API Management Strategy for Microsoft Azure

Azure API Management enhance existing APIs by adding authentication, bandwidth quota, IP filtering, and much more to create API stores and expose Service Fabric microservices and Azure Functions to internal and external clients.

Azure API Management system is made up of three main components Azure Portal, Developer Portal and API Gateway.

Azure Portal

Using the azure portal we can

• Define or import API schema
• Package APIs into products
• Set up policies like quotas or transformations on the APIs
• Get insights from analytics
• Manage users

Developer Portal

Using the developer portal we can

• Create an account and subscribe to get API keys
• Test the API calls
• Read API documentation
• Access analytics on their own usage

API Gateway

The API gateway sits on top of your backend APIs. API Gateway sits on top of our backend APIs and it can to the following.

• Accepts API calls and routes them to your backend APIs
• Verifies API keys, JWT tokens, certificates, and other credentials
• Enforces usage quotas and rate limits
• Caches backend responses where set up
• Logs call metadata for analytics purposes
• Transforms your API on the fly without code modifications

What are the benefits of using azure api management service

• Azure api management service provides ton of security and performance features. For example, based on the API access plan you selected (Free or paid), it limits the number of calls that are allowed as per the plan.
• Prevents Denial of Service (DOS) attacks by using throttling.
• Secures backend services by gating access with API keys.
• Use advanced security policies like JWT tokens, certificates, and other credentials.