How To

How to do content-based routing with conversion

Content-based routing with conversion for SOAP to REST in the Vordel API Server

The Vordel API Server has some really neat features which make it very easy to do content-based routing based on parameters in a SOAP message, and to use these parameters to construct a REST request. Here is an example of how this is setup. First, I register the WSDL service (a Parlay-X AmountCharging Service) in the Web Service Repository in the Vordel Policy Studio, as shown below:






How to create a WS-Security Username Token

How to create a WS-Security UsernameToken without a password

I've seen the "API Key" pattern also crop up in SOAP messages before. It's reasonably common practice to use a WS-Security block as the way to encapsulate the API Key, rather than, say, coming up with a new custom token.

First load in your SOAP message (or generate one from WSDL). Next, in the "security" menu, choose "Insert WS-Security Username":






How to convert SOAP to REST with Parameterized URLs

How to convert SOAP to REST with Parameterized URLs. SOAP-to-REST with Parameterized URLs and content-based routing using the Vordel API Server

The world is moving from SOAP to REST. Many applications continue to send old-style SOAP messages. Therefore, a very common usage of the Vordel API Server is to convert from legacy SOAP messages into REST API calls. This provides the best of both worlds: (1) Existing SOAP apps continue to work and don't have to be re-coded, and (2) going forward, REST APIs are used instead.






How to orchestrate a REST API with SOAP

How to send a message on to a queue with JMS. Sending a SOAP message onto JMS using the "SOAP over Java Message Service" proposal, or as a Text Message

Did you know that you can use Vordel SOAPbox to send a SOAP message onto a JMS message queue? You can choose to send it as a normal TextMessage, or an ObjectMessage. But you can also choose to use the "SOAP over JMS Message Service" proposal to place the message.






How to create a RESTful Security Token Service

How to send a message on to a queue with JMS. Sending a SOAP message onto JMS using the "SOAP over Java Message Service" proposal, or as a Text Message

Did you know that you can use Vordel SOAPbox to send a SOAP message onto a JMS message queue? You can choose to send it as a normal TextMessage, or an ObjectMessage. But you can also choose to use the "SOAP over JMS Message Service" proposal to place the message.






How to send a message on to a queue with JMS

How to send a message on to a queue with JMS. Sending a SOAP message onto JMS using the "SOAP over Java Message Service" proposal, or as a Text Message

Did you know that you can use Vordel SOAPbox to send a SOAP message onto a JMS message queue? You can choose to send it as a normal TextMessage, or an ObjectMessage. But you can also choose to use the "SOAP over JMS Message Service" proposal to place the message.






How to monitor Salesforce

One of my favorite Web APIs to use in demos is SalesForce.com . SalesForce has a ton of information about their API on their developer site. The Vordel API Sever can be used to connect up to SalesForce, including sending up the API Key and caching the Session Identifier which is returned back by SalesForce.

One of the neat things is that all traffic from the app to the SalesForce API is now monitored by the Vordel API Server. There are many advantages to this, which I will delve deeper into in later posts. But, one key advantage is that "rogue cloud service usage" is stamped out, since it appears on the Real-Time Monitoring of the Gateway:






How to validate a SAML 2.0 assertion

It's simple to setup the validation of a signed SAML 2.0 assertion in a Vordel XML Gateway. In a circuit, chain together (1) an "XML Signature Verification" filter (which you can find in the "Integrity" group on the right-hand-side of Policy Studio), and (2) a "SAML Authentication" filter (which you can find in the "Authentication" group).

With XML Signature Verification filter, make sure that the SAML assertion is selected under "What must be signed". In the filter to validate the SAML assertion, make sure that it's a SAML 2.0 assertion.






How to convert from REST to SOAP

The popular advantages of REST over SOAP are well known: It's easier to write a REST client, the messages are smaller, you can cache REST traffic using standard Web infrastructure. But what if you have SOAP Web Services and your clients are crying out for REST Web Services instead?

Here is how you create REST Web Services in front of SOAP services using Policy Studio and the Vordel XML Gateway...(http://www.vordel.com/products/API-Server.html)

To do this, create a policy which reads parameters from the REST URL and then inserts those parameters into a SOAP message which it creates on-the-fly.






How to run the API Server as a Windows Service

Pro tip: Running Vordel API Server analytics as a Windows service

If you've downloaded the Vordel API Server v7.1 from the Vordel website and want to configure it to run analytics as a Windows service, it's quite simple to do this. The command is:






News

Ship to API – The America’s Cup navigates in a sea of data

America’s Cup: Harnessing the wind is like harnessing APIs – Management, Delivery & Security.

The conclusion to the latest running of the epic dual on the sea that is the America's Cup is only a matter of hours away. It is good timing to remind ourselves of how this exclusive, high-octane, high-tech and massively demanding sport of brains and brawn has become engaging to the masses on the device screen of our choice from anywhere in the world.






America’s Cup: Harnessing the wind is like harnessing APIs

America’s Cup: Harnessing the wind is like harnessing APIs – Management, Delivery & Security.

The conclusion to the latest running of the epic dual on the sea that is the America's Cup is only a matter of hours away. It is good timing to remind ourselves of how this exclusive, high-octane, high-tech and massively demanding sport of brains and brawn has become engaging to the masses on the device screen of our choice from anywhere in the world.






Convergence of API and SOA Governance Gets Underway

Convergence of API and SOA Governance Gets Underway

Within most enterprise IT organizations there is a tension between classic approaches to middleware based on software-oriented architectures (SOA) and approaches based on APIs that are easier to build and deploy but potentially more difficult to manage.

But Axway CTO Mark O’Neill says in reality the way APIs will be used in the enterprise will be as a layer of services that will make systems based on SOA more accessible to, for example, mobile computing applications.






Axway Named a Leader in Gartner Application Services Governance Magic Quadrant

Axway Named a Leader in Gartner Application Services Governance Magic Quadrant

Axway (NYSE Euronext: AXW.PA), a market leader in governing the flow of data, today announced it is positioned as a Leader in Gartner’s 2013 Magic Quadrant for Application Services Governance (1). This report comes off the heels of Axway also being named a Leader in Gartner’s 2013 Magic Quadrant for On-premises Application Integration Suites (2).






Pedalling the Connection: Data, Devices and APIs in Le Tour de France

Pedalling the Connection: Data, Devices and APIs in Le Tour de France

198 riders from 22 teams set off on June 29th, 2013 to race in the 100thanniversary of LeTour de France — an annual multiple stage bicycle race primarily held in France. Today, professional cycling is arguably the most technology addicted of all sports, with cyclists frequently using technology to achieve improved performance. Similar to other sectors, API Management is now at the heart of the latest technology advances in this field.






Webinar

APIs – A Key Part of Your Enterprise Engagement Strategy
Join Forrester VP and principal analyst Jeffrey Hammond and Mark O’Neill from Vordel for a discussion of how enterprise are turning APIs into corporate platforms, and why API management is a crucial part of what it takes to be successful.

The IAM-As-An-API Era: You Must Become A Cloud Identity Services Provider
Federated single sign-on has invaded the social networking world, with the “social sign-in” pattern demonstrating powerful new ways of sourcing identity data

OAuth Enterprise Patterns
In this webinar, API and security experts from Vordel and aurionPro SENA will discuss enterprise deployment patterns for OAuth.
OAuth has become the de-facto standard for securing Cloud and mobile APIs, yet most of the published OAuth use cases relate to social media and consumer centric scenarios. Implementing OAuth for B2B use cases is by no means a straight forward exercise and very little has been documented about how to use OAuth with legacy security protocols or indeed existing enterprise IT infrastructures. For more on OAuth from Vordel see http://resources.vordel.com/index.php/tag/oauth/


Securely Exchange Sensitive Healthcare Information In A Cloud & Mobile World
Healthcare IT professionals are presented with new challenges and opportunities as they seek to leverage Cloud and Mobile technologies to enable doctors and patients access medical files via multiple devices from multiple locations.

Secure REST APIs Using Oracle Access Manager Or CA Siteminder
Learn how to manage API Delivery and Security with Rajesh Mittal, VP Technologies, Amerindia and Wayne Delisser, Solution Architect, Vordel

Webinar: Architecting Your Delivery Platform for the API Economy
As enterprise architects meet the growing tide of API demand, where to now for the SOA infrastructures they have invested in over the past 5 years? This webinar outlines how to leverage SOA Application Gateways to efficiently manage APIs and deliver on the enterprise's API strategy goals.

Webinar: The Expanding Role of Gateways in A Modern IT Architecture
In this webinar, Forrester Analyst Randy Heffner discusses the expanding usage of gateway technology and how it can be used to deploy Enterprise Applications Beyond The Network Perimeter; Consume Cloud Services Without Losing Control or Compromising Security and to Secure All Application Connections Using Enterprise Security Infrastructure

Webinar: Bridging Security from The Enterprise to The Cloud
Webinar on how to extend enterprise security platforms to protect Cloud based resources. Cloud computing presents significant value to organizations. However, the downside is that few organizations wish to trust third-parties with their corporate data. To address this, Vordel enables organizations Bridging Security from the enterprise to the Cloud safely without undermining their underlying corporate security policies.

Webinar: Sicherheit bei der Verwendung von Webservices
Webinar: Es werden die wichtigsten Security Maßnahmen beim Einsatz von Webservice an einem Beispiel aus der Praxis, der „Deutsche Bausparkasse Badenia AG “, gezeigt.

Webinar: Using REST to Connect to iPhone Apps and Facebook, Blackhawk Case Study
A webinar case study of how Safeway subsidiary, Blackhawk Network secures REST services for its iPhone app and Facebook store