Sunday Jun 05, 2016

API Management Implementation Case Study by Bob Rhubart

imageRead this complete sample chapter from the book Oracle API Management 12c Implementation, written by Oracle ACE Director Luis Weir, Oracle ACE Rolando Carraso, Oracle ACE Associate Arturo Viveros, and Andrew Bell. OAPI_Mgmt_Implement_Case_Study.pdf (1.3 MB)

SOA & BPM Partner Community

For regular information on Oracle SOA Suite become a member in the SOA & BPM Partner Community for registration please visit www.oracle.com/goto/emea/soa (OPN account required) If you need support with your account please contact the Oracle Partner Business Center.

Blog Twitter LinkedIn image[7][2][2][2] Facebook clip_image002[8][4][2][2][2] Wiki

Saturday Nov 07, 2015

Yes, Oracle API Gateway Can Protect Your Web Application, Too by Marcelo Parisi

clip_image001This article by Marcelo Parisi examines basic concepts of web application security using Oracle API Gateway, using an XSS Injection issue and an SQL Injection issue to demonstrate how Oracle API Gateway can bring value to these scenarios.

The topic of Web application security never gets old. Some of the main associated challenges are related to detection and prevention of XSS Injection and SQL Injection. Such vulnerabilities are usually exploited through web application url parameters or user input fields in HTML forms.

While Oracle API Gateway has been used mainly to protect Web Services, RESTFul APIs and other kinds of services, its filtering and hardening mechanisms make it a powerful tool in a web application protection scenario.

In this article we’ll examine some basic concepts of web application security using Oracle API Gateway. We’ll work on an XSS Injection issue and on a SQL Injection issue to demonstrate how Oracle API Gateway can bring value to these scenarios.

The applications used here to demonstrate the issues were custom made for this article and are deployed in an Oracle WebLogic Server 12c environment with no clustering. The SQL Injection demonstration application uses a datasource connected to an Oracle Database 11gR2. The application reads data from the database’s simple three-column table and prints in the screen. The XSS Injection application prints only the user form input field value in the screen. These applications have no real-life use and are only some code samples for demonstration purposes.

We’ll not be covering infrastructure installation in this article. We’ll be using two servers, one with Oracle API Gateway installed on it, and the other one with the application running on Oracle WebLogic Server 12c.

Infrastructure

As mentioned before, building the infrastructure is out of this document’s scope. In this section we’ll just see what the infrastructure used to demonstrate the concepts looks like. Read the complete article here.

SOA & BPM Partner Community

For regular information on Oracle SOA Suite become a member in the SOA & BPM Partner Community for registration please visit www.oracle.com/goto/emea/soa (OPN account required) If you need support with your account please contact the Oracle Partner Business Center.

Blog Twitter LinkedIn image[7][2][2][2] Facebook clip_image002[8][4][2][2][2] Wiki

Friday Nov 06, 2015

API Manager – OSB/OAC/OAG Integration Demo by Sharath Kumar

clip_image002Oracle API Manager is a new product which is built on the proven service virtualization capabilities of Oracle Service Bus to provide Creation, annotation and publication of APIs in the Oracle Service Bus console and Discovery, subscription and usage monitoring of APIs by developers in a new API Portal.

The demo image size is compressed: 23 GB and uncompressed: 42 GB please let myself know if you want to download the files are contact a local middleware pre-sales expert.

SOA & BPM Partner Community

For regular information on Oracle SOA Suite become a member in the SOA & BPM Partner Community for registration please visit www.oracle.com/goto/emea/soa (OPN account required) If you need support with your account please contact the Oracle Partner Business Center.

Blog Twitter LinkedIn image[7][2][2][2] Facebook clip_image002[8][4][2][2][2] Wiki

Tuesday Sep 29, 2015

SOA Cloud Service and API Manager Cloud Service get all details in today’s webcast

SOA Cloud Service and API Manager Cloud Service are available! Attend our community webcast at 16:00 CET to get all the details from Yogesh. imageYogesh Sontakke is a Princip al Product Manager at Oracle Corporation in the PaaS and Fusion Middleware group, leading Oracle’s Integration portfolio –  Integration Cloud Service, SOA Suite, API Management, Stream Explorer and MFT – in the Europe, Middle East & Africa (EMEA) region. Prior to joining the Integration Product Management team, Yogesh worked in various roles in Development, Post-Sales and Pre-Sales where he gained his experience architecting, developing, integrating and enabling technology as a key driver to businesses. Yogesh is based in the UK, and tweets at @yogesh_sontakke.

Attend our September edition of the SOA & BPM Partner Community Webcast live on September 29th 2015 16:00 CET.

Visit the registration page here.

Call ID: 5566478 Call Passcode: 333111

Austria: +43 (0) 192 865 12
Belgium: +32 (0) 240 105 28
Denmark: +45 327 292 22
Finland: +358 (0) 923 193 923
France: +33 (0) 15760 2222
Germany: +49 (0) 692 222 161 06
Ireland: +353 (0) 124 756 50
Italy: +39 (0) 236 008 198
Netherlands: +31 (0) 207 143 543
Spain: +34 914 143 755
Sweden: +46 (0) 856 619 465
Switzerland: +41 (0) 445 804 003
UK: +44 (0) 208 118 1001
United States: 140 877 440 73
More Local Numbers


If you have difficulty logging in using the above link please go to: http://ouweb.webex.com/meetingcenter and join with session id: 597994333

Missed our SOA & BPM Partner Community Webcast? – watch the August edition here, July edition here, June edition here and May edition here . For the latest information please visit Community Updates Wiki page (SOA Community membership required).

SOA & BPM Partner Community

For regular information on Oracle SOA Suite become a member in the SOA & BPM Partner Community for registration please visit www.oracle.com/goto/emea/soa (OPN account required) If you need support with your account please contact the Oracle Partner Business Center.

Blog Twitter LinkedIn image[7][2][2][2] Facebook clip_image002[8][4][2][2][2] Wiki

Tuesday Sep 22, 2015

Unleash the power of Java API’s on your WLST scripts! By Maarten Smeets

clip_image001Oracle SOA Suite and many other Oracle products have extensive Java API’s to expose their functionality. WLST can often be used for relatively course grained actions. WLST (the version supplied in Weblogic 12.1.3) uses Jython 2.2.1. Jython is the Python scripting language implemented on the Java Virtual Machine. Jython allows easy integration with Java. In this article I describe how you can unleash the power of these Java API’s on your WLST scripts!
Considerations

Why WLST and not Java?

For system operators, WLST is easier to work with than Java code. For Java code you need to supply all dependencies in the classpath and updating code requires recompilation. Also Java code can be a bit verbose compared to WLST code and requires (for most developers) more time to write. With a WLST script you do not need to provide dependencies since they are already present in the classpath set by the wlst.sh (of wlst.cmd) command used to start WLST scripts and you can more easily update the scripts without need for recompilation.

Why use Java classes in WLST?

In this example I wanted to create a script which undeployed composites which where not the default revision (are not called by default). Also I wanted to look at the instances. I did not want to undeploy composites which had running instances (long running instances like BPM and ACM). WLST provides some nifty features to undeploy composites; https://docs.oracle.com/middleware/1213/soasuite/wlst-reference-soa/custom_soa.htm#SOACR2689 for example the sca_undeployComposite command. I did however not see WLST commands I could use to query instances.

Undeploying composites using Java

I started out with a piece of Java code shown below. In order to make the required classes available in your project, you need to import Weblogic Remote Client, JRF API and SOA Runtime (see here for a more elaborate example of using the Java API). With the Locator class you can find your composites and instances. By calling the MBean oracle.soa.config:Application=soa-infra,j2eeType=CompositeLifecycleConfig,name=soa-infra method removeCompositeForLabel you can undeploy composites from Java. This is based on what I found at Read the complete article here.

SOA & BPM Partner Community

For regular information on Oracle SOA Suite become a member in the SOA & BPM Partner Community for registration please visit www.oracle.com/goto/emea/soa (OPN account required) If you need support with your account please contact the Oracle Partner Business Center.

Blog Twitter LinkedIn image[7][2][2][2] Facebook clip_image002[8][4][2][2][2] Wiki

Monday Sep 21, 2015

SOA Cloud Service update September 29th 2015 16:00 CET

image This month we invite Yogesh Sontakke, Oracle Integration Product Manager to share with us two of Oracle's exciting upcoming Cloud Services in the Oracle Integration portfolio.

Oracle SOA Cloud Service, a comprehensive service in the cloud with the core SOA Suite including Service Bus, BPEL and more, with flexible deployment options and lift-and-shift capabilities with existing SOA Suite environments. Together with the recently released and already popular Integration Cloud Service, this new Cloud offering enriches Oracle's Hybrid Integration capabilities to a new level providing business speed, agility and flexibility leveraging Cloud and on-premise like never before.

Oracle API Manager Cloud Service, the API platform for innovation and speed in the Digital business. With this new Cloud Service, businesses can get API visibility in the Cloud, protection for their backend services and the ability to expose and manage their on-prem as well as Cloud APIs. Running on a robust, well-proven platform with low maintenance and all benefits of the Cloud, the API Manager Cloud Service brings API Management to the Cloud for businesses, developers and IT operations.

Make sure you are signed up and tuned in to hear the latest and to be prepared ahead of the rest for these two very important Oracle Cloud Integration Services!

Yogesh Sontakke is a Principal Product Manager at Oracle Corporation in the PaaS and Fusion Middleware group, leading Oracle’s Integration portfolio -  Integration Cloud Service, SOA Suite, API Management, Stream Explorer and MFT - in the Europe, Middle East & Africa (EMEA) region. Prior to joining the Integration Product Management team, Yogesh worked in various roles in Development, Post-Sales and Pre-Sales where he gained his experience architecting, developing, integrating and enabling technology as a key driver to businesses. Yogesh is based in the UK, and tweets at @yogesh_sontakke.

Attend our September edition of the SOA & BPM Partner Community Webcast live on September 29th 2015 16:00 CET.

Visit the registration page here.

Call ID: 5566478 Call Passcode: 333111

Austria: +43 (0) 192 865 12
Belgium: +32 (0) 240 105 28
Denmark: +45 327 292 22
Finland: +358 (0) 923 193 923
France: +33 (0) 15760 2222
Germany: +49 (0) 692 222 161 06
Ireland: +353 (0) 124 756 50
Italy: +39 (0) 236 008 198

Netherlands: +31 (0) 207 143 543
Spain: +34 914 143 755
Sweden: +46 (0) 856 619 465
Switzerland: +41 (0) 445 804 003
UK: +44 (0) 208 118 1001
United States: 140 877 440 73
More Local Numbers

If you have difficulty logging in using the above link please go to: http://ouweb.webex.com/meetingcenter and join with session id: 597994333

Missed our SOA & BPM Partner Community Webcast? – watch the August edition here, July edition here, June edition here and May edition here . For the latest information please visit Community Updates Wiki page (SOA Community membership required).


SOA & BPM Partner Community

For regular information on Oracle SOA Suite become a member in the SOA & BPM Partner Community for registration please visit www.oracle.com/goto/emea/soa (OPN account required) If you need support with your account please contact the Oracle Partner Business Center.

Blog Twitter LinkedIn image[7][2][2][2] Facebook clip_image002[8][4][2][2][2] Wiki

Sunday Aug 09, 2015

API Gateway (OAG) : Concept & marriage with SOA & Mobile by Sudipto Desmukh

clip_image002

Oracle API Gateway is a standards-based, policy-driven, standalone software security solution that provides first line of defense in Service-Oriented Architecture (SOA) environments.

It enables organizations to securely and rapidly adopt Cloud, Mobile and SOA Services by bridging the gaps and managing the interactions between all relevant systems.

Oracle Web Services Manager(OWSM) is generally used for application security of a particular service,most customers have any use cases around DMZ or Perimeter Security for Web Services. This product serves as a part of the enterprise security solution.

This would be typically for customers needing access to web services from the internet, similar to how we access a web application. OAG can do a  lot of validations
and route the requests only once those checks have passed. This may also be a typical use case for Mobile Applications which use REST Web Services at the backend.

I have seen a strong value in this security product for all SOA and Mobile projects.

Here’s a high-level request flow :

There are many advantages that OAG can provide :

–   Authentication, Authorization (Leverages existing LDAP like AD ; existing IDM platforms for this – RSA AM, CA Site Minder, Oracle Access Mgr) Read the complete article here.

SOA & BPM Partner Community

For regular information on Oracle SOA Suite become a member in the SOA & BPM Partner Community for registration please visit www.oracle.com/goto/emea/soa (OPN account required) If you need support with your account please contact the Oracle Partner Business Center.

Blog Twitter LinkedIn image[7][2][2][2] Facebook clip_image002[8][4][2][2][2] Wiki

Saturday Aug 08, 2015

APIs Take Center Stage in Digital Business webcast on-demand

clip_image002More and more organizations today are transforming their IT organizations to run as digital businesses: developing digital experiences for their customers, better integrating systems across Mobile and Cloud, and connecting their customers in new innovative ways.
At the atomic level of every Digital Business architecture is one thing: APIs. APIs can make organizations more responsive, more agile and more connected to the needs of their customers.
But what does it take to manage APIs in your organization? How can they be secured to reduce risk? What are the strategies for developing and discovering new APIs?
Attend this webcast and learn:

  • Oracle’s new product strategy for API Management including new products like Oracle API Manager, Oracle API Catalog.
  • How to streamline publication, discovery and subscription of key enterprise APIs and provides run-time metrics on API performance.
  • Best practices of API Management with real-world case studies.

Register for the webcast here.

SOA & BPM Partner Community

For regular information on Oracle SOA Suite become a member in the SOA & BPM Partner Community for registration please visit www.oracle.com/goto/emea/soa (OPN account required) If you need support with your account please contact the Oracle Partner Business Center.

Blog Twitter LinkedIn image[7][2][2][2] Facebook clip_image002[8][4][2][2][2] Wiki

Friday Aug 07, 2015

Podcast Show Notes: API Management Roundtable by OTN

clip_image001The topic of API Management is getting hotter by the minute. In this four-part OTN ArchBeat Podcast four experts discuss what’s behind the increased interest, and offer some suggestions on how you can make API Management… well, manageable. Listen to the podcast here.

Additional Resources
Relevant Products
Be a Guest Producer for an ArchBeat Podcast

Yes, you can be a guest producer for an OTN ArchBeat podcast! It's easy! You pick the topic and the panelists. I do the rest. Click here for more information.

SOA & BPM Partner Community

For regular information on Oracle SOA Suite become a member in the SOA & BPM Partner Community for registration please visit www.oracle.com/goto/emea/soa (OPN account required) If you need support with your account please contact the Oracle Partner Business Center.

Blog Twitter LinkedIn image[7][2][2][2] Facebook clip_image002[8][4][2][2][2] Wiki

API Manager Demo

clip_image002At the SOA Community Workspace (SOA Community membership required) we posted API Manager Demo.pptx presentation. Additional the API Manager Documentation and Certification became available.

For more information visit the API tag here

SOA & BPM Partner Community

For regular information on Oracle SOA Suite become a member in the SOA & BPM Partner Community for registration please visit www.oracle.com/goto/emea/soa (OPN account required) If you need support with your account please contact the Oracle Partner Business Center.

Blog Twitter LinkedIn image[7][2][2][2] Facebook clip_image002[8][4][2][2][2] Wiki

About





Search

Archives
« June 2016
SunMonTueWedThuFriSat
   
27
28
29
30
  
       
Today