KR20170062244A - Api managing apparatus - Google Patents
Api managing apparatus Download PDFInfo
- Publication number
- KR20170062244A KR20170062244A KR1020150167817A KR20150167817A KR20170062244A KR 20170062244 A KR20170062244 A KR 20170062244A KR 1020150167817 A KR1020150167817 A KR 1020150167817A KR 20150167817 A KR20150167817 A KR 20150167817A KR 20170062244 A KR20170062244 A KR 20170062244A
- Authority
- KR
- South Korea
- Prior art keywords
- api
- service
- module
- request
- cache
- Prior art date
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/50—Network service management, e.g. ensuring proper service fulfilment according to agreements
- H04L41/5041—Network service management, e.g. ensuring proper service fulfilment according to agreements characterised by the time relationship between creation and deployment of a service
- H04L41/5054—Automatic deployment of services triggered by the service manager, e.g. service implementation by automatic configuration of network components
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/28—Restricting access to network management systems or functions, e.g. using authorisation function to access network configuration
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/50—Network service management, e.g. ensuring proper service fulfilment according to agreements
- H04L41/5003—Managing SLA; Interaction between SLA and QoS
- H04L41/5019—Ensuring fulfilment of SLA
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/50—Network service management, e.g. ensuring proper service fulfilment according to agreements
- H04L41/5041—Network service management, e.g. ensuring proper service fulfilment according to agreements characterised by the time relationship between creation and deployment of a service
- H04L41/5051—Service on demand, e.g. definition and deployment of services in real time
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
- H04L67/1095—Replication or mirroring of data, e.g. scheduling or transport for data synchronisation between network nodes
-
- H04L67/2842—
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The API management apparatus includes at least one API gateway module including a local cache for receiving requests of an API (Application Programming Interface) service from a user and storing API service environment information for determining suitability of the API service, A manager portal module for managing and controlling information about the API asset, and a source cache for synchronizing the local cache, the API asset including an API asset generated by an API asset provider, And an API integrated management module for updating the API. Accordingly, the API management apparatus can provide functions for facilitating management by making REST APIs for contents and services, and for facilitating API development.
Description
The present invention relates to a computer-executable API management method and an API management apparatus, and more particularly, to a method and apparatus for quickly designing a new API from existing business assets or cloud services, And an API management apparatus and an API management method capable of performing efficient API management by performing analysis and measurement functions.
In recent years, with the development of mobile applications and SNS, interest in Open API has increased rapidly. The Open API is a model that allows an external developer to create a new service using an API by releasing the API to not only internal users but also external developers. In recent years, even APIs have been developed and serviced professionally to create business models that generate profits. In this context, the importance of API management has emerged, and there is a need for easy management, monitoring and monetization of APIs, convenient use of APIs, and sample code and manual scenarios. Is called the API platform.
Korean Patent No. 10-1528853 relates to a public API service, which includes generating metadata for executing an API, generating resource data for generating a mashup of an API, Creating mashup content from various types of APIs by creating API data including API, metadata, resource data, and description data by generating technical data for resource data The present invention provides
One embodiment of the present invention is to provide a computer executable API management method and an API management apparatus that facilitate management by making REST APIs for contents and services and facilitate API development.
An embodiment of the present invention is to provide a computer-executable API management method and an API management apparatus capable of stably processing and controlling large-volume traffic by managing traffic of an API.
An embodiment of the present invention is to provide a computer-executable API management method and an API management apparatus capable of minimizing a delay time due to API distribution processing and API processing by applying various caching based on a distributed environment.
Among the embodiments, the API management apparatus distributes API (Application Programming Interface) service requests from users in a distributed manner, and each API At least one API gateway module including a local cache for storing service environment information, a manager portal module for managing and controlling information about the API asset, the API portal module including an API asset generated by an API asset provider, And an API integrated management module that includes a source cache for synchronizing and continuously updates the suitability of the API service.
In one embodiment, each of the at least one API gateway modules may detect the presence or absence of the updated content in the corresponding local cache and maintain consistency between the corresponding local cache and the original cache when the updated content is received from the source cache .
Each of the at least one API gateway module may notify the original cache of the necessity of the update when the corresponding local cache is to be updated according to a request of the API service.
In one embodiment, each of the at least one API gateway module may temporarily limit the API service by throttling a request for the API service based on a temporal service constraint.
Each of the at least one API gateway module may re-throttle the request of the API service based on a service level protocol condition preset between the API asset provider and the user to re-determine whether to provide the API service.
Each of the at least one API gateway module may determine accessibility to the API asset through authentication and authorization of the user.
Each of the at least one API gateway module may provide an arbitration function through message conversion between the API service request message format of the user and the API asset message format of the administrator portal module.
The API integrated management module may distribute the request of the API service through each of the at least one API gateway module to minimize the delay time according to the request processing of the API service.
The API integrated management module may count the API service requests in real time based on the service level protocol condition and cause each of the at least one API gateway module to perform throttling related to the request of the API service in real time .
The API integrated management module collects information on the API service request and the API service from each of the at least one API gateway module, and performs distributed parallel processing and analysis to provide statistical information.
The disclosed technique may have the following effects. It is to be understood, however, that the scope of the disclosed technology is not to be construed as limited thereby, as it is not meant to imply that a particular embodiment should include all of the following effects or only the following effects.
The computer-executable API management method and the API management apparatus according to an embodiment of the present invention can provide functions to facilitate management by making REST APIs for contents and services, and to facilitate API development.
A computer-executable API management method and an API management apparatus according to an embodiment of the present invention can manage API traffic and stably process and control large-capacity traffic.
The computer-executable API management method and the API management apparatus according to an embodiment of the present invention can minimize delay time due to API distribution processing and API processing by applying various caching based on a distributed environment.
1 is a block diagram illustrating a conceptual structure of an API management apparatus according to an embodiment of the present invention.
2 is a block diagram illustrating a structure of an API management apparatus including an API integrated management module according to an embodiment of the present invention.
3 is a block diagram illustrating the configuration of the API gateway module shown in FIG.
4 is a flowchart illustrating the overall operation of the API gateway module shown in FIG.
5 is a view for explaining a method of verifying the validity of a user's API service request by the validity verification unit shown in FIG.
FIG. 6 is a diagram for explaining a method of controlling overflow and controlling traffic by controlling API calls of the throttling unit shown in FIG. 3. FIG.
FIG. 7 is a diagram for explaining a method for the authentication unit in FIG. 3 to process user authentication and grant an API authority.
8 is a diagram illustrating an additional method used for security enhancement management for the administrator portal module access in FIG.
9 is a view for explaining that the OAuth authentication unit in FIG. 1 provides a standardized authentication method.
FIG. 10 is a diagram for explaining that the arbitration unit in FIG. 3 converts and provides an API service request message format and an API asset message format.
FIG. 11 is a diagram for explaining that the cache management unit in FIG. 2 distributes APIs based on a distributed environment.
FIG. 12 is a view for explaining that the analysis measurement management unit in FIG. 2 provides statistical information through log information collected in an API gateway module.
13 is a diagram for explaining a process in which the response data management unit in FIG. 2 returns the response data to the API gateway module.
The description of the present invention is merely an example for structural or functional explanation, and the scope of the present invention should not be construed as being limited by the embodiments described in the text. That is, the embodiments are to be construed as being variously embodied and having various forms, so that the scope of the present invention should be understood to include equivalents capable of realizing technical ideas. Also, the purpose or effect of the present invention should not be construed as limiting the scope of the present invention, since it does not mean that a specific embodiment should include all or only such effect.
Meanwhile, the meaning of the terms described in the present application should be understood as follows.
The terms "first "," second ", and the like are intended to distinguish one element from another, and the scope of the right should not be limited by these terms. For example, the first component may be referred to as a second component, and similarly, the second component may also be referred to as a first component.
It is to be understood that when an element is referred to as being "connected" to another element, it may be directly connected to the other element, but there may be other elements in between. On the other hand, when an element is referred to as being "directly connected" to another element, it should be understood that there are no other elements in between. On the other hand, other expressions that describe the relationship between components, such as "between" and "between" or "neighboring to" and "directly adjacent to" should be interpreted as well.
It is to be understood that the singular " include " or "have" are to be construed as including the stated feature, number, step, operation, It is to be understood that the combination is intended to specify that it does not preclude the presence or addition of one or more other features, integers, steps, operations, elements, components, or combinations thereof.
In each step, the identification code (e.g., a, b, c, etc.) is used for convenience of explanation, the identification code does not describe the order of each step, Unless otherwise stated, it may occur differently from the stated order. That is, each step may occur in the same order as described, may be performed substantially concurrently, or may be performed in reverse order.
The present invention can be embodied as computer-readable code on a computer-readable recording medium, and the computer-readable recording medium includes all kinds of recording devices for storing data that can be read by a computer system . Examples of the computer-readable recording medium include a ROM, a RAM, a CD-ROM, a magnetic tape, a floppy disk, an optical data storage device, and the like, and also implemented in the form of a carrier wave (for example, transmission over the Internet) . In addition, the computer-readable recording medium may be distributed over network-connected computer systems so that computer readable codes can be stored and executed in a distributed manner.
All terms used herein have the same meaning as commonly understood by one of ordinary skill in the art to which this invention belongs, unless otherwise defined. Commonly used predefined terms should be interpreted to be consistent with the meanings in the context of the related art and can not be interpreted as having ideal or overly formal meaning unless explicitly defined in the present application.
1 is a structural diagram illustrating a conceptual structure of an
Referring to FIG. 1, the
The
The
In addition, the
The
The
The
2 is a structural diagram illustrating the structure of an
Referring to FIG. 2, the
That is, the
The
In addition, the
2 includes an
The
The real-time
The analysis
The statistical analysis module 710 may collect log information from the
The abnormal transaction analysis module 720 can collect log information from the
The
The response
The response
The
3 is a block diagram illustrating the configuration of the
Referring to FIG. 3, the
In one embodiment, each of the at least one
The
The authentication /
The
Also, the
The
The
4 is a flowchart illustrating the overall operation of the
Referring to FIG. 4, the
5 is a diagram for explaining a method for the
Referring to FIG. 5, the
FIG. 6 is a diagram illustrating a method of controlling an API call to prevent overload and to control traffic by the
Referring to FIG. 6, the
7 is a diagram illustrating a method in which the authentication /
Referring to FIG. 7, the authentication /
The
The
Figure 8 is a diagram illustrating an additional method used for enhancing security for the asset or service access in Figure 3;
8, the
9 is a view for explaining that the
Referring to FIG. 9, the
When the
FIG. 10 is a diagram for explaining that the
Referring to FIG. 10, the
The
The message converting unit 252 can convert the message format using the mapping rule stored in the
The
FIG. 11 is a view for explaining that the
11A, the
Each of the plurality of
11B is a diagram illustrating that the
FIG. 12 is a diagram for explaining that the analysis
Referring to FIG. 12, the analysis
13 is a diagram for explaining a process in which the response data management unit in FIG. 2 returns the response data to the API gateway module.
The
It will be apparent to those skilled in the art that various modifications and variations can be made in the present invention without departing from the spirit and scope of the present invention as defined by the following claims It can be understood that
10: API management device 20: API support module
100: Developer Portal Module 200: API Gateway Module
210: validity verification unit 220: authentication /
230: Throttling part 240: Logging part
250: arbitration unit 300: manager portal module
400: OAuth authentication unit 500: cache management unit
510: internal interface module
520: cache management module 530: source cache
600: real-time count management unit
610: cache counter module 620: count management module
630: source cache 700: analysis measurement management module
710: statistical analysis module 710 720: abnormal transaction analysis module 720
730:
810: Response Cache Management Module 820: Source Cache
Claims (10)
A manager portal module that includes API assets generated by an API asset provider and manages and controls information about the API assets; And
And an API integrated management module that includes a source cache for synchronizing the local cache, and continuously updates the suitability of the API service.
And when the updated content is received from the source cache, the presence or absence of the updated content is detected in the local cache, and the correspondence between the corresponding local cache and the source cache is maintained.
And notifies the source cache of the necessity of the update if the corresponding local cache needs to be updated according to a request of the API service.
And temporarily limits the API service by throttling a request of the API service based on a temporal service constraint condition.
And re-throttling a request of the API service based on a service level protocol condition preset between the API asset provider and the user to re-determine whether to provide the API service.
And determines the accessibility of the API asset through authentication and authorization of the user.
And provides an arbitration function through message conversion between the API service request message format of the user and the API asset message format.
Wherein the API management module distributes a request for the API service through each of the at least one API gateway module to minimize the delay time according to the request processing of the API service.
Wherein the at least one API gateway module causes real-time counting of the API service request based on the service level protocol condition, and causes each of the at least one API gateway module to perform throttling related to a request for the API service in real time.
Wherein the API management module collects information on the API service request and API service from each of the at least one API gateway module and performs distributed parallel processing and analysis to provide statistical information.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020150167817A KR20170062244A (en) | 2015-11-27 | 2015-11-27 | Api managing apparatus |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020150167817A KR20170062244A (en) | 2015-11-27 | 2015-11-27 | Api managing apparatus |
Publications (1)
Publication Number | Publication Date |
---|---|
KR20170062244A true KR20170062244A (en) | 2017-06-07 |
Family
ID=59223661
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR1020150167817A KR20170062244A (en) | 2015-11-27 | 2015-11-27 | Api managing apparatus |
Country Status (1)
Country | Link |
---|---|
KR (1) | KR20170062244A (en) |
Cited By (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20190100847A (en) * | 2018-02-08 | 2019-08-29 | 주식회사 포스코아이씨티 | Smart Factory System Based on Application Programming Interface |
WO2021215864A1 (en) * | 2020-04-23 | 2021-10-28 | 주식회사 모비젠 | Api gateway accelerator system and method |
KR102407334B1 (en) * | 2021-12-24 | 2022-06-10 | 이데아텍(주) | Gateway apparatus and operating method thereof |
KR102483315B1 (en) * | 2022-10-07 | 2023-01-02 | 이데아텍(주) | Gateway device supporting API distributed processing and operation method thereof |
KR102483313B1 (en) * | 2022-10-07 | 2023-01-02 | 이데아텍(주) | Service providing system and method supporting batch processing for API service |
KR102483310B1 (en) * | 2022-10-07 | 2023-01-02 | 이데아텍(주) | Gateway device for API integration processing and operation method thereof |
KR20230038882A (en) * | 2021-09-13 | 2023-03-21 | 주식회사 위버스컴퍼니 | Method and system for controlling traffic inbound to application programming interface server |
-
2015
- 2015-11-27 KR KR1020150167817A patent/KR20170062244A/en not_active Application Discontinuation
Cited By (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20190100847A (en) * | 2018-02-08 | 2019-08-29 | 주식회사 포스코아이씨티 | Smart Factory System Based on Application Programming Interface |
WO2021215864A1 (en) * | 2020-04-23 | 2021-10-28 | 주식회사 모비젠 | Api gateway accelerator system and method |
KR20230038882A (en) * | 2021-09-13 | 2023-03-21 | 주식회사 위버스컴퍼니 | Method and system for controlling traffic inbound to application programming interface server |
KR102407334B1 (en) * | 2021-12-24 | 2022-06-10 | 이데아텍(주) | Gateway apparatus and operating method thereof |
KR102483315B1 (en) * | 2022-10-07 | 2023-01-02 | 이데아텍(주) | Gateway device supporting API distributed processing and operation method thereof |
KR102483313B1 (en) * | 2022-10-07 | 2023-01-02 | 이데아텍(주) | Service providing system and method supporting batch processing for API service |
KR102483310B1 (en) * | 2022-10-07 | 2023-01-02 | 이데아텍(주) | Gateway device for API integration processing and operation method thereof |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
KR20170062244A (en) | Api managing apparatus | |
CN111488595B (en) | Method for realizing authority control and related equipment | |
US11741244B2 (en) | Partial policy evaluation | |
US9313604B1 (en) | Network service request throttling system | |
US8898731B2 (en) | Association of service policies based on the application of message content filters | |
JP5961638B2 (en) | System and method for application certification | |
US20130019018A1 (en) | Optimized service integration | |
KR101588932B1 (en) | Security through metadata orchestrators | |
KR101653685B1 (en) | Computer-excutable method for managing api | |
JP2016514311A (en) | Database system providing single tenant and multi-tenant environments | |
CN103716326A (en) | Resource access method and URG | |
CN110839087B (en) | Interface calling method and device, electronic equipment and computer readable storage medium | |
WO2005114488A2 (en) | System and method for actively managing service-oriented architecture | |
JP6539341B2 (en) | Providing router information according to the programmatic interface | |
US20170187705A1 (en) | Method of controlling access to business cloud service | |
US9106516B1 (en) | Routing and analyzing business-to-business service requests | |
US20080301053A1 (en) | Service broker | |
US11032392B1 (en) | Including prior request performance information in requests to schedule subsequent request performance | |
Salhofer | Evaluating the FIWARE platform | |
Liu et al. | DACAS: integration of attribute-based access control for northbound interface security in SDN | |
Grunwald | The Internet ecosystem: The potential for discrimination | |
WO2014011376A1 (en) | Optimized service integration | |
Marino et al. | Enabling Compute and Data Sovereignty with Infrastructure-Level Data Spaces | |
US8839400B2 (en) | Managing and controlling administrator access to managed computer systems | |
US20220414039A1 (en) | Event-level granular control in an event bus using event-level policies |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
A201 | Request for examination | ||
E902 | Notification of reason for refusal | ||
E601 | Decision to refuse application |