policies using Policy Shortcut filters. SOAP Alerts can be send alert messages for specified events to various alerting destinations. System alerts are usually sent when a filter fails, but they can also be used for notification purposes. Fault
Oracle API Gateway – Concepts(Policy Container, Policy Context, Process, Listeners, Protocol Mediation, Remote Hosts, Servlet Application, Configuration Profile, Service Virtualization) Policy Container used to group similar policies together (for example, all authentication or logging policies), or policies that relate to a particular service. Policy Context : Policies can execute in a specified context(set a context by associating a relative execution path or listener with a policy). Process is an instance of the API Gateway capable of running on a host. Listeners : Define different types of listeners and associate them with specific policies. Protocol Mediation: The API Gateway can be used to provide protocol mediation (for example, receiving a SOAP request over JMS, and transforming it into a SOAP/HTTP request to a backend service). Remote Hosts: Define a remote host when you need more control of the connection settings to a particular server. HTTP version, IP addresses, Timeouts, Buffers, Caches Servlet Applications : Provides a Web server and servlet application server that can be used to host static content (for example, documentation for your project), or servlets providing internal services. Configuration Profile contains the configuration information required to run the API Gateway. For example, a specific Configuration Profile instance can store certificates, users, core policies and services, external connections, or listeners. Service Virtualization When you register an API service or Web Service, and deploy it to the API Gateway, the API Gateway virtualizes the service. Instead of connecting to the service directly, clients connect through the API Gateway. The API Gateway can then apply policies to messages sent to the destination service
Question & Answers Thanks
Ad

Recommended

Azure Synapse Analytics Overview (r1)
Azure Synapse Analytics Overview (r1)Azure Synapse Analytics Overview (r1)
Azure Synapse Analytics Overview (r1)
James Serra
 
2019 - OOW - Database Migration Methods from On-Premise to Cloud
2019 - OOW - Database Migration Methods from On-Premise to Cloud2019 - OOW - Database Migration Methods from On-Premise to Cloud
2019 - OOW - Database Migration Methods from On-Premise to Cloud
Marcus Vinicius Miguel Pedro
 
Kappa vs Lambda Architectures and Technology Comparison
Kappa vs Lambda Architectures and Technology ComparisonKappa vs Lambda Architectures and Technology Comparison
Kappa vs Lambda Architectures and Technology Comparison
Kai Wähner
 
Azure Synapse Analytics Overview (r2)
Azure Synapse Analytics Overview (r2)Azure Synapse Analytics Overview (r2)
Azure Synapse Analytics Overview (r2)
James Serra
 
Azure Data Factory Data Flow
Azure Data Factory Data FlowAzure Data Factory Data Flow
Azure Data Factory Data Flow
Mark Kromer
 
Owning Your Own (Data) Lake House
Owning Your Own (Data) Lake HouseOwning Your Own (Data) Lake House
Owning Your Own (Data) Lake House
Data Con LA
 
Modern data warehouse
Modern data warehouseModern data warehouse
Modern data warehouse
Rakesh Jayaram
 
Delta Lake OSS: Create reliable and performant Data Lake by Quentin Ambard
Delta Lake OSS: Create reliable and performant Data Lake by Quentin AmbardDelta Lake OSS: Create reliable and performant Data Lake by Quentin Ambard
Delta Lake OSS: Create reliable and performant Data Lake by Quentin Ambard
Paris Data Engineers !
 
Azure Synapse Analytics
Azure Synapse AnalyticsAzure Synapse Analytics
Azure Synapse Analytics
WinWire Technologies Inc
 
Oracle Database Migration to Oracle Cloud Infrastructure
Oracle Database Migration to Oracle Cloud InfrastructureOracle Database Migration to Oracle Cloud Infrastructure
Oracle Database Migration to Oracle Cloud Infrastructure
SinanPetrusToma
 
Microsoft Azure Cloud Services
Microsoft Azure Cloud ServicesMicrosoft Azure Cloud Services
Microsoft Azure Cloud Services
David J Rosenthal
 
Edge architecture ieee international conference on cloud engineering
Edge architecture ieee international conference on cloud engineeringEdge architecture ieee international conference on cloud engineering
Edge architecture ieee international conference on cloud engineering
Mikey Cohen - Hiring Amazing Engineers
 
(The life of a) Data engineer
(The life of a) Data engineer(The life of a) Data engineer
(The life of a) Data engineer
Alex Chalini
 
Data Lakehouse Symposium | Day 1 | Part 2
Data Lakehouse Symposium | Day 1 | Part 2Data Lakehouse Symposium | Day 1 | Part 2
Data Lakehouse Symposium | Day 1 | Part 2
Databricks
 
Stl meetup cloudera platform - january 2020
Stl meetup cloudera platform - january 2020Stl meetup cloudera platform - january 2020
Stl meetup cloudera platform - january 2020
Adam Doyle
 
Delta Lake with Azure Databricks
Delta Lake with Azure DatabricksDelta Lake with Azure Databricks
Delta Lake with Azure Databricks
Dustin Vannoy
 
Architecting Agile Data Applications for Scale
Architecting Agile Data Applications for ScaleArchitecting Agile Data Applications for Scale
Architecting Agile Data Applications for Scale
Databricks
 
Analytics in a Day Virtual Workshop
Analytics in a Day Virtual WorkshopAnalytics in a Day Virtual Workshop
Analytics in a Day Virtual Workshop
CCG
 
High Availability & Disaster Recovery on Oracle Cloud Infrastructure
High Availability & Disaster Recovery on Oracle Cloud InfrastructureHigh Availability & Disaster Recovery on Oracle Cloud Infrastructure
High Availability & Disaster Recovery on Oracle Cloud Infrastructure
SinanPetrusToma
 
Introduction to Azure Data Factory
Introduction to Azure Data FactoryIntroduction to Azure Data Factory
Introduction to Azure Data Factory
Slava Kokaev
 
Intro to Delta Lake
Intro to Delta LakeIntro to Delta Lake
Intro to Delta Lake
Databricks
 
Spline: Data Lineage For Spark Structured Streaming
Spline: Data Lineage For Spark Structured StreamingSpline: Data Lineage For Spark Structured Streaming
Spline: Data Lineage For Spark Structured Streaming
Vaclav Kosar
 
Introduction to Azure Databricks
Introduction to Azure DatabricksIntroduction to Azure Databricks
Introduction to Azure Databricks
James Serra
 
Databricks: A Tool That Empowers You To Do More With Data
Databricks: A Tool That Empowers You To Do More With DataDatabricks: A Tool That Empowers You To Do More With Data
Databricks: A Tool That Empowers You To Do More With Data
Databricks
 
Introduction to snowflake
Introduction to snowflakeIntroduction to snowflake
Introduction to snowflake
Sunil Gurav
 
Serverless Kafka and Spark in a Multi-Cloud Lakehouse Architecture
Serverless Kafka and Spark in a Multi-Cloud Lakehouse ArchitectureServerless Kafka and Spark in a Multi-Cloud Lakehouse Architecture
Serverless Kafka and Spark in a Multi-Cloud Lakehouse Architecture
Kai Wähner
 
Databricks Delta Lake and Its Benefits
Databricks Delta Lake and Its BenefitsDatabricks Delta Lake and Its Benefits
Databricks Delta Lake and Its Benefits
Databricks
 
Microservices Design Patterns
Microservices Design PatternsMicroservices Design Patterns
Microservices Design Patterns
Haim Michael
 
Api gatewayの話
Api gatewayの話Api gatewayの話
Api gatewayの話
Hiroshi Hayakawa
 
AWS Black Belt Tech シリーズ 2015 - Amazon API Gateway
AWS Black Belt Tech シリーズ 2015 - Amazon API GatewayAWS Black Belt Tech シリーズ 2015 - Amazon API Gateway
AWS Black Belt Tech シリーズ 2015 - Amazon API Gateway
Amazon Web Services Japan
 
Ad

More Related Content

What's hot (20)

Azure Synapse Analytics
Azure Synapse AnalyticsAzure Synapse Analytics
Azure Synapse Analytics
WinWire Technologies Inc
 
Oracle Database Migration to Oracle Cloud Infrastructure
Oracle Database Migration to Oracle Cloud InfrastructureOracle Database Migration to Oracle Cloud Infrastructure
Oracle Database Migration to Oracle Cloud Infrastructure
SinanPetrusToma
 
Microsoft Azure Cloud Services
Microsoft Azure Cloud ServicesMicrosoft Azure Cloud Services
Microsoft Azure Cloud Services
David J Rosenthal
 
Edge architecture ieee international conference on cloud engineering
Edge architecture ieee international conference on cloud engineeringEdge architecture ieee international conference on cloud engineering
Edge architecture ieee international conference on cloud engineering
Mikey Cohen - Hiring Amazing Engineers
 
(The life of a) Data engineer
(The life of a) Data engineer(The life of a) Data engineer
(The life of a) Data engineer
Alex Chalini
 
Data Lakehouse Symposium | Day 1 | Part 2
Data Lakehouse Symposium | Day 1 | Part 2Data Lakehouse Symposium | Day 1 | Part 2
Data Lakehouse Symposium | Day 1 | Part 2
Databricks
 
Stl meetup cloudera platform - january 2020
Stl meetup cloudera platform - january 2020Stl meetup cloudera platform - january 2020
Stl meetup cloudera platform - january 2020
Adam Doyle
 
Delta Lake with Azure Databricks
Delta Lake with Azure DatabricksDelta Lake with Azure Databricks
Delta Lake with Azure Databricks
Dustin Vannoy
 
Architecting Agile Data Applications for Scale
Architecting Agile Data Applications for ScaleArchitecting Agile Data Applications for Scale
Architecting Agile Data Applications for Scale
Databricks
 
Analytics in a Day Virtual Workshop
Analytics in a Day Virtual WorkshopAnalytics in a Day Virtual Workshop
Analytics in a Day Virtual Workshop
CCG
 
High Availability & Disaster Recovery on Oracle Cloud Infrastructure
High Availability & Disaster Recovery on Oracle Cloud InfrastructureHigh Availability & Disaster Recovery on Oracle Cloud Infrastructure
High Availability & Disaster Recovery on Oracle Cloud Infrastructure
SinanPetrusToma
 
Introduction to Azure Data Factory
Introduction to Azure Data FactoryIntroduction to Azure Data Factory
Introduction to Azure Data Factory
Slava Kokaev
 
Intro to Delta Lake
Intro to Delta LakeIntro to Delta Lake
Intro to Delta Lake
Databricks
 
Spline: Data Lineage For Spark Structured Streaming
Spline: Data Lineage For Spark Structured StreamingSpline: Data Lineage For Spark Structured Streaming
Spline: Data Lineage For Spark Structured Streaming
Vaclav Kosar
 
Introduction to Azure Databricks
Introduction to Azure DatabricksIntroduction to Azure Databricks
Introduction to Azure Databricks
James Serra
 
Databricks: A Tool That Empowers You To Do More With Data
Databricks: A Tool That Empowers You To Do More With DataDatabricks: A Tool That Empowers You To Do More With Data
Databricks: A Tool That Empowers You To Do More With Data
Databricks
 
Introduction to snowflake
Introduction to snowflakeIntroduction to snowflake
Introduction to snowflake
Sunil Gurav
 
Serverless Kafka and Spark in a Multi-Cloud Lakehouse Architecture
Serverless Kafka and Spark in a Multi-Cloud Lakehouse ArchitectureServerless Kafka and Spark in a Multi-Cloud Lakehouse Architecture
Serverless Kafka and Spark in a Multi-Cloud Lakehouse Architecture
Kai Wähner
 
Databricks Delta Lake and Its Benefits
Databricks Delta Lake and Its BenefitsDatabricks Delta Lake and Its Benefits
Databricks Delta Lake and Its Benefits
Databricks
 
Microservices Design Patterns
Microservices Design PatternsMicroservices Design Patterns
Microservices Design Patterns
Haim Michael
 
Azure Synapse Analytics
Azure Synapse AnalyticsAzure Synapse Analytics
Azure Synapse Analytics
WinWire Technologies Inc
 
Oracle Database Migration to Oracle Cloud Infrastructure
Oracle Database Migration to Oracle Cloud InfrastructureOracle Database Migration to Oracle Cloud Infrastructure
Oracle Database Migration to Oracle Cloud Infrastructure
SinanPetrusToma
 
Microsoft Azure Cloud Services
Microsoft Azure Cloud ServicesMicrosoft Azure Cloud Services
Microsoft Azure Cloud Services
David J Rosenthal
 
Edge architecture ieee international conference on cloud engineering
Edge architecture ieee international conference on cloud engineeringEdge architecture ieee international conference on cloud engineering
Edge architecture ieee international conference on cloud engineering
Mikey Cohen - Hiring Amazing Engineers
 
(The life of a) Data engineer
(The life of a) Data engineer(The life of a) Data engineer
(The life of a) Data engineer
Alex Chalini
 
Data Lakehouse Symposium | Day 1 | Part 2
Data Lakehouse Symposium | Day 1 | Part 2Data Lakehouse Symposium | Day 1 | Part 2
Data Lakehouse Symposium | Day 1 | Part 2
Databricks
 
Stl meetup cloudera platform - january 2020
Stl meetup cloudera platform - january 2020Stl meetup cloudera platform - january 2020
Stl meetup cloudera platform - january 2020
Adam Doyle
 
Delta Lake with Azure Databricks
Delta Lake with Azure DatabricksDelta Lake with Azure Databricks
Delta Lake with Azure Databricks
Dustin Vannoy
 
Architecting Agile Data Applications for Scale
Architecting Agile Data Applications for ScaleArchitecting Agile Data Applications for Scale
Architecting Agile Data Applications for Scale
Databricks
 
Analytics in a Day Virtual Workshop
Analytics in a Day Virtual WorkshopAnalytics in a Day Virtual Workshop
Analytics in a Day Virtual Workshop
CCG
 
High Availability & Disaster Recovery on Oracle Cloud Infrastructure
High Availability & Disaster Recovery on Oracle Cloud InfrastructureHigh Availability & Disaster Recovery on Oracle Cloud Infrastructure
High Availability & Disaster Recovery on Oracle Cloud Infrastructure
SinanPetrusToma
 
Introduction to Azure Data Factory
Introduction to Azure Data FactoryIntroduction to Azure Data Factory
Introduction to Azure Data Factory
Slava Kokaev
 
Intro to Delta Lake
Intro to Delta LakeIntro to Delta Lake
Intro to Delta Lake
Databricks
 
Spline: Data Lineage For Spark Structured Streaming
Spline: Data Lineage For Spark Structured StreamingSpline: Data Lineage For Spark Structured Streaming
Spline: Data Lineage For Spark Structured Streaming
Vaclav Kosar
 
Introduction to Azure Databricks
Introduction to Azure DatabricksIntroduction to Azure Databricks
Introduction to Azure Databricks
James Serra
 
Databricks: A Tool That Empowers You To Do More With Data
Databricks: A Tool That Empowers You To Do More With DataDatabricks: A Tool That Empowers You To Do More With Data
Databricks: A Tool That Empowers You To Do More With Data
Databricks
 
Introduction to snowflake
Introduction to snowflakeIntroduction to snowflake
Introduction to snowflake
Sunil Gurav
 
Serverless Kafka and Spark in a Multi-Cloud Lakehouse Architecture
Serverless Kafka and Spark in a Multi-Cloud Lakehouse ArchitectureServerless Kafka and Spark in a Multi-Cloud Lakehouse Architecture
Serverless Kafka and Spark in a Multi-Cloud Lakehouse Architecture
Kai Wähner
 
Databricks Delta Lake and Its Benefits
Databricks Delta Lake and Its BenefitsDatabricks Delta Lake and Its Benefits
Databricks Delta Lake and Its Benefits
Databricks
 
Microservices Design Patterns
Microservices Design PatternsMicroservices Design Patterns
Microservices Design Patterns
Haim Michael
 

Viewers also liked (15)

Api gatewayの話
Api gatewayの話Api gatewayの話
Api gatewayの話
Hiroshi Hayakawa
 
AWS Black Belt Tech シリーズ 2015 - Amazon API Gateway
AWS Black Belt Tech シリーズ 2015 - Amazon API GatewayAWS Black Belt Tech シリーズ 2015 - Amazon API Gateway
AWS Black Belt Tech シリーズ 2015 - Amazon API Gateway
Amazon Web Services Japan
 
API Management architect presentation
API Management architect presentationAPI Management architect presentation
API Management architect presentation
sflynn073
 
Oracle api gateway overview
Oracle api gateway overviewOracle api gateway overview
Oracle api gateway overview
Oracle Corporation
 
WSO2Con EU 2016: Understanding the WSO2 API Management Platform
WSO2Con EU 2016: Understanding the WSO2 API Management PlatformWSO2Con EU 2016: Understanding the WSO2 API Management Platform
WSO2Con EU 2016: Understanding the WSO2 API Management Platform
WSO2
 
Best Practices for API Management
Best Practices for API Management Best Practices for API Management
Best Practices for API Management
WSO2
 
Craft Conference 2015 - Evolution of the PayPal API: Platform & Culture
Craft Conference 2015 - Evolution of the PayPal API: Platform & CultureCraft Conference 2015 - Evolution of the PayPal API: Platform & Culture
Craft Conference 2015 - Evolution of the PayPal API: Platform & Culture
Deepak Nadig
 
Implementing API Facade using WSO2 API Management Platform
Implementing API Facade using WSO2 API Management PlatformImplementing API Facade using WSO2 API Management Platform
Implementing API Facade using WSO2 API Management Platform
WSO2
 
WSO2Con ASIA 2016: Understanding the WSO2 API Management Platform
WSO2Con ASIA 2016: Understanding the WSO2 API Management PlatformWSO2Con ASIA 2016: Understanding the WSO2 API Management Platform
WSO2Con ASIA 2016: Understanding the WSO2 API Management Platform
WSO2
 
API Management Platform Technical Evaluation Framework
API Management Platform Technical Evaluation FrameworkAPI Management Platform Technical Evaluation Framework
API Management Platform Technical Evaluation Framework
WSO2
 
Roll Your Own API Management Platform with nginx and Lua
Roll Your Own API Management Platform with nginx and LuaRoll Your Own API Management Platform with nginx and Lua
Roll Your Own API Management Platform with nginx and Lua
Jon Moore
 
OAuth 101 & Secure APIs 2012 Cloud Identity Summit
OAuth 101 & Secure APIs 2012 Cloud Identity SummitOAuth 101 & Secure APIs 2012 Cloud Identity Summit
OAuth 101 & Secure APIs 2012 Cloud Identity Summit
Brian Campbell
 
Gartner AADI Summit Sydney 2014 Implementing the Layer 7 API Management Pla...
Gartner AADI Summit Sydney 2014 Implementing the Layer 7 API Management Pla...Gartner AADI Summit Sydney 2014 Implementing the Layer 7 API Management Pla...
Gartner AADI Summit Sydney 2014 Implementing the Layer 7 API Management Pla...
CA API Management
 
Open API and API Management - Introduction and Comparison of Products: TIBCO ...
Open API and API Management - Introduction and Comparison of Products: TIBCO ...Open API and API Management - Introduction and Comparison of Products: TIBCO ...
Open API and API Management - Introduction and Comparison of Products: TIBCO ...
Kai Wähner
 
Securing RESTful APIs using OAuth 2 and OpenID Connect
Securing RESTful APIs using OAuth 2 and OpenID ConnectSecuring RESTful APIs using OAuth 2 and OpenID Connect
Securing RESTful APIs using OAuth 2 and OpenID Connect
Jonathan LeBlanc
 
Api gatewayの話
Api gatewayの話Api gatewayの話
Api gatewayの話
Hiroshi Hayakawa
 
AWS Black Belt Tech シリーズ 2015 - Amazon API Gateway
AWS Black Belt Tech シリーズ 2015 - Amazon API GatewayAWS Black Belt Tech シリーズ 2015 - Amazon API Gateway
AWS Black Belt Tech シリーズ 2015 - Amazon API Gateway
Amazon Web Services Japan
 
API Management architect presentation
API Management architect presentationAPI Management architect presentation
API Management architect presentation
sflynn073
 
Oracle api gateway overview
Oracle api gateway overviewOracle api gateway overview
Oracle api gateway overview
Oracle Corporation
 
WSO2Con EU 2016: Understanding the WSO2 API Management Platform
WSO2Con EU 2016: Understanding the WSO2 API Management PlatformWSO2Con EU 2016: Understanding the WSO2 API Management Platform
WSO2Con EU 2016: Understanding the WSO2 API Management Platform
WSO2
 
Best Practices for API Management
Best Practices for API Management Best Practices for API Management
Best Practices for API Management
WSO2
 
Craft Conference 2015 - Evolution of the PayPal API: Platform & Culture
Craft Conference 2015 - Evolution of the PayPal API: Platform & CultureCraft Conference 2015 - Evolution of the PayPal API: Platform & Culture
Craft Conference 2015 - Evolution of the PayPal API: Platform & Culture
Deepak Nadig
 
Implementing API Facade using WSO2 API Management Platform
Implementing API Facade using WSO2 API Management PlatformImplementing API Facade using WSO2 API Management Platform
Implementing API Facade using WSO2 API Management Platform
WSO2
 
WSO2Con ASIA 2016: Understanding the WSO2 API Management Platform
WSO2Con ASIA 2016: Understanding the WSO2 API Management PlatformWSO2Con ASIA 2016: Understanding the WSO2 API Management Platform
WSO2Con ASIA 2016: Understanding the WSO2 API Management Platform
WSO2
 
API Management Platform Technical Evaluation Framework
API Management Platform Technical Evaluation FrameworkAPI Management Platform Technical Evaluation Framework
API Management Platform Technical Evaluation Framework
WSO2
 
Roll Your Own API Management Platform with nginx and Lua
Roll Your Own API Management Platform with nginx and LuaRoll Your Own API Management Platform with nginx and Lua
Roll Your Own API Management Platform with nginx and Lua
Jon Moore
 
OAuth 101 & Secure APIs 2012 Cloud Identity Summit
OAuth 101 & Secure APIs 2012 Cloud Identity SummitOAuth 101 & Secure APIs 2012 Cloud Identity Summit
OAuth 101 & Secure APIs 2012 Cloud Identity Summit
Brian Campbell
 
Gartner AADI Summit Sydney 2014 Implementing the Layer 7 API Management Pla...
Gartner AADI Summit Sydney 2014 Implementing the Layer 7 API Management Pla...Gartner AADI Summit Sydney 2014 Implementing the Layer 7 API Management Pla...
Gartner AADI Summit Sydney 2014 Implementing the Layer 7 API Management Pla...
CA API Management
 
Open API and API Management - Introduction and Comparison of Products: TIBCO ...
Open API and API Management - Introduction and Comparison of Products: TIBCO ...Open API and API Management - Introduction and Comparison of Products: TIBCO ...
Open API and API Management - Introduction and Comparison of Products: TIBCO ...
Kai Wähner
 
Securing RESTful APIs using OAuth 2 and OpenID Connect
Securing RESTful APIs using OAuth 2 and OpenID ConnectSecuring RESTful APIs using OAuth 2 and OpenID Connect
Securing RESTful APIs using OAuth 2 and OpenID Connect
Jonathan LeBlanc
 
Ad

Similar to Oracle API Gateway (20)

2016 06 - design your api management strategy - axway - Api Management
2016 06 - design your api management strategy - axway - Api Management2016 06 - design your api management strategy - axway - Api Management
2016 06 - design your api management strategy - axway - Api Management
SmartWave
 
Developing Web Services With Oracle Web Logic Server
Developing Web Services With Oracle Web Logic ServerDeveloping Web Services With Oracle Web Logic Server
Developing Web Services With Oracle Web Logic Server
Gaurav Sharma
 
2014 q3-platform-update-v1.06.johnmathon
2014 q3-platform-update-v1.06.johnmathon2014 q3-platform-update-v1.06.johnmathon
2014 q3-platform-update-v1.06.johnmathon
aaronwso2
 
(ATS6-DEV09) Deep Dive into REST and SOAP Integration for Protocol Authors
(ATS6-DEV09) Deep Dive into REST and SOAP Integration for Protocol Authors(ATS6-DEV09) Deep Dive into REST and SOAP Integration for Protocol Authors
(ATS6-DEV09) Deep Dive into REST and SOAP Integration for Protocol Authors
BIOVIA
 
StrongLoop Overview
StrongLoop OverviewStrongLoop Overview
StrongLoop Overview
Shubhra Kar
 
Integrating with SAP FIX and HL7
Integrating with SAP FIX and HL7Integrating with SAP FIX and HL7
Integrating with SAP FIX and HL7
WSO2
 
Using Istio to Secure & Monitor Your Services
Using Istio to Secure & Monitor Your ServicesUsing Istio to Secure & Monitor Your Services
Using Istio to Secure & Monitor Your Services
Alcide
 
Windows Azure AppFabric
Windows Azure AppFabricWindows Azure AppFabric
Windows Azure AppFabric
David Chou
 
Getting Started with the Node.js LoopBack APi Framework
Getting Started with the Node.js LoopBack APi FrameworkGetting Started with the Node.js LoopBack APi Framework
Getting Started with the Node.js LoopBack APi Framework
Jimmy Guerrero
 
Seattle StrongLoop Node.js Workshop
Seattle StrongLoop Node.js WorkshopSeattle StrongLoop Node.js Workshop
Seattle StrongLoop Node.js Workshop
Jimmy Guerrero
 
Introduction To Cloud Computing
Introduction To Cloud ComputingIntroduction To Cloud Computing
Introduction To Cloud Computing
Rinat Shagisultanov
 
From Open Source to Open API with Restlet
From Open Source to Open API with RestletFrom Open Source to Open API with Restlet
From Open Source to Open API with Restlet
Restlet
 
Jax WS JAX RS and Java Web Apps with WSO2 Platform
Jax WS JAX RS and Java Web Apps with WSO2 PlatformJax WS JAX RS and Java Web Apps with WSO2 Platform
Jax WS JAX RS and Java Web Apps with WSO2 Platform
WSO2
 
Introduction to the WSO2 Identity Server &Contributing to an OS Project
Introduction to the WSO2 Identity Server &Contributing to an OS ProjectIntroduction to the WSO2 Identity Server &Contributing to an OS Project
Introduction to the WSO2 Identity Server &Contributing to an OS Project
Michael J Geiser
 
Oracle OpenWorld 2014 Review Part Four - PaaS Middleware
Oracle OpenWorld 2014 Review Part Four - PaaS MiddlewareOracle OpenWorld 2014 Review Part Four - PaaS Middleware
Oracle OpenWorld 2014 Review Part Four - PaaS Middleware
Getting value from IoT, Integration and Data Analytics
 
Web API or WCF - An Architectural Comparison
Web API or WCF - An Architectural ComparisonWeb API or WCF - An Architectural Comparison
Web API or WCF - An Architectural Comparison
Adnan Masood
 
Getting Started with API Management
Getting Started with API ManagementGetting Started with API Management
Getting Started with API Management
Revelation Technologies
 
Dave Carroll Application Services Salesforce
Dave Carroll Application Services SalesforceDave Carroll Application Services Salesforce
Dave Carroll Application Services Salesforce
deimos
 
Web services - A Practical Approach
Web services - A Practical ApproachWeb services - A Practical Approach
Web services - A Practical Approach
Madhaiyan Muthu
 
Azure Cloud Application Development Workshop - UGIdotNET
Azure Cloud Application Development Workshop - UGIdotNETAzure Cloud Application Development Workshop - UGIdotNET
Azure Cloud Application Development Workshop - UGIdotNET
Lorenzo Barbieri
 
2016 06 - design your api management strategy - axway - Api Management
2016 06 - design your api management strategy - axway - Api Management2016 06 - design your api management strategy - axway - Api Management
2016 06 - design your api management strategy - axway - Api Management
SmartWave
 
Developing Web Services With Oracle Web Logic Server
Developing Web Services With Oracle Web Logic ServerDeveloping Web Services With Oracle Web Logic Server
Developing Web Services With Oracle Web Logic Server
Gaurav Sharma
 
2014 q3-platform-update-v1.06.johnmathon
2014 q3-platform-update-v1.06.johnmathon2014 q3-platform-update-v1.06.johnmathon
2014 q3-platform-update-v1.06.johnmathon
aaronwso2
 
(ATS6-DEV09) Deep Dive into REST and SOAP Integration for Protocol Authors
(ATS6-DEV09) Deep Dive into REST and SOAP Integration for Protocol Authors(ATS6-DEV09) Deep Dive into REST and SOAP Integration for Protocol Authors
(ATS6-DEV09) Deep Dive into REST and SOAP Integration for Protocol Authors
BIOVIA
 
StrongLoop Overview
StrongLoop OverviewStrongLoop Overview
StrongLoop Overview
Shubhra Kar
 
Integrating with SAP FIX and HL7
Integrating with SAP FIX and HL7Integrating with SAP FIX and HL7
Integrating with SAP FIX and HL7
WSO2
 
Using Istio to Secure & Monitor Your Services
Using Istio to Secure & Monitor Your ServicesUsing Istio to Secure & Monitor Your Services
Using Istio to Secure & Monitor Your Services
Alcide
 
Windows Azure AppFabric
Windows Azure AppFabricWindows Azure AppFabric
Windows Azure AppFabric
David Chou
 
Getting Started with the Node.js LoopBack APi Framework
Getting Started with the Node.js LoopBack APi FrameworkGetting Started with the Node.js LoopBack APi Framework
Getting Started with the Node.js LoopBack APi Framework
Jimmy Guerrero
 
Seattle StrongLoop Node.js Workshop
Seattle StrongLoop Node.js WorkshopSeattle StrongLoop Node.js Workshop
Seattle StrongLoop Node.js Workshop
Jimmy Guerrero
 
Introduction To Cloud Computing
Introduction To Cloud ComputingIntroduction To Cloud Computing
Introduction To Cloud Computing
Rinat Shagisultanov
 
From Open Source to Open API with Restlet
From Open Source to Open API with RestletFrom Open Source to Open API with Restlet
From Open Source to Open API with Restlet
Restlet
 
Jax WS JAX RS and Java Web Apps with WSO2 Platform
Jax WS JAX RS and Java Web Apps with WSO2 PlatformJax WS JAX RS and Java Web Apps with WSO2 Platform
Jax WS JAX RS and Java Web Apps with WSO2 Platform
WSO2
 
Introduction to the WSO2 Identity Server &Contributing to an OS Project
Introduction to the WSO2 Identity Server &Contributing to an OS ProjectIntroduction to the WSO2 Identity Server &Contributing to an OS Project
Introduction to the WSO2 Identity Server &Contributing to an OS Project
Michael J Geiser
 
Oracle OpenWorld 2014 Review Part Four - PaaS Middleware
Oracle OpenWorld 2014 Review Part Four - PaaS MiddlewareOracle OpenWorld 2014 Review Part Four - PaaS Middleware
Oracle OpenWorld 2014 Review Part Four - PaaS Middleware
Getting value from IoT, Integration and Data Analytics
 
Web API or WCF - An Architectural Comparison
Web API or WCF - An Architectural ComparisonWeb API or WCF - An Architectural Comparison
Web API or WCF - An Architectural Comparison
Adnan Masood
 
Getting Started with API Management
Getting Started with API ManagementGetting Started with API Management
Getting Started with API Management
Revelation Technologies
 
Dave Carroll Application Services Salesforce
Dave Carroll Application Services SalesforceDave Carroll Application Services Salesforce
Dave Carroll Application Services Salesforce
deimos
 
Web services - A Practical Approach
Web services - A Practical ApproachWeb services - A Practical Approach
Web services - A Practical Approach
Madhaiyan Muthu
 
Azure Cloud Application Development Workshop - UGIdotNET
Azure Cloud Application Development Workshop - UGIdotNETAzure Cloud Application Development Workshop - UGIdotNET
Azure Cloud Application Development Workshop - UGIdotNET
Lorenzo Barbieri
 
Ad

More from Rakesh Gujjarlapudi (20)

Reference architectures shows a microservices deployed to Kubernetes
Reference architectures shows a microservices deployed to KubernetesReference architectures shows a microservices deployed to Kubernetes
Reference architectures shows a microservices deployed to Kubernetes
Rakesh Gujjarlapudi
 
Oracle SOA, BPM, OSB, BAM, & B2B 12C
Oracle SOA, BPM, OSB, BAM, & B2B 12COracle SOA, BPM, OSB, BAM, & B2B 12C
Oracle SOA, BPM, OSB, BAM, & B2B 12C
Rakesh Gujjarlapudi
 
Lesson1 - SOA Governance Overview
Lesson1 - SOA Governance OverviewLesson1 - SOA Governance Overview
Lesson1 - SOA Governance Overview
Rakesh Gujjarlapudi
 
Oracle API Gateway Installation
Oracle API Gateway InstallationOracle API Gateway Installation
Oracle API Gateway Installation
Rakesh Gujjarlapudi
 
Weblogic Administration Managed Server migration
Weblogic Administration Managed Server migrationWeblogic Administration Managed Server migration
Weblogic Administration Managed Server migration
Rakesh Gujjarlapudi
 
Oracle fusionmiddlewarecontinuosintegration slideshare_v1
Oracle fusionmiddlewarecontinuosintegration slideshare_v1Oracle fusionmiddlewarecontinuosintegration slideshare_v1
Oracle fusionmiddlewarecontinuosintegration slideshare_v1
Rakesh Gujjarlapudi
 
SOA OSB suite cluster installation
SOA OSB suite cluster installationSOA OSB suite cluster installation
SOA OSB suite cluster installation
Rakesh Gujjarlapudi
 
Enterprise managerclodcontrolinstallconfiguration emc12c
Enterprise managerclodcontrolinstallconfiguration emc12cEnterprise managerclodcontrolinstallconfiguration emc12c
Enterprise managerclodcontrolinstallconfiguration emc12c
Rakesh Gujjarlapudi
 
Oracle OSB Security Enforcement with OWSM
Oracle OSB Security Enforcement with OWSMOracle OSB Security Enforcement with OWSM
Oracle OSB Security Enforcement with OWSM
Rakesh Gujjarlapudi
 
Oracle OSB Tutorial 3
Oracle OSB Tutorial 3Oracle OSB Tutorial 3
Oracle OSB Tutorial 3
Rakesh Gujjarlapudi
 
Oracle OSB Tutorial 2
Oracle OSB Tutorial 2Oracle OSB Tutorial 2
Oracle OSB Tutorial 2
Rakesh Gujjarlapudi
 
Oracle OSB Tutorial 1
Oracle OSB Tutorial 1Oracle OSB Tutorial 1
Oracle OSB Tutorial 1
Rakesh Gujjarlapudi
 
Oracle WebLogic 11g Topology
Oracle WebLogic 11g TopologyOracle WebLogic 11g Topology
Oracle WebLogic 11g Topology
Rakesh Gujjarlapudi
 
Oracle ADF 11g Skinning Tutorial
Oracle ADF 11g Skinning TutorialOracle ADF 11g Skinning Tutorial
Oracle ADF 11g Skinning Tutorial
Rakesh Gujjarlapudi
 
Oracle ADF 11g Tutorial
Oracle ADF 11g TutorialOracle ADF 11g Tutorial
Oracle ADF 11g Tutorial
Rakesh Gujjarlapudi
 
Oracle EMC 12C Grand Tour
Oracle EMC 12C Grand TourOracle EMC 12C Grand Tour
Oracle EMC 12C Grand Tour
Rakesh Gujjarlapudi
 
Oracle BPM 11g Lesson 1
Oracle BPM 11g Lesson 1Oracle BPM 11g Lesson 1
Oracle BPM 11g Lesson 1
Rakesh Gujjarlapudi
 
Oracle BPM 11g Lesson 2
Oracle BPM 11g Lesson 2Oracle BPM 11g Lesson 2
Oracle BPM 11g Lesson 2
Rakesh Gujjarlapudi
 
Oracle EMC 12 Installation
Oracle EMC 12 InstallationOracle EMC 12 Installation
Oracle EMC 12 Installation
Rakesh Gujjarlapudi
 
Oracle WebLogic Server 11g for IT OPS
Oracle WebLogic Server 11g for IT OPSOracle WebLogic Server 11g for IT OPS
Oracle WebLogic Server 11g for IT OPS
Rakesh Gujjarlapudi
 
Reference architectures shows a microservices deployed to Kubernetes
Reference architectures shows a microservices deployed to KubernetesReference architectures shows a microservices deployed to Kubernetes
Reference architectures shows a microservices deployed to Kubernetes
Rakesh Gujjarlapudi
 
Oracle SOA, BPM, OSB, BAM, & B2B 12C
Oracle SOA, BPM, OSB, BAM, & B2B 12COracle SOA, BPM, OSB, BAM, & B2B 12C
Oracle SOA, BPM, OSB, BAM, & B2B 12C
Rakesh Gujjarlapudi
 
Lesson1 - SOA Governance Overview
Lesson1 - SOA Governance OverviewLesson1 - SOA Governance Overview
Lesson1 - SOA Governance Overview
Rakesh Gujjarlapudi
 
Oracle API Gateway Installation
Oracle API Gateway InstallationOracle API Gateway Installation
Oracle API Gateway Installation
Rakesh Gujjarlapudi
 
Weblogic Administration Managed Server migration
Weblogic Administration Managed Server migrationWeblogic Administration Managed Server migration
Weblogic Administration Managed Server migration
Rakesh Gujjarlapudi
 
Oracle fusionmiddlewarecontinuosintegration slideshare_v1
Oracle fusionmiddlewarecontinuosintegration slideshare_v1Oracle fusionmiddlewarecontinuosintegration slideshare_v1
Oracle fusionmiddlewarecontinuosintegration slideshare_v1
Rakesh Gujjarlapudi
 
SOA OSB suite cluster installation
SOA OSB suite cluster installationSOA OSB suite cluster installation
SOA OSB suite cluster installation
Rakesh Gujjarlapudi
 
Enterprise managerclodcontrolinstallconfiguration emc12c
Enterprise managerclodcontrolinstallconfiguration emc12cEnterprise managerclodcontrolinstallconfiguration emc12c
Enterprise managerclodcontrolinstallconfiguration emc12c
Rakesh Gujjarlapudi
 
Oracle OSB Security Enforcement with OWSM
Oracle OSB Security Enforcement with OWSMOracle OSB Security Enforcement with OWSM
Oracle OSB Security Enforcement with OWSM
Rakesh Gujjarlapudi
 
Oracle OSB Tutorial 3
Oracle OSB Tutorial 3Oracle OSB Tutorial 3
Oracle OSB Tutorial 3
Rakesh Gujjarlapudi
 
Oracle OSB Tutorial 2
Oracle OSB Tutorial 2Oracle OSB Tutorial 2
Oracle OSB Tutorial 2
Rakesh Gujjarlapudi
 
Oracle OSB Tutorial 1
Oracle OSB Tutorial 1Oracle OSB Tutorial 1
Oracle OSB Tutorial 1
Rakesh Gujjarlapudi
 
Oracle WebLogic 11g Topology
Oracle WebLogic 11g TopologyOracle WebLogic 11g Topology
Oracle WebLogic 11g Topology
Rakesh Gujjarlapudi
 
Oracle ADF 11g Skinning Tutorial
Oracle ADF 11g Skinning TutorialOracle ADF 11g Skinning Tutorial
Oracle ADF 11g Skinning Tutorial
Rakesh Gujjarlapudi
 
Oracle ADF 11g Tutorial
Oracle ADF 11g TutorialOracle ADF 11g Tutorial
Oracle ADF 11g Tutorial
Rakesh Gujjarlapudi
 
Oracle EMC 12C Grand Tour
Oracle EMC 12C Grand TourOracle EMC 12C Grand Tour
Oracle EMC 12C Grand Tour
Rakesh Gujjarlapudi
 
Oracle BPM 11g Lesson 1
Oracle BPM 11g Lesson 1Oracle BPM 11g Lesson 1
Oracle BPM 11g Lesson 1
Rakesh Gujjarlapudi
 
Oracle BPM 11g Lesson 2
Oracle BPM 11g Lesson 2Oracle BPM 11g Lesson 2
Oracle BPM 11g Lesson 2
Rakesh Gujjarlapudi
 
Oracle EMC 12 Installation
Oracle EMC 12 InstallationOracle EMC 12 Installation
Oracle EMC 12 Installation
Rakesh Gujjarlapudi
 
Oracle WebLogic Server 11g for IT OPS
Oracle WebLogic Server 11g for IT OPSOracle WebLogic Server 11g for IT OPS
Oracle WebLogic Server 11g for IT OPS
Rakesh Gujjarlapudi
 

Recently uploaded (20)

An Overview of Salesforce Health Cloud & How is it Transforming Patient Care
An Overview of Salesforce Health Cloud & How is it Transforming Patient CareAn Overview of Salesforce Health Cloud & How is it Transforming Patient Care
An Overview of Salesforce Health Cloud & How is it Transforming Patient Care
Cyntexa
 
How to Install & Activate ListGrabber - eGrabber
How to Install & Activate ListGrabber - eGrabberHow to Install & Activate ListGrabber - eGrabber
How to Install & Activate ListGrabber - eGrabber
eGrabber
 
Everything You Need to Know About Agentforce? (Put AI Agents to Work)
Everything You Need to Know About Agentforce? (Put AI Agents to Work)Everything You Need to Know About Agentforce? (Put AI Agents to Work)
Everything You Need to Know About Agentforce? (Put AI Agents to Work)
Cyntexa
 
Crazy Incentives and How They Kill Security. How Do You Turn the Wheel?
Crazy Incentives and How They Kill Security. How Do You Turn the Wheel?Crazy Incentives and How They Kill Security. How Do You Turn the Wheel?
Crazy Incentives and How They Kill Security. How Do You Turn the Wheel?
Christian Folini
 
May Patch Tuesday
May Patch TuesdayMay Patch Tuesday
May Patch Tuesday
Ivanti
 
IT484 Cyber Forensics_Information Technology
IT484 Cyber Forensics_Information TechnologyIT484 Cyber Forensics_Information Technology
IT484 Cyber Forensics_Information Technology
SHEHABALYAMANI
 
AI-proof your career by Olivier Vroom and David WIlliamson
AI-proof your career by Olivier Vroom and David WIlliamsonAI-proof your career by Olivier Vroom and David WIlliamson
AI-proof your career by Olivier Vroom and David WIlliamson
UXPA Boston
 
Shoehorning dependency injection into a FP language, what does it take?
Shoehorning dependency injection into a FP language, what does it take?Shoehorning dependency injection into a FP language, what does it take?
Shoehorning dependency injection into a FP language, what does it take?
Eric Torreborre
 
Viam product demo_ Deploying and scaling AI with hardware.pdf
Viam product demo_ Deploying and scaling AI with hardware.pdfViam product demo_ Deploying and scaling AI with hardware.pdf
Viam product demo_ Deploying and scaling AI with hardware.pdf
camilalamoratta
 
AI Agents at Work: UiPath, Maestro & the Future of Documents
AI Agents at Work: UiPath, Maestro & the Future of DocumentsAI Agents at Work: UiPath, Maestro & the Future of Documents
AI Agents at Work: UiPath, Maestro & the Future of Documents
UiPathCommunity
 
AI x Accessibility UXPA by Stew Smith and Olivier Vroom
AI x Accessibility UXPA by Stew Smith and Olivier VroomAI x Accessibility UXPA by Stew Smith and Olivier Vroom
AI x Accessibility UXPA by Stew Smith and Olivier Vroom
UXPA Boston
 
Kit-Works Team Study_아직도 Dockefile.pdf_김성호
Kit-Works Team Study_아직도 Dockefile.pdf_김성호Kit-Works Team Study_아직도 Dockefile.pdf_김성호
Kit-Works Team Study_아직도 Dockefile.pdf_김성호
Wonjun Hwang
 
Build With AI - In Person Session Slides.pdf
Build With AI - In Person Session Slides.pdfBuild With AI - In Person Session Slides.pdf
Build With AI - In Person Session Slides.pdf
Google Developer Group - Harare
 
Challenges in Migrating Imperative Deep Learning Programs to Graph Execution:...
Challenges in Migrating Imperative Deep Learning Programs to Graph Execution:...Challenges in Migrating Imperative Deep Learning Programs to Graph Execution:...
Challenges in Migrating Imperative Deep Learning Programs to Graph Execution:...
Raffi Khatchadourian
 
Q1 2025 Dropbox Earnings and Investor Presentation
Q1 2025 Dropbox Earnings and Investor PresentationQ1 2025 Dropbox Earnings and Investor Presentation
Q1 2025 Dropbox Earnings and Investor Presentation
Dropbox
 
machines-for-woodworking-shops-en-compressed.pdf
machines-for-woodworking-shops-en-compressed.pdfmachines-for-woodworking-shops-en-compressed.pdf
machines-for-woodworking-shops-en-compressed.pdf
AmirStern2
 
Integrating FME with Python: Tips, Demos, and Best Practices for Powerful Aut...
Integrating FME with Python: Tips, Demos, and Best Practices for Powerful Aut...Integrating FME with Python: Tips, Demos, and Best Practices for Powerful Aut...
Integrating FME with Python: Tips, Demos, and Best Practices for Powerful Aut...
Safe Software
 
Config 2025 presentation recap covering both days
Config 2025 presentation recap covering both daysConfig 2025 presentation recap covering both days
Config 2025 presentation recap covering both days
TrishAntoni1
 
Optima Cyber - Maritime Cyber Security - MSSP Services - Manolis Sfakianakis ...
Optima Cyber - Maritime Cyber Security - MSSP Services - Manolis Sfakianakis ...Optima Cyber - Maritime Cyber Security - MSSP Services - Manolis Sfakianakis ...
Optima Cyber - Maritime Cyber Security - MSSP Services - Manolis Sfakianakis ...
Mike Mingos
 
RTP Over QUIC: An Interesting Opportunity Or Wasted Time?
RTP Over QUIC: An Interesting Opportunity Or Wasted Time?RTP Over QUIC: An Interesting Opportunity Or Wasted Time?
RTP Over QUIC: An Interesting Opportunity Or Wasted Time?
Lorenzo Miniero
 
An Overview of Salesforce Health Cloud & How is it Transforming Patient Care
An Overview of Salesforce Health Cloud & How is it Transforming Patient CareAn Overview of Salesforce Health Cloud & How is it Transforming Patient Care
An Overview of Salesforce Health Cloud & How is it Transforming Patient Care
Cyntexa
 
How to Install & Activate ListGrabber - eGrabber
How to Install & Activate ListGrabber - eGrabberHow to Install & Activate ListGrabber - eGrabber
How to Install & Activate ListGrabber - eGrabber
eGrabber
 
Everything You Need to Know About Agentforce? (Put AI Agents to Work)
Everything You Need to Know About Agentforce? (Put AI Agents to Work)Everything You Need to Know About Agentforce? (Put AI Agents to Work)
Everything You Need to Know About Agentforce? (Put AI Agents to Work)
Cyntexa
 
Crazy Incentives and How They Kill Security. How Do You Turn the Wheel?
Crazy Incentives and How They Kill Security. How Do You Turn the Wheel?Crazy Incentives and How They Kill Security. How Do You Turn the Wheel?
Crazy Incentives and How They Kill Security. How Do You Turn the Wheel?
Christian Folini
 
May Patch Tuesday
May Patch TuesdayMay Patch Tuesday
May Patch Tuesday
Ivanti
 
IT484 Cyber Forensics_Information Technology
IT484 Cyber Forensics_Information TechnologyIT484 Cyber Forensics_Information Technology
IT484 Cyber Forensics_Information Technology
SHEHABALYAMANI
 
AI-proof your career by Olivier Vroom and David WIlliamson
AI-proof your career by Olivier Vroom and David WIlliamsonAI-proof your career by Olivier Vroom and David WIlliamson
AI-proof your career by Olivier Vroom and David WIlliamson
UXPA Boston
 
Shoehorning dependency injection into a FP language, what does it take?
Shoehorning dependency injection into a FP language, what does it take?Shoehorning dependency injection into a FP language, what does it take?
Shoehorning dependency injection into a FP language, what does it take?
Eric Torreborre
 
Viam product demo_ Deploying and scaling AI with hardware.pdf
Viam product demo_ Deploying and scaling AI with hardware.pdfViam product demo_ Deploying and scaling AI with hardware.pdf
Viam product demo_ Deploying and scaling AI with hardware.pdf
camilalamoratta
 
AI Agents at Work: UiPath, Maestro & the Future of Documents
AI Agents at Work: UiPath, Maestro & the Future of DocumentsAI Agents at Work: UiPath, Maestro & the Future of Documents
AI Agents at Work: UiPath, Maestro & the Future of Documents
UiPathCommunity
 
AI x Accessibility UXPA by Stew Smith and Olivier Vroom
AI x Accessibility UXPA by Stew Smith and Olivier VroomAI x Accessibility UXPA by Stew Smith and Olivier Vroom
AI x Accessibility UXPA by Stew Smith and Olivier Vroom
UXPA Boston
 
Kit-Works Team Study_아직도 Dockefile.pdf_김성호
Kit-Works Team Study_아직도 Dockefile.pdf_김성호Kit-Works Team Study_아직도 Dockefile.pdf_김성호
Kit-Works Team Study_아직도 Dockefile.pdf_김성호
Wonjun Hwang
 
Build With AI - In Person Session Slides.pdf
Build With AI - In Person Session Slides.pdfBuild With AI - In Person Session Slides.pdf
Build With AI - In Person Session Slides.pdf
Google Developer Group - Harare
 
Challenges in Migrating Imperative Deep Learning Programs to Graph Execution:...
Challenges in Migrating Imperative Deep Learning Programs to Graph Execution:...Challenges in Migrating Imperative Deep Learning Programs to Graph Execution:...
Challenges in Migrating Imperative Deep Learning Programs to Graph Execution:...
Raffi Khatchadourian
 
Q1 2025 Dropbox Earnings and Investor Presentation
Q1 2025 Dropbox Earnings and Investor PresentationQ1 2025 Dropbox Earnings and Investor Presentation
Q1 2025 Dropbox Earnings and Investor Presentation
Dropbox
 
machines-for-woodworking-shops-en-compressed.pdf
machines-for-woodworking-shops-en-compressed.pdfmachines-for-woodworking-shops-en-compressed.pdf
machines-for-woodworking-shops-en-compressed.pdf
AmirStern2
 
Integrating FME with Python: Tips, Demos, and Best Practices for Powerful Aut...
Integrating FME with Python: Tips, Demos, and Best Practices for Powerful Aut...Integrating FME with Python: Tips, Demos, and Best Practices for Powerful Aut...
Integrating FME with Python: Tips, Demos, and Best Practices for Powerful Aut...
Safe Software
 
Config 2025 presentation recap covering both days
Config 2025 presentation recap covering both daysConfig 2025 presentation recap covering both days
Config 2025 presentation recap covering both days
TrishAntoni1
 
Optima Cyber - Maritime Cyber Security - MSSP Services - Manolis Sfakianakis ...
Optima Cyber - Maritime Cyber Security - MSSP Services - Manolis Sfakianakis ...Optima Cyber - Maritime Cyber Security - MSSP Services - Manolis Sfakianakis ...
Optima Cyber - Maritime Cyber Security - MSSP Services - Manolis Sfakianakis ...
Mike Mingos
 
RTP Over QUIC: An Interesting Opportunity Or Wasted Time?
RTP Over QUIC: An Interesting Opportunity Or Wasted Time?RTP Over QUIC: An Interesting Opportunity Or Wasted Time?
RTP Over QUIC: An Interesting Opportunity Or Wasted Time?
Lorenzo Miniero
 

Oracle API Gateway

  • 1. Oracle API Gateway Rakesh Gujjarlapudi rakesh_gujJ@yahoo.com
  • 2. Oracle API Gateway - Basic Architecture CLIENTS Application Servers Partner Applications Mobile Applications XML / JSON Oracle API Gateway Web Applications Cloud-Based Services Oracle API Gateway integrates, accelerates, governs, and secures Web API and SOA-based systems. Serves REST APIs and SOAP Web Services to clients  Converts REST to SOAP  Converts XML to JSON Supports other protocols also  FTP, SFTP, FTPS, TIBCO Rendezvous and EMS, JMS (to IBM WebSphere MQ, ActiveMQ, JBOSS Messaging) Applies security rules  Authentication: OAuth, HTTP Auth, Certificate Auth, WS-Security Content Filtering: Detection of SQL Injection, XSS, Viruses Monitoring of API and Service usage Caching and Traffic Management (routing, throttling) Legacy Applications Data
  • 3. Oracle API Gateway - Deployment Architecture GREEN ZONE Shared Services Layer RED ZONE First Line Of Defense CLIENTS End point security HTTP, SOAP, REST, XML, JMS Cloud-Based Services Webservice Clients REST-WS Clients OES PDP WS-Security, Basic Auth, Digest, X509, UNT,SAML, Kerberos Sign & Encrypt EXTRANET Oracle Service Bus Oracle API Gateway (Service Virtualization) Firewall Web Applications Internal Firewall Mobile Applications Oracle Webservices Manager Partner Applications WS-Security, Basic Auth, Digest, X509, UNT, SAML, Kerberos Sign & Encrypt O W S M BPEL/Web Service End point security HTTP, SOAP, REST, XML, JMS O W S M BPM Process End point security HTTP, SOAP, REST, XML, JMS O W S M Application INTRANET DMZ In Green Zone security use OWSM in conjunction with Oracle FMW products(SOA Suite, OSB, etc. both on the Client Side and Service Side Policy In Red Zone security OEG on the Service Side Policy.
  • 4. Oracle API Gateway – Security Overview Flooding Recursive Payloads Oversized Payloads Memory Leak • • Injection & Malicious Code SQL Injection XPath Injection Cross-site scripting Malformed content Logic bombs Confidentiality Integrity Sniffing Parameter Tampering Schema Poisoning External Entity Canonicalization • Firewall DOS Attacks GREEN ZONE DMZ ZONE Firewall Oracle API Gateway protection against Virtualize a web services Inbuilt Out-ofthe-Box filters Throttle the inbound message flow Privilege Escalation Attacks Dictionary Format String Buffer Overflow Race Conditions Symlink Unprotected interfaces Oracle Webservices Manager O W S M Backend Web Service End point security O W S M Oracle API Gateway Internet/Cloud Filtered Messages • • • • • Reconnaissance Attacks Code templates Forceful browsing Directory Reversal WSDL scanning Registry Disclosure End point security Malformed Request First Line Of Defense AuthC AuthZ Auditing Signature Verification Message Encryption/Decryption Last-Mile Security Backend Web Service End point security O W S M Backend Web Service
  • 5. Oracle API Gateway – Virtualization, Data/Protocol Bridging GREEN ZONE DMZ ZONE Firewall Firewall HTTP GET/POST - REST SSOToken REST/JSON < weatherreport city=“San Francisco" weather=“42" >< /weatherreport> SAML Token Oracle Webservices Manager Required transport & format protocol RESTful Web Service REST/XML SOAP Oracle API Gateway { "weatherreport" : {"city":“San Francisco", "weather":“42"} } JMS SAML Token SOAP Web Service Required transport & format protocol Data Format Transformations XML to JSON and vice versa Protocol bridging REST to SOAP and vice versa First Line Of Defense Last-Mile Security
  • 6. Oracle API Gateway – DMZ Security & Access Control GREEN ZONE DMZ ZONE Firewall Firewall HTTP GET/POST - REST SAML Token SSOToken JMS SOAP/REST Virtual Web Services { "weatherreport" : {"city":“San Francisco", "weather":“42"} } Oracle Service Bus SOAP Oracle API Gateway (Service Virtualization) REST/XML Oracle Webservices Manager < weatherreport city=“San Francisco" weather=“42" >< /weatherreport> REST/JSON Required transport & format protocol RESTful Web Service SAML Token SOAP Web Service • • • • • • API SSO, Authorization, XML/WS Security Enforcement at DMZ WS Authentication, Security token translation, Federation: WS-Security, WS-SecureConversation, WSTrust (single/multiple STSs). REST Security: OAuth2, SAML (OIT). Happening on the Gateway. Protocol Security: XML Security, WS-Security, REST Security Authorization, Data Redaction, Risk: Leveraging Embedded OES PDP or remote OAM/OES PDP Required transport & format protocol
  • 7. Oracle API Gateway – Social Connectivity DMZ ZONE 3rd Party IDPs GREEN ZONE OAuth OpenID Connect SAML Firewall Firewall f SAML Token Token Required transport & format protocol SOAP/REST Virtual Web Services { "weatherreport" : {"city":“San Francisco", "weather":“42"} } Oracle Service Bus Oracle API Gateway API/Web Request with Required Token (SAML, OAM, Kerberos, OAuth etc.) (Service Virtualization) API Request App/Device/User Credential Web SSO Oracle Webservices Manager < weatherreport city=“San Francisco" weather=“42" >< /weatherreport> RESTful Web Service SAML Token SOAP Web Service HTTP/REST/SOAP/OAuth Clients Required transport & format protocol
  • 8. Oracle API Gateway – Fine Grained AuthZ and Data Redaction GREEN ZONE DMZ ZONE Firewall {<Response> <Response Data 1>, <Response Data 2>, <Response Data 3> <Response Data 4>, <Response Data 5>, } Firewall HTTP GET/POST – REST {<Request>} Response Data1 Response Data2 SSOToken Response Data3 {<Response> <Response Data 3> <Response Data 4>} Oracle API Gateway { <Response>} SOAP {<Request>} {<Response> <Response Data 1> <Response Data 2>} Response Data5 SAML Token/ Request End point security O W S M RESTful/SOAP Web Service Response PEP JMS {<Request>} (Service Virtualization) {<Response> <Response Data 5>} Response Data4 Oracle Service Bus {< Request>} Oracle Webservices Manager REST/JSON {<Request>} REST/XML {<Request>} Existing API/WS Returns PDP {<Response> <Response Data 1>} Entitlements Server Data Format Transformations XML to JSON and vice versa Protocol bridging REST to SOAP and vice versa First Line Of Defense Last-Mile Security
  • 9. Oracle API Gateway – API Key Management(Cloud Consumer) GREEN ZONE DMZ ZONE Firewall Google Firewall APIKey_Google Oracle API Gateway SSOToken Oracle Service Bus { <Response>} (Service Virtualization) APIKey_Y API Key + Web Service Request X {< Request>} APIKey_Google Oracle Webservices Manager APIKey_X Y APIKey_X APIKey_Y First Line Of Defense Last-Mile Security SAML Token/ Request End point security O W S M Response RESTful/SOAP Web Service
  • 10. Oracle API Gateway – Configuration & Management Tools Policy Studio Oracle API Gateway Policy Studio is a policy development and configuration tool • Enables policy developers to easily configure API Gateway policies and settings to control and protect deployed API services and Web services. • Policy Studio is typically installed on a separate machine from the API Gateway to enable remote administration. Manager API Gateway Manager is a centralized web-based dashboard • Enables administrators to control and manage API Gateways and groups in a domain. • Connects to the Node Manager on each host, and displays aggregated monitoring data from multiple API Gateway instances. Oracle API Gateway Instance (Core Engine) Policy Development A Oracle API Gateway policy developer typically performs the following tasks: • • • • Develops API Gateway policies and solution packs. Customizes and extends the API Gateway using scripting. Creates Java classes and/or custom filters using the API Gateway filter SDK. Uses the Policy Studio, API Gateway Explorer, and API Gateway Manager tools. Connector Usage Metrics Connector Connector Connector Analytics API Gateway Analytics is a separately installed tool used by administrators • Generates reports and charts based on usage metrics for all services and API Gateways in a domain. • API Gateway Analytics provides integration with databases such as MySQL Server, MS SQL Server, and Oracle. • Includes both real-time and historical metrics.
  • 11. Oracle API Gateway – Managed Domain Architecture POLICY STUDIO Browser-based Manager UI DOMAIN ADMIN NODE MANAGER Domain is the set of all hosts(Physical machine) running API Gateway instances, which are managed centrally by the API Gateway Manager tool. NODE MANAGER Server Instance 1 Services Group 1 Server Instance 2 Server Instance 1 Services Group 2 Server Instance 2 Server Instance 1 TEST GROUP Node 1(Master) Node 2 API Gateway's group-based domain architecture, which enables to break down projects into logical groups and manage configuration across your organization. This provides manageability and scalability, and enables you to perform load balancing and failover across distributed deployments Group • Number of API Gateway instances that all run the same configuration. • Can runs across more than one physical host machine. • Can include more than one API Gateway instance on the same host • Each API Gateway in the group runs the same configuration • Each API Gateway has its own deployment descriptor file (envSettings.properties) • A group also has a deployment descriptor, which specifies settings values that are the same across the group but may differ in different environments. • A standalone API Gateway runs in a group of one member (TEST GROUP in the diagram). • Deploy, manage, and monitor a group of API Gateways using the Policy Studio and the browser-based API Gateway Manager. Node Manager(Server side process) • Manages & Monitors API Gateway instances on the host • Only one Node Manager runs per host. • Communication between the Node Manager and the API Gateway is secured using SSL. • Policy Studio and the browser-based API Gateway Manager are clients of the Node Manager. • The first Node Manager added in a domain is known as the Admin Node Manager. • The Admin Node Manager acts as the master Node Manager. It performs Role-Based Access Control (RBAC), and forwards requests to other Node Managers when required. • The Admin Node Manager also manages and deploys configuration to the API Gateway instance(s) in a domain.
  • 12. Oracle API Gateway – Concepts(Filter, Policy, Message Attribute, Selector, Faults, Policy Shortcuts & Alerts ) Filter is an executable rule that performs a specific type of processing on a message. • Example: Message Size filter rejects messages that are greater or less than a specified size. • Categories of message filters available with the API Gateway, including authentication, authorization, content filtering, signing, and conversion. Policy is a network of message filters in which each filter is a modular unit that processes a message. • A message can traverse different paths through the policy, depending on which filters succeed or fail. • A policy can also contain other policies, which enables you to build modular reusable policies. • A policy must have a Start filter. Filters labeled End stop the execution of the policy if the filter execution fails. • A policy starts with a START filter and ends with END Filter Policy Policy Filter The following example screen shot shows an example policy with success paths and a single failure path: Message Attributes Each filter requires input data and produces output data(message attributes) . Specific filters to create your own message attributes, and to set their values. The Trace filter enables you to trace message attribute values at execution time. Message Attributes Selector is a special syntax that enables API Gateway configuration settings to be evaluated and expanded at runtime based on metadata Faults When a SOAP transaction fails, you can use a SOAP fault to return error information to the SOAP client. Policy Shortcut enables you to create a link from one policy to another policy. Ex: Create a policy that inserts security tokens into a message, and another that adds HTTP headers. You can then create a third policy that calls the other two policies using Policy Shortcut filters. SOAP Alerts can be send alert messages for specified events to various alerting destinations. System alerts are usually sent when a filter fails, but they can also be used for notification purposes. Fault
  • 13. Oracle API Gateway – Concepts(Policy Container, Policy Context, Process, Listeners, Protocol Mediation, Remote Hosts, Servlet Application, Configuration Profile, Service Virtualization) Policy Container used to group similar policies together (for example, all authentication or logging policies), or policies that relate to a particular service. Policy Context : Policies can execute in a specified context(set a context by associating a relative execution path or listener with a policy). Process is an instance of the API Gateway capable of running on a host. Listeners : Define different types of listeners and associate them with specific policies. Protocol Mediation: The API Gateway can be used to provide protocol mediation (for example, receiving a SOAP request over JMS, and transforming it into a SOAP/HTTP request to a backend service). Remote Hosts: Define a remote host when you need more control of the connection settings to a particular server. HTTP version, IP addresses, Timeouts, Buffers, Caches Servlet Applications : Provides a Web server and servlet application server that can be used to host static content (for example, documentation for your project), or servlets providing internal services. Configuration Profile contains the configuration information required to run the API Gateway. For example, a specific Configuration Profile instance can store certificates, users, core policies and services, external connections, or listeners. Service Virtualization When you register an API service or Web Service, and deploy it to the API Gateway, the API Gateway virtualizes the service. Instead of connecting to the service directly, clients connect through the API Gateway. The API Gateway can then apply policies to messages sent to the destination service
  翻译: