Upload
prolifics
View
1.299
Download
2
Embed Size (px)
DESCRIPTION
Speakers: Prithvi Srinivasan, Prolifics Anandakrishnan Ramakrishnan, Staples SOA Centers of Excellence enable organizations to adopt comprehensive, flexible and consistent approaches to providing business capabilities, across a potentially technologically diverse set of systems. Come find out how to establish an enterprise SOA Appliance/Application Gateway CoE in a heterogeneous environment with varied tools. We will go through a detailed best-practice based approach with pattern based implementation to lay down the foundation of a SOA CoE using IBM's DataPower SOA Appliances. We will talk about how we chalked a path allowing us to balance a long term strategic vision with short term tactical requirements. We will also address the following topics: Agile Development & delivery, Deployment topology, Continuous delivery, Continuous Integration and Automated Build and Deploy. We will round off the talk with a discussion around our future SOA CoE Road map, which will include achieving PCI compliance, our Web API Management strategy and our SOA Governance strategy. http://www.prolifics.com
Citation preview
IBM IMPACT 2014 Conference (2800A)
An approach to a SOA application Gateway Center of Excellence
2014
Enterprise Integration Services
Prithvi Srinivasan(Prolifics) – Practice Director SOA/IntegrationAnandakrishnan Ramakrishnan(Staples) - Principle Software Engineer
Confidential - for internal use onlyEnterprise Integration Services
SOA Gateway COE - Agenda
• Background – Corporate Overview– IT Overview– Business case for SOA appliance
• Architecture • logical architecture• Physical and HA, Monitoring and
Disaster Recovery• Detailed Architecture
• Composite Service Patterns– Reusable Patterns– Service Design– Continuous Integration
• API Strategy– Take away
Confidential - for internal use only
Why a COE ?
• Centralized group to enforce Best Practice guidelines for all Services hosted on DataPower.
• Focused on building Reusable Patterns(Cookie Cutters)
• Focused on building Common Frameworks to offload NFRs – Security, Governance, Monitoring, limited Data Transform.
• High Level of Automation and High Quality Documentation
Background
• 2014• Enterprise Integration Services
Confidential - for internal use onlyEnterprise Integration Services
Background -Corporate Overview
• Staples is the world’s largest office products company and second largest internet retailer.
• For 26 years, Staples has served the needs of business customers and its vision is to provide every product businesses need to succeed.
• Through its world-class retail, online and delivery capabilities, Staples offers office supplies, technology products and services, facilities and breakroom supplies, furniture, copy and print services and a wide range of other product categories.
• With thousands of associates worldwide dedicated to making it easy for businesses of all sizes, Staples operates throughout North and South America, Europe, Asia, Australia and New Zealand.
Confidential - for internal use onlyEnterprise Integration Services
Background - IT Overview
2400 FTE capacity in the global IT organization
Multiple data centers – domestic and international
A portfolio exceeding 800 applications
IT development, management and governance activities
Applications• Manage and prioritize enterprise work• Reduce ‘lights on’ costs by consolidating
applications• Migrate existing applications to common
enterprise services
Infrastructure• Virtualization and enterprise governance• Standard service catalog with well
understood SLAs• Implement ITIL, CMDB methodologies and
tools
Confidential - for internal use onlyEnterprise Integration Services
Background - Business Use cases
Security • PCI Compliance• Protect Staples applications and
infrastructure from internal and external security threats
Service Governance• Runtime representation of Service
Catalogue • Staples API
Accelerators - Increased performance without compromising design
Architecture
• 2014• Enterprise Integration Services
Confidential - for internal use onlyEnterprise Integration Services
Architecture- Logical Design
Confidential - for internal use onlyEnterprise Integration Services
Architecture - Physical Architecture
Composite Service Patterns
• 2014• Enterprise Integration Services
Confidential - for internal use only
Security Gateway – PCI Domain
Enterprise Integration Services
Reusable Patterns - Composite
Simple Patterns Used• Protocol Bridging • Service Façade• Polling Consumer• Authentication• Authorization• Auditing • Security Gateway• Content Filter
Confidential - for internal use only
Internal ESB Security Gateway
Enterprise Integration Services
Reusable Patterns - Composite
Simple Patterns Used• Protocol Bridging• Service Façade• Content-Based Router• Polling Consumer• Legacy Wrapper• Decoupled Contract• Concurrent Contracts• SLM Enforcer• Exception Shielding• Threat Protection• Authentication• Authorization• Auditing• Security Gateway
Confidential - for internal use only
DMZ B2B Gateway
Enterprise Integration Services
Reusable Patterns - Composite
Simple Patterns Used• Protocol Bridging• Service Façade• Content-Based Router• Exception Shielding• Threat Protection• Authentication• Authorization• Auditing• Tamper Proof Validation• Data Confidentiality• Security Gateway
Confidential - for internal use only
Service Design - Logical View
Confidential - for internal use only
Service Design - Routing
Confidential - for internal use only
Service Design - Security
Confidential - for internal use only
Service Design - Canonical
Continuous Delivery
• 2014• Enterprise Integration Services
Confidential - for internal use only
Continuous Integration
•Ability deploy all ESB components as a single deployable unit• Continuous testing to validate backward compatibility and functional integrity
Enterprise Integration Services
Confidential - for internal use only
Continuous Integration – Check in process
Confidential - for internal use only
Continuous Integration – Deployment process
Confidential - for internal use only
Continuous Integration – Deployment process(Contd)
API Strategy
• 2014• Enterprise Integration Services
Confidential - for internal use only
Website
SmartPhone
TabletPartners
ConnectedAppliances
ConnectedCars
GameConsoles
Internet TVs
Trillions2013 →
Website
Millions~1999 - 2000
stores (800) ###s web sites
Not having an API today is like not having a website in the 1990s…
APIs
Consumers expect to access data any time across multiple devices
Companies can re-invent interactions with customers,
suppliers & partners
Explosion of potential clients increases opportunity, risk and
innovation
The API and Service Economy
Confidential - for internal use only
Business Owner IT
Developer
Consumers
New business opportunities• New markets• Increase customers• Enhance branding• Competitive advantage
Extend development team• Increase innovation• Increase scale
Partner/supplier alignment
Benefits
ChallengesBusiness strategy
Infrastructure• Security• Creation• Scalability
Operational control• Publish• Analyze• Monitor
API(s) – Opportunities vs Challenges
Closing Notes
• 2014• Enterprise Integration Services
Confidential - for internal use onlyEnterprise Integration Services
Closing Notes-Take away
• Don’t short-change yourself on the vision to meet existing constraints• Phased Delivery Plan• Stick to common patterns and promote reuse• Follow 80-20 rule – Don’t make Perfect the enemy of Good• Use best practices • Socialize, training and documentation – Lunch and Learns, Webinars,
Architecture Forums…. Talk, Talk, Talk