Layer 7 API Portal

Onboard & Manage your Web, Mobile & Cloud API Developers

Enterprises are building out their APIs with the goal of letting third party developers and partners leverage their content and functionality to create new services. But just because you build it doesn’t mean they’ll come. Enterprises require a way to attract, on-board and manage third party developers and partners.

The Layer 7 API Portal is pre-integrated with Layer 7’s API Proxy (as well as the SOA Gateway and CloudSpan Gateways), delivering a secure, on-premise, turnkey solution that can help you rapidly onboard developers and ensure they can quickly start coding against your APIs via self-registration capabilities, automated generation of API keys, and multiple API discovery channels.

For API publishers, the Layer 7 API Portal offers a complete API publishing platform out-of-the-box, allowing enterprises to get to market quickly and cost-effectively. Business rules created on the API Portal to help manage and monetize your APIs are programmatically enforced by the Layer 7 Gateway, ensuring APIs remain available, protected from threats and secured against unauthorized access.

The Layer 7 API Portal can also be deployed within the enterprise to manage internal APIs and developers. By using the API Portal to centralize communications to all API owners, developers and other stakeholders, as well as create a centralized repository of API documentation, technical references, user guides and other information, organizations can understand who’s using which internally-facing APIs, and how they’re using them (i.e., what applications are being built against which APIs). Enterprises can also benefit by being able to easily track and understand which APIs are getting the most use within the organization, providing key input to future API investments.

 

The SecureSpan API Portal is available as a white label Web-based portal that can be deployed on premise. Elements of the API Portal can also be incorporated as widgets into pre-existing enterprise developer portals.

On-premise Solution - Publish any number of APIs at no extra cost, and issue, manage & revoke API keys and/or security tokens (such as X.509 certificates, SAML tokens, etc) without the need to involve a third party, off premise service.

Request/Response Control - Ensure that API responses (which may include sensitive or private information) are sent directly to the requestor, rather than being routed through an intermediary in the cloud.

Enterprise-grade Security & Compliance - Pre-integration with Layer 7’s API proxy provides not only enterprise-strength security and access controls (including a built-in STS, PKI, XACML, etc), but also let you address key compliance concerns, such as PCI-DSS.

Extend Market Reach - Pull in partner, affiliate and referrer traffic via your APIs, or else allow them to embed your services & content within their own online properties.

Grow Revenues  - Support API business models from “Internal chargeback” to “Monthly subscription” to “Pay per use” and more.

Understand API Usage  - Offers comprehensive API reporting for third-party developers, as well as for enterprise roles, such as API owners, operations, and security officers

Shorten Time to Market - Out-of-the-box functionality allows you to rapidly provide developers with API documentation, discussion forums, developer support, developer resources, and more.

Manage Developers - Create tiered (Gold, Silver, Bronze, etc) plans that allow you to reflect the value of each of your developers appropriately.

Manage APIs - Create API service levels for each API, assigning rate limits, pricing, SLA criteria, and more in order to match your business goals.

Manage API Keys - Define API security to fit your requirements (whether it be just API keys, keys plus certificates and/or tokens, etc), and then manage and distribute those keys from a secure, on-premise device.

Developer Community
Developer Registration
  • Developer organization signup
  • Application registration
Developer Support
  • Discussion forums, integrated messaging, FAQs, issue resolution, etc
  • API documentation, sample code/applications, etc
API Usage Reporting
  • API usage, which allows developers to track and meter their API hits
  • Application usage, which allows developer to answer "which of my applications is most popular?"
  • Response times, which allows developers to answer, "what is my customer's experience like?"
  • Availability, which allows developers to answer, "is my SLA being adhered to?"
Forums
  • Provide announcements, developer support, FAQs, and discussion boards to foster community among developers
Documentation & Resources
  • Provide developers with versioned documentation to help developers quickly understand how to use APIs
  • Provide resources such as sample applications, code widgets/examples, sample requests/response pairs, etc
Account Management
  • Plus user management (i.e., enroll users and assign RBAC
API Key Management
  • Assign an API key to each developer application
  • Create, suspend and revoke API keys
Content Management System
Stylesheets
  • Support for global, partial and per section CSS
  • Insert custom code on every page (i.e., for the purposes of Google Trackers, etc)
Content Management
  • Create, edit, publish and rollback portal content
  • Create and modify menus
Workflow
  • Define a sequence of Web pages in order to simplify the Developer's experience
  • Introduce a validation stage in any approval process (i.e., when publishing content or before accepting a developer’s registration)
Dashboarding
  • Quickly view key information at a glance
  • Define a personalized default dashboard for all Developer and Publisher users
RBAC
  • Enrol developer users under the developer account
  • Enrol publisher users to help manage developer accounts
Business Management
Account Plans
  • Stratify developers into tiers (i.e., Gold, Silver, Bronze)
  • Define tiers by assigning features (i.e., support plans, cost per month)
API Plans
  • Define unique and/or standard plans for each API
  • Define SLAs, pricing, rate limits, and other features for each API Plan
API Analytics
  • Out-of-the-box summary reports, including API usage, developer usage, and utilization rates, etc
  • Out-of-the-box detailed reports, including API methods, latency, error rates, throughput, availability, etc
Alerting
  • Send alerts based on API utilization rates, latency, errors, etc