Hybrid cloud API management
First Claim
Patent Images
1. A method, comprising:
- providing, by a local API proxy deployed at a local deployment environment, a key to a remote API management server that is not deployed at the local deployment environment;
receiving, at the local API proxy, a first request from an application for a token that authorizes the application to utilize the local API proxy to service API requests;
in response to receiving the first request, providing, by the local API proxy and to the remote API management server, a second request for the token where the second request identifies the local API proxy and the application;
receiving, from the remote API management server and in response to the second request, the token, where the token includes access permissions for the application signed by the key provided to the remote API management server by the local API proxy;
providing the token to the application as a response to the first request;
receiving, from the application and at the local API proxy deployed at the local deployment environment, an API request that includes the token;
determining whether the token in the API request is valid based on whether the token is signed by the remote API management server with the key provided by the local API proxy to the remote API management server;
in response to determining that the token is valid, utilizing the local API proxy to service the API request at the local deployment environment;
establishing a connection with the remote API management server after the API request is serviced by the local API proxy; and
providing to the remote API management server, via the connection, at least metadata about the API request.
3 Assignments
0 Petitions
Accused Products
Abstract
A method of serving an API request includes receiving the API request at a local API proxy deployed at a local deployment environment. The method includes utilizing the local API proxy to service the API request at the local deployment environment, establishing a connection with a remote API management server, and providing to the remote API management server, via the connection, at least metadata about the API request.
-
Citations
18 Claims
-
1. A method, comprising:
-
providing, by a local API proxy deployed at a local deployment environment, a key to a remote API management server that is not deployed at the local deployment environment; receiving, at the local API proxy, a first request from an application for a token that authorizes the application to utilize the local API proxy to service API requests; in response to receiving the first request, providing, by the local API proxy and to the remote API management server, a second request for the token where the second request identifies the local API proxy and the application; receiving, from the remote API management server and in response to the second request, the token, where the token includes access permissions for the application signed by the key provided to the remote API management server by the local API proxy; providing the token to the application as a response to the first request; receiving, from the application and at the local API proxy deployed at the local deployment environment, an API request that includes the token; determining whether the token in the API request is valid based on whether the token is signed by the remote API management server with the key provided by the local API proxy to the remote API management server; in response to determining that the token is valid, utilizing the local API proxy to service the API request at the local deployment environment; establishing a connection with the remote API management server after the API request is serviced by the local API proxy; and providing to the remote API management server, via the connection, at least metadata about the API request. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A system comprising:
-
one or more computers and one or more storage devices storing instructions that are operable, when executed by the one or more computers, to cause the one or more computers to perform operations comprising; providing, by a local API proxy deployed at a local deployment environment, a key to a remote API management server that is not deployed at the local deployment environment; receiving, at the local API proxy, a first request from an application for a token that authorizes the application to utilize the local API proxy to service API requests; in response to receiving the first request, providing, by the local API proxy and to the remote API management server, a second request for the token where the second request identifies the local API proxy and the application; receiving, from the remote API management server and in response to the second request, the token, where the token includes access permissions for the application signed by the key provided to the remote API management server by the local API proxy; providing the token to the application as a response to the first request; receiving, from the application and at the local API proxy deployed at the local deployment environment, an API request that includes the token; determining whether the token in the API request is valid based on whether the token is signed by the remote API management server with the key provided by the local API proxy to the remote API management server; in response to determining that the token is valid, utilizing the local API proxy to service the API request at the local deployment environment; establishing a connection with the remote API management server after the API request is serviced by the local API proxy; and providing to the remote API management server, via the connection, at least metadata about the API request.
-
-
18. A non-transitory computer-readable medium storing software comprising instructions executable by one or more computers which, upon such execution, cause the one or more computers to perform operations comprising:
-
providing, by a local API proxy deployed at a local deployment environment, a key to a remote API management server that is not deployed at the local deployment environment; receiving, at the local API proxy, a first request from an application for a token that authorizes the application to utilize the local API proxy to service API requests; in response to receiving the first request, providing, by the local API proxy and to the remote API management server, a second request for the token where the second request identifies the local API proxy and the application; receiving, from the remote API management server and in response to the second request, the token, where the token includes access permissions for the application signed by the key provided to the remote API management server by the local API proxy; providing the token to the application as a response to the first request; receiving, from the application and at the local API proxy deployed at the local deployment environment, an API request that includes the token; determining whether the token in the API request is valid based on whether the token is signed by the remote API management server with the key provided by the local API proxy to the remote API management server; in response to determining that the token is valid, utilizing the local API proxy to service the API request at the local deployment environment; establishing a connection with the remote API management server after the API request is serviced by the local API proxy; and providing to the remote API management server, via the connection, at least metadata about the API request.
-
Specification