New AppID integration with Bluemix’s Native API tooling, makes OAUTH accessible to everyone

To the developers that have had nightmares trying to figure out an architecture and implementation for social log-in and OAUTH, we have an answer.  The Bluemix Native tooling, which is baked into the fabric of Openwhisk and Cloud Foundry, now has AppID integrated into its gateway.  You can now set up multiple social login providers (Google...  Continue reading New AppID integration with Bluemix’s Native API tooling, makes OAUTH accessible to everyone

Crafting APIs with API Connect and OpenShift

Crafting APIs with API Connect and OpenShift Prerequisites: Docker 1.12+ OpenShift 1.5+ IBM DataPower Gateway for Docker v7.6.0 (available from DockerHub and FixCentral) IBM API Connect OVA Overview In this tutorial, you will develop and publish an API with API Connect and publish that API to a DataPower gateway running on OpenShift. This tutorial assumes prior experience...  Continue reading Crafting APIs with API Connect and OpenShift

DataPower Gateway V7.6 delivers enhanced operational flexibility for API Connect

IBM DataPower Gateways are the enterprise gateway for IBM API Connect. It provides a robust and feature-rich gateway for running API workloads across multiple form factors (physical appliance, virtual appliance, Linux and Docker). The announcement of DataPower V7.6 provides several enhancements for API Connect, with the headline of tenant isolation on DataPower Gateway physical appliances. If you're...  Continue reading DataPower Gateway V7.6 delivers enhanced operational flexibility for API Connect

API Economy Business Drivers: #1 – Speed

What is the age old problem between business and IT? Answer: The business wants to do something new very quickly and IT’s answer is 12 months. Last week I introduced the API Economy Business Drivers series and this blog addresses the first one – Speed. This is probably the most discussed and...  Continue reading API Economy Business Drivers: #1 – Speed

API Economy – 4 Business Drivers and 7 Use Case Categories – Series Overview

“What are businesses doing with APIs and why are they doing it?” As I meet with clients interested in formulating an API strategy, this is always a topic I discuss. Every business and IT executive wants to understand the API business drivers IBM is seeing around the world in their industry and others....  Continue reading API Economy – 4 Business Drivers and 7 Use Case Categories – Series Overview

Customizing the API Connect Developer Portal

The IBM API Connect Developer Portal is based on the hugely popular, open source Drupal Content Management System. As such it is almost infinitely customizable. But where do you start? Create a custom theme You want your developer portal to look like the rest of your web properties, it needs to have your corporate branding, styling and look...  Continue reading Customizing the API Connect Developer Portal

API Level Throttling in API Connect

Throttling is a key capability for environments that link to downstream services whether  running in an ESB or microservices. Two common cases when you need to add API throttling include: Prior to the invocation of an API to help protect downstream services At the start of the API to provide a total limit of requests from...  Continue reading API Level Throttling in API Connect

Manage OAuth token lifecycle to enhance the digital app experience

In this tutorial, you will learn about the various OAuth token lifecycle operations. Specifically, you will learn how to obtain a new access token from a refresh token, revoke tokens, and obtain token details using OAuth introspection. What is OAuth token lifecycle management? Web / Mobile application (third-party OAuth applications) that provide access to third-party API...  Continue reading Manage OAuth token lifecycle to enhance the digital app experience

The 7 Biggest Mistakes Companies Make on their API Initiatives

Question: What is better than learning from your mistakes? Answer: Learning from other people’s mistakes. I work with many clients trying to help their business achieve success with their API initiatives. I share best practices, methodologies, industry examples, consultant reports, and ROI analysis to try to help them succeed. But, sometimes the best way...  Continue reading The 7 Biggest Mistakes Companies Make on their API Initiatives

Restrict access to critical resources with new OAuth scope check

      I recently started using an online grocery service. No more long lineups in the grocery store (and the tempting candy near the cashier)! I simply created my order online and picked it up at the local grocery store. One of the items on my list was apples. There are many kinds of apples (McIntosh, Red Delicious, Granny Smith, Gala) but...  Continue reading Restrict access to critical resources with new OAuth scope check