Please enable JavaScript.
Coggle requires JavaScript to display documents.
2 API LifeCycle / Governance (Deploy (Catch defects earlier (Faster time…
2 API LifeCycle / Governance
Design
Security
Access 1. Identifier 2. Authentication 3. Authorization 4. Scope (Read, Write)
Protection 1. OWASP protection 2. Bot
Outside-In perspective / Consumable
Consistency (Standardization e.g. Naming)
Review by App Developers
Deploy
CI/CD pipeline
https://cloud.google.com/blog/products/api-management/automating-api-delivery-with-cicd-pipelines
Half of development efforts to APIs
Catch defects earlier
Faster time to market
Growth
Reduce costs
Promote consistency across environments
Version mgmt (Branching Strategy)
Static code analysis (Naming guidelines, security)
Unit testing and Code coverage
Configure, Package and Deploy your code
Integration testing
Publish Reports
Update API documents (Sandbox env)
Publish - Discoverable
Portal
KPIs => Search Rank
Repository
Monitoring
Runtime SLA
Consumer Management
On-boarding
App on-boarding
Sandbox 2. API Product
Segmentation, SLA, Billing
KPIs => 5,5,5 principle
Analyze - API Growth
Developers 2. Apps 3. APIs
Hackathon, Partners
KPIs Analytics
Federated CoE
The problem with perfection
Govern lightly (Centrally)
Resource
https://www.postman.com/state-of-api/#key-findings
1.Design 2. Develop 3. Secure 4. Publish 5.Scale 6. Monitor 7. Analyze 8. Monetize