Azure API Management is a fully managed service that enables customers to publish, secure, transform, maintain, and monitor APIs. With a few clicks in the Azure portal, you can create an API facade that acts as a “front door” through which external and internal applications can access data or business logic implemented by your custom-built backend services, running on Azure, for example on Azure App Service or Azure Kubernetes Service, or hosted outside of Azure, in a private datacenter or on-premises. Azure API Management handles all the tasks involved in mediating API calls, including request authentication and authorization, rate limit and quota enforcement, request and response transformation, logging and tracing, and API version management.
Azure API Management helps you in:
◉ Unlocking legacy assets—APIs are used to abstract and modernize legacy backends and make them accessible from new cloud services and modern applications. APIs allow innovation without the risk, cost, and delays of migration.
◉ Create API-centric app integration—APIs are easily consumable, standards-based, and self-describing mechanisms for exposing and accessing data, applications, and processes. They simplify and reduce the cost of app integration.
◉ Enable multi-channel user experiences—APIs are frequently used to enable user experiences such as web, mobile, wearable, or Internet of Things (IoT applications. Reuse APIs to accelerate development and return on investment (ROI).
◉ Business-to-business (B2B) integration—APIs exposed to partners and customers lower the barrier to integrate business processes and exchange data between business entities. APIs eliminate the overhead inherent in point-to-point integration. Especially with self-service discovery and onboarding enabled, APIs are the primary tools for scaling B2B integration.
We are happy to announce the preview of Azure Private Link support for Azure API Management service. If you are not familiar with Azure API Management, when you deploy this service, you get three main components: Azure portal, gateway, and management plane. With Azure Private Link we can create a private endpoint for the gateway component, which will be exposed through a private IP within your virtual network. This will allow inbound traffic coming to the private IP to reach Azure API Management gateway.
Azure Private Link
With Azure Private Link, communications between your virtual network and the Azure API Management gateway travel over the Microsoft backbone network privately and securely, eliminating the need to expose the service to public internet.
Key benefits of Azure Private Link
Through this functionality we will provide the same consistent experience found in other PaaS services with private endpoints:
◉ Private access from Azure Virtual Network resources, peered networks, and on-premises networks.
◉ Built-in data exfiltration protection for Azure resources.
◉ Predictable private IP addresses for PaaS resources.
◉ Consistent and unified experience across PaaS services.
Private endpoints and public endpoints
How to decide which networking model to use with Azure API Management?
Network model |
Supported tiers | Supported components | Supported traffic |
Virtual network—external | Developer and Premium. | Azure portal, gateway, management plane, and Git repository. | Inbound and outbound traffic can be allowed to internet, peered virtual networks, Express Route, and VPN S2S connections. |
Virtual network—internal | Developer and Premium. | Developer portal, Gateway, Management Plane, and Git repository. | Inbound and outbound traffic can be allowed to peered virtual networks, Express Route, and VPN S2S connections. |
Private endpoint connection (preview) | Developer, Basic, Standard, and Premium. | Gateway only (managed gateway supported, self-hosted gateway not supported). | Only inbound traffic can be allowed to internet, peered virtual networks, Express Route, and VPN S2S connections. |
0 comments:
Post a Comment