Read more
From our Integration experts
No IT organization can do without an API strategy anymore
Almost all data and processes are accessed through APIs. More than 80 percent of Web traffic consists of API calls. And in our own networks, too, we are constantly using this technology. With Azure API Management your organization is able to securely and insightfully access all your data and processes. In this blog, I'll tell you why Azure API Management is the solution for a good API strategy.
By Eldert Grootenboer, Technology Lead Azure & Integration and Microsoft MVP Azure
When we talk about APIs, we can distinguish between two types of API personae: services and data, and connected experiences. The services and data are your APIs, for which you want to grant access to the outside world. These can run in Azure, as well as on-premises, at other cloud providers, or on SaaS services. The connected experiences are the buyers, who want to use your data and services. These can be APIs, but also websites, devices and more.
Azure API Management works as follows: this solution is placed between services and data and connected experiences, and acts as a facade. In this situation, the connected experiences no longer know about the backend, but only connect to API Management. Here they have a single access point where all APIs are made available. These APIs can be a direct representation of the services in the backend, or an abstraction where only certain operations are accessed (or even composite APIs consisting of operations from various APIs in the backend).
Three Pillars of Azure API Management
Azure API Management consists of three pillars:
In this, you configure your APIs and the service. Policies also enable you to make your APIs smarter here. Policies are xml snippets that allow you to add functionality to your APIs. Such as the caching policy. This allows you to add caching to an existing API without having to modify it yourself. There are many different policies, with as many possibilities. These can include setting up security, using OAuth, certificates or basic authentication. You can also apply validations, which allow you to validate the payload of messages before they are passed to the backend. Or transformations, which allow you to transform both messages and protocols.
Or the API Management service itself. This is the instance of API Management within which the APIs live that are defined, policies are executed and routing of frontend and backend calls takes place. The connected experiences connect to the gateway and thus have one access point for all APIs. Moreover, you can implement this so that they also always have a unified way of authenticating, regardless of the authentication used by the backend services. This makes it much easier for your buyers to purchase the services. In addition, all the traffic going through API Management is made transparent, providing a clear picture of who is using the APIs, when, how often, etc. These insights are all made available in the portal in a clear way, and you can apply monitoring to this as well.
This is a website where developers building connected experiences can see at a glance what services are available to them. They can also request a subscription to an API here, then after an approval step (if required), they can access the API. In addition, within the developer portal, they can also invoke the APIs right away. This allows them to immediately see what data is expected and what responses will be returned, without having to set it up in their own application first.
A wide range of benefits
In short, Azure API Management offers a host of benefits. Being able to access and view all APIs ensures that they are always under your governance. And thanks to the many policies available, you can make APIs smarter, without requiring any development on the APIs themselves. Finally, it ensures that you always unlock all APIs in a secure way, and insight is present into who has access to which data and processes. This is why Azure API Management is the solution for a good API strategy.
Read more
From our Integration experts
Our Integration Teams are ready to help!
We, and third parties, use cookies on our website. We use cookies to keep statistics, to save your preferences, but also for marketing purposes (for example, tailoring advertisements). By clicking on 'Settings' you can read more about our cookies and adjust your preferences. By clicking 'Accept all', you agree to the use of all cookies as described in our privacy and cookie policy.
Purpose
This cookie is used to store your preferences regarding cookies. The history is stored in your local storage.
Cookies
Location of Processing
European Union
Technologies Used
Cookies
Expiration date
1 year
Why required?
Required web technologies and cookies make our website technically accessible to and usable for you. This applies to essential base functionalities such as navigation on the website, correct display in your internet browser or requesting your consent. Without these web technologies and cookies our website does not work.
Purpose
These cookies are stored to keep you logged into the website.
Cookies
Location of Processing
European Union
Technologies Used
Cookies
Expiration date
1 year
Why required?
Required web technologies and cookies make our website technically accessible to and usable for you. This applies to essential base functionalities such as navigation on the website, correct display in your internet browser or requesting your consent. Without these web technologies and cookies our website does not work.
Purpose
This cookie is used to submit forms to us in a safe way.
Cookies
Location of Processing
European Union
Technologies Used
Cookies
Expiration date
1 year
Why required?
Required web technologies and cookies make our website technically accessible to and usable for you. This applies to essential base functionalities such as navigation on the website, correct display in your internet browser or requesting your consent. Without these web technologies and cookies our website does not work.
Purpose
This service provided by Google is used to load specific tags (or trackers) based on your preferences and location.
Why required?
This web technology enables us to insert tags based on your preferences. It is required but adheres to your settings and will not load any tags if you do not consent to them.
Purpose
This cookie is used to store your preferences regarding language.
Cookies
Why required?
We use your browser language to determine which language to show on our website. When you change the default language, this cookie makes sure your language preference is persistent.
Purpose
This service provided by uMarketingSuite is used to track anonymized analytics on the HSO.com application. We find it very important that your privacy is protected. Therefore, we collect and store this data anonymously on our own servers. This cookie helps us collect data from HSO.com so that we can improve the website. Examples of this are: it allows us to track engagement by page, measuring various events like scroll-depth, time on page and clicks.
Cookie
Purpose
With your consent, this website will load Google Analytics to track behavior across the site.
Cookies
Purpose
With your consent, this website will load the Google Advertising tag which enables HSO to report user activity from HSO.com to Google. This enables HSO to track conversions and create remarketing lists based on user activity on HSO.com.
Possible cookies
Please refer to the below page for an updated view of all possible cookies that the Google Ads tag may set.
Cookie information for Google's ad products (safety.google)
Technologies Used
Cookies
Purpose
With your consent, we use IPGeoLocation to retrieve a country code based on your IP address. We use this service to be able to trigger the right web technologies for the right people.
Purpose
With your consent, we use Leadfeeder to identify companies by their IP-addresses. Leadfeeder automatically filters out all users visiting from residential IP addresses and ISPs. All visit data is aggregated on the company level.
Cookies
Purpose
With your consent, this website will load the LinkedIn Insights tag which enables us to see analytical data on website performance, allows us to build audiences, and use retargeting as an advertising technique. Learn more about LinkedIn cookies here.
Cookies
Purpose
With your consent, this website will load the Microsoft Advertising Universal Event Tracking tag which enables HSO to report user activity from HSO.com to Microsoft Advertising. HSO can then create conversion goals to specify which subset of user actions on the website qualify to be counted as conversions. Similarly, HSO can create remarketing lists based on user activity on HSO.com and Microsoft Advertising matches the list definitions with UET logged user activity to put users into those lists.
Cookies
Technologies Used
Cookies
Purpose
With your consent, this website will load the Microsoft Dynamics 365 Marketing tag which enables HSO to score leads based on your level of interaction with the website. The cookie contains no personal information, but does uniquely identify a specific browser on a specific machine. Learn more about Microsoft Dynamics 365 Marketing cookies here.
Cookies
Technologies Used
Cookies
Purpose
With your consent, we use Spotler to measures more extensive recurring website visits based on IP address and draw up a profile of a visitor.
Cookies
Purpose
With your consent, this website will show videos embedded from Vimeo.
Technologies Used
Cookies
Purpose
With your consent, this website will show videos embedded from Youtube.
Cookies
Technologies Used
Cookies
Purpose
With your consent, this website will load the Meta-pixel tag which enables us to see analytical data on website performance, allows us to build audiences, and use retargeting as an advertising technique through platforms owned by Meta, like Facebook and Instagram. Learn more about Facebook cookies here. You can adjust how ads work for you on Facebook here.
Cookies
Purpose
With your consent, we use LeadInfo to identify companies by their IP-addresses. LeadInfo automatically filters out all users visiting from residential IP addresses and ISPs. These cookies are not shared with third parties under any circumstances.
Cookies
Purpose
With your consent, we use TechTarget to identify companies by their IP address(es).
Cookies
Purpose
With your consent, we use this service provided by uMarketingSuite to run A/B tests across the HSO.com application. A/B testing (also called split testing) is comparing two versions of a web page to learn how we can improve your experience.
Purpose
With your consent, we use this service provided by uMarketingSuite to personalize pages and content across the HSO.com application. Personalization helps us to tailor the website to your specific needs, aiming to improve your experience on HSO.com.