iSOA Group’s CTO, Bryon Kataoka, was again the featured presenter on Friday, 11/3/17, for IBM DataPower Weekly Webcast, hosted by IBM.
Bryon’s presentation will be on the value of DataPower frameworks. DataPower frameworks are a set of configurations that comprise a single gateway that supports security, threat protection, validation, transformation and routing, whether deployed in the DMZ or in the trusted zone. DataPower frameworks can streamline development and ease administration, while limiting the number of ports exposed in deployment.
Bryon will share DataPower framework best practices learned across numerous client engagements including:
Describing common DataPower gateway frameworks.
Extending and reuse of frameworks.
Utilize frameworks to effectively leverage DataPower advanced capabilities.
iSOA Group presentation: November 3, 2017 at 11:00AM and 2:00PM ET
IBM DataPower Weekly Webcasts
Every Friday one of our experts provides a 20 minute overview on a particular topic related to the DataPower platform. This webcast series is designed to provide brief, easily digestible content regarding DataPower functionality, emerging use cases, best practices, recent announcements, and client successes. It is an opportunity to learn how you can better leverage DataPower in your organization and discover new areas of applicability.
When: Fridays at 11am and 2pm ET
Log in Information: https://stmeetings.na.collabserv.com/stmeetings/room/join/access?id=7634-2249
Meeting password: datapower
Conference Bridge: 1-888-426-6840, Passcode: 64534212#
Would you like to be added the weekly invite? Please contact IBM’s Jason Pacini at jspacini@us.ibm.com.
Want to know more? Contact iSOA Group at info@isoagroup.com.
Unveiling the Tech Salsa of LAMs with Janus in Real-Time Applications
IBM DataPower Weekly Webcast - The Value of Datapower Frameworks - 11.03.17
1. Building the Foundation for Digital Innovation
DataPower Framework
Utilizing a DataPower Framework
11/3/17
1
Bryon Kataoka, CTO, iSOA Group
bkataoka@isoagroup.com
www.isoagroup.com
(707) 773-1198 office (707) 338-2274 mobile
John (JR) Nelson iSOA Group
jnelson@isoagroup.com
www.isoagroup.com
(707) 773-1198 office (484) 571-5838 mobile
2. Building the Foundation for Digital Innovation
What is Framework?
• The Framework is a set of configurations that comprise a single
gateway that supports security, threat protection, validation,
transformation and routing whether deployed in the DMZ or in the
Trusted Zone
• The Framework should provide:
A single entry point for all services
Support for both REST and SOAP services
Authentication and Authorization Dynamic routing to service
implementation
Audit Logging
11/3/17
2
3. Building the Foundation for Digital Innovation
Typical Scenario
Simple DataPower
Implementation
• Front Side Handler
• Security
• Static Backend Routing
• Transformation
Framework
Implementation
• Security
• Routing
• Transformation
• Logging
• Single Entry Point
11/3/17
3
Framework
4. Building the Foundation for Digital Innovation
Motivations
• Framework will provide consistency of implementation
• Provides a pattern for developers to utilize
• Simplifies development by moving common tasks into the
framework
• Separates Business Requirements from Common Requirements
• Simplifies deployment by separating the Framework from individual
Use cases. Ie. No need to redeploy Framework configurations
• Provides Dynamic implementation on less complex service
integration
11/3/17
4
5. Building the Foundation for Digital Innovation
Framework Scenario
• DataPower installed in:
DMZ
Trusted Zone
• Traffic flow
Inbound and Outbound
• Need to support Security
Authentication, Authorization, token switching, Threat protection
• Services
Similar but have different transformations, endpoints and security
Need to separate unique requirements while maintaining common
template
• Supporting SOAP and REST
11/3/17
5
6. Building the Foundation for Digital Innovation
Example Framework Actions
• Consumer Identification– validate consumer
• Framework Logging – log information about transaction
• Context Router – Loads configuration file with information about Service
Proxy
• Conditional – takes information passed and determines if specialized
authentication needs to be initiated.
• Route – final action that takes information set by Context Router and routes
to the Service Proxy for the custom transformations based on query
parameters.
• Threat Protection – built in threat protection and required SQL-Injection
Filters
Consumer
Identification
Framework
Logging
Context
Router
Conditional Route
|
6
7. Building the Foundation for Digital Innovation
Service Proxy
• The Service Proxy is a Multiprotocol Gateway or WS-Proxy
• It works hand-in-hand with the Framework
• The Service Proxy provides business specific requirements prior to routing
to the final endpoint.
• Actions initiated in the Service Proxy include:
Transformations
XML
JSON
Token switching or other security requirements required by backend
Schema validation if desired
|
7
Framework
Service
Proxy#1
Service
Proxy#2
Business
Endpoint
Business
Endpoint
9. Building the Foundation for Digital Innovation
Framework Design
• Experienced DataPower developers required to build
the Framework
Establish a Front side handler and MPG to support REST and
SOAP
Develop a logging strategy
Eg. Identify common events/variables to log
Establish a common method to identify the inbound transaction
URI
ContextId, ConsumerID…
Create a configuration file to provide meta-data about
transaction
Adds security
Adds Service Proxy route
11/3/17
9
10. Building the Foundation for Digital Innovation
Dynamic routing with Framework
Example DataPower Framework
11. Building the Foundation for Digital Innovation
Routing is contained in a Configuration XML document
Framework Configuration Routing
12. Building the Foundation for Digital Innovation
Service Proxy Configuration
• The Service Proxy Configuration needs to be established with the
required metadata.
• Metadata can be:
Load Balancer Group names
Version numbers
Stylesheets for transformations
Name of schemas
Logging actions
Caching information
Transaction timeout
11/3/17
12
13. Building the Foundation for Digital Innovation
The Multi-Protocol Gateway also uses a configuration file
Proxy Configuration
14. Building the Foundation for Digital Innovation
Key DataPower feature to know
• You should know and understand:
Service Chaining
Conditionals
Executing stylesheets from variables
Reading local:/// documents
Use of localhost
• Prior to designing your Framework
Understand your requirements
Security
Logging
Validations
Types of transactions
11/3/17
14
15. Building the Foundation for Digital Innovation
Benefits of our Framework
• Standard “API Pattern” created and made available.
• API Developers use pattern and reduce learning curve.
• Time to deliver services is dramatically reduced.
• Critical security requirements built into Framework and configurable
using configuration properties
• Focus is on Business Service Proxy and not Framework
11/3/17
15
16. Building the Foundation for Digital Innovation
iSOA Group
• The iSOA Group, a Commerce Solutions Inc company, is an employee-owned consulting
practice, in business since 1997.
• Since our inception in 1997, iSOA Group has been an IBM Business Partner with a team of
certified advisors focused on the technology of IBM® DataPower® Gateway, IBM API
Connect™, hybrid cloud integration and ESB solutions.
• As thought leaders, we provide unique solutions and services that incorporate IBM solutions and
cloud offerings.
• iSOA Group is a reseller of IBM software, enabling our team to package a complete and cost-
effective solution for your business.
• Our core competencies include:
IBM DataPower Gateway Appliances
API Management Strategy and Solutions
Hybrid Cloud integration supporting on premise and cloud based information.
Foundation Solutions for Messaging (IBM MQ), and Applications (WebSphere)
Training and On Demand Services
11/3/17
16
17. Building the Foundation for Digital Innovation
Want to learn more?
• You can contact JR Nelson (jnelson@isoagroup.com) or Bryon
Kataoka (bkataoka@isoagroup.com) with further questions and
clarifications.
• If you would like iSOA to engage to help you create your own
Framework please contact Cheryl Bertini (cbertini@isoagroup.com)
11/3/17
17