Universal API Management - Workshop

We will use the API-Catalog CLI to discover and catalog all our demo ecommerce microservices. Then, we will publish them into a Single Inventory of Enterprise APIs in Anypoint Exchange. Having an inventory of all APIs (OWASP API #9 - "Improper Assets Management"), is one of the most important API Security concerns that all organizations must ensure full compliance.

We will demonstrate how easy it is to register and run Flex Gateways anywhere, so that they can always follow the applications that they need to secure and protect. In this lab, we will focus on applying API Security for Authentication (OWASP API #2 - “Broken User Authentication”) and API Protection of Resources and Rate Limiting (OWASP API #4 - “Lack of Resources and Rate Limiting”). Optionally, users can configure Mutual authentication TLS (mTLS) to validate identity certificates.

Operational Excellence involves having the right level of API Management, Monitoring and Logging (OWASP API #9 - “Insufficient logging & monitoring”). In this Lab, we are going to explore how Anypoint API Manager, together with Anypoint Monitoring provide a comprehensive ability to easily monitor and log API traffic, without requiring installation or configuration of tooling, but simply letting Flex Gateway push API Telemetry that then is consumed and presented by the Anypoint Control Plane.

API Governance enforces 24/7 ruleset conformance to security compliance and industry best practices, providing out of the box rulesets to be applied to all Cataloged APIs (from Lab 1) and underscoring the potential risks in having insecure or poorly designed APIs. Then, using the Anypoint Design Center, we will easily remediate all security vulnerabilities, illustrating how these risks may be mitigated.

We will finish this workshop with API Experience Hub, our API Portal offering. API Portals enable enterprises to easily and securely share data, similar to the way app stores offer smartphone users the ability to explore apps. AEH enables you to quickly design, build and publish APIs to your portal. In this lab, you will see how external users can explore your APIs and request access to them. And because it’s built on Salesforce Experience Cloud, you can take advantage of the best products and services that Salesforce has to offer, to customize and scale your portal by adding engagement, support, and community building elements.