Book Image

Implementing Oracle API Platform Cloud Service

By : Andrew Bell, Sander Rensen, Luis Weir, Phil Wilkins
Book Image

Implementing Oracle API Platform Cloud Service

By: Andrew Bell, Sander Rensen, Luis Weir, Phil Wilkins

Overview of this book

Implementing Oracle API Platform Cloud Service moves from theory to practice using the newest Oracle API management platform. This critical new platform for Oracle developers allows you to interface the complex array of services your clients expect in the modern world. First, you'll learn about Oracle’s new platform and get an overview of it, then you'll see a use case showing the functionality and use of this new platform for Oracle customers. Next, you’ll see the power of Apiary and begin designing your own APIs. From there, you’ll build and run microservices and set up the Oracle API gateways. Moving on, you’ll discover how to customize the developer portal and publish your own APIs. You’ll spend time looking at configuration management on the new platform, and implementing the Oauth 2.0 policy, as well as custom policies. The latest finance modules from Oracle will be examined, with some of the third party alternatives in sight as well. This broad-scoped book completes your journey with a clear examination of how to transition APIs from Oracle API Management 12c to the new Oracle API Platform, so that you can step into the future confidently.

Related Content you might be interested in

Current Title:

Small book image
Implementing Oracle API Platform Cloud Service
Andrew Bell | Sander Rensen | Luis Weir | Phil Wilkins
May, 2018 | 518 pages
Small book image
Enterprise API Management
Luis Weir
Jul, 2019 | 300 pages
Small book image
Implementing Oracle Integration Cloud Service
Phil Wilkins | Robert van Molken
Jan, 2017 | 506 pages
Small book image
Digital Transformation and Modernization with IBM API Connect
James Brennan | Ashish Aggarwal | Bryon Kataoka
Jan, 2022 | 588 pages
Table of Contents (12 chapters)
Preface
Preface
What is an API?
3rd generation APIs
What this book covers
How we have approached this book
What you need for this book
Who is the book for?
Errata
Piracy
Questions
Free Chapter
1
Platform Overview
Platform Overview
What is the Oracle API platform?
Evolution of Oracle's API offering
Platform architecture
Summary
2
Use Case
Use Case
Scenario
IT landscape
Logical data view
API requirements in detail
Structuring the design approach
Next steps
Summary
3
Designing the API
Designing the API
Scenario
The API design-first process
Summary
4
Building and Running the Microservice
Building and Running the Microservice
What is a microservice?
Building the Microservice
Summary
5
Platform Setup and Gateway Configuration
Platform Setup and Gateway Configuration
Platform architecture
The concept of logical and physical gateways
Deployment for the use case
Prerequisites to allow the API platform to be built
Building the cloud
Summary
6
Defining Policies for APIs
Defining Policies for APIs
Background
Request and response pipeline policies
Defining polices
Summary
7
Testing APIs with API Fortress
Testing APIs with API Fortress
What is API Fortress?
Test the MRA Media Catalogue API
Summary
8
Implementing OAuth 2.0
Implementing OAuth 2.0
OAuth 2.0 overview
MRA use case
Implementation steps
Summary
9
Implementing Custom Policies
Implementing Custom Policies
What is Groovy?
Why provide Groovy for logging?
How Groovy custom policies work?
Custom Java policies
Custom policies – which policy type to use?
Summary
10
Moving from API Management 12c to APIP CS
Moving from API Management 12c to APIP CS
Oracle API management suite 12c
Summary
11
Another book You May Enjoy
Another book You May Enjoy
Leave a review - let other readers know what you think

MRA use case

Given that MRA's Media Catalogue API is public and accessible, not just to registered partners but also to communities of developers in general, MRA wanted an authorization mechanism that is flexible yet robust. Although OAuth 2.0 was broadly accepted as the way forward in terms of authorizing users, the question remained as to what OAuth 2.0 is to implement. After careful consideration, MRA made the following conclusions:

  • The API gateway should act as resource server and thus enforce policies such as only users with valid tokens and corresponding authorization grants could access an API.
  • The API gateway as resource owner should be agnostic of what OAuth 2.0 flow is implemented by a given application.
  • The OAuth 2.0 Authorization Server should be flexible enough to support in the long term multiple authorization flows. However, MRA felt that the Implicit grant...
Previous Section
End of Section 3
Next Section