Upload
rajeev-sakhuja
View
28
Download
3
Embed Size (px)
Citation preview
REST API Design
Development & Management
Rajeev Sakhuja (Raj)
Learn API Management
http://acloudfan.com
@acloudfan
http://acloudfan.com
REST API
Public Or External
Private Or
Internal
Partner
ACME Website, Mobile Apps
Private API
ACME Intranet Apps
Enterprise Network
3rd Party Developed Apps
Public API
Public Developer
Partner Developer
Partner API
Enterprise Network
Partner Network
Considerations
API Security Access Request
SLA Management Documentation
API Security
Trusted Developers
Cannot trust
• Basic Auth • Proprietary schemes
• Key/Secret • OAuth
Adopt Standard Security Scheme such as Key/Secret & OAuth
Controlled Environment
Uncontrolled
• Internal websites • PDF
• Developer portal
Documentation
Publish all API on a Developer Portal
Controlled Environment
Uncontrolled
• Emails • Internal ticketing/process
• Developer portal
Access Request
Provisioning Workflow – Developer Portal
Define and Manage SLA for all API
SLA Management
• Throughput E.g., 20 Calls/Second
• Support E.g., Email
• Up time E.g., 99.99%
Define SLA Tiers Runtime Management
Interested in Learning REST API from End to end perspective NOT just coding?
Take a look at my course
http://www.acloudfan.com/learn-REST-API
Rajeev Sakhuja (Raj)
Learn API Management
http://acloudfan.com
@acloudfan