Loading…
October 31 - November 2  - Portland, OR
Click Here For Information & Registration
View analytic

Log in to bookmark your favorites and sync them to your phone or calendar.

Tuesday, October 31
 

1:30pm

Building a Service Mesh with Kubernetes and Istio- Part 1
Introduction to Istio: Join experts from Google and Tigera to understand how to deploy a network of microservices as a controlled service mesh using Istio. 

Speakers
avatar for Sandeep Dinesh

Sandeep Dinesh

Developer Advocate, Google
Sandeep started coding and creating websites when he was 12 and hasn't stopped. He is passionate about building easy-to-use products people love. Before Google, he founded an IoT startup in agriculture and developed educational HTML5 games. At Google, Sandeep's goal is to make cl... Read More →
avatar for Ryan Knight

Ryan Knight

Principle Architect, Grandcloud
Ryan Knight (Grand Cloud) is Principal Architect at Grand Cloud. He is a passionate technologist with extensive experience in larg scale distributed systems and data pipelines. He first started Java Consulting at the Sun Java Center and has since worked at a wide variety of compa... Read More →
avatar for Mike Stowe

Mike Stowe

Building Your API for Longevity, Tigera
Michael Stowe is a professional engineer with over 10 years experience building applications for the enterprise, law enforcement, the medical field, nonprofits, and numerous industrial companies. Over the last several years he has been focused on APIs and ways to improve industry... Read More →


Tuesday October 31, 2017 1:30pm - 3:00pm
Council Suite

1:30pm

Connect Your RESTful API to Hundreds of Others in Minutes (Zapier and other Integration Platforms) - Sean Matthews, Left Hook Digital
You may have seen the articles or blog posts claiming something outrageous like how you can connect to hundreds of other Apps and enable thousands of use cases within a few hours of development.

They’re true. In this workshop, the Left Hook team will walk you through how to connect your App to hundreds of others on Zapier’s platform in a matter of minutes. There are a few big asterisks to achieve this speed: 1) Your API needs to be RESTful using either API token or OAuth2.0; 2) You’ll need to choose only a few basic use cases; 3) You need to be comfortable in a Node.js environment; 4) You need to be comfortable using a CLI tool.

We’ll walk you through a quick integration, and then talk about the pros and cons of over 30+ different integration platforms out there, as well as highlighting platforms upon which developers are able to build out their own API connectors TODAY.

Speakers
avatar for Sean Matthews

Sean Matthews

Co-Founder & Managing Partner, Left Hook Digital
Sean has led the team at Left Hook Digital over the past few years as they embark on a journey to make APIs easier for everyone. They talk to both sides of the aisle: helping API Providers think through their Integration Strategy and building out API Connectors on different platf... Read More →



Tuesday October 31, 2017 1:30pm - 3:00pm
Broadway I/II

1:30pm

How Mature are You? A Developer Experience Maturity Model - Jenny Wanger, Arity, founded by Allstate
How confident are you that your developer experience matches the expectations of your customers? How can you judge if you’re providing an adequate or best-in-class experience? What about your competition? How do you compare?

We had the same questions at Arity, and so developed a maturity model for API programs. Based on a year of user testing with developers, this model covers categories such as support and documentation.

This maturity model helps you focus your time and effort on the areas that will provide the greatest value for your customers. It’s a way to distill all the elements of the developer experience into an easily consumable document to give to stakeholders, helping you explain why the things you do as a manager of the developer community translate to increased sales for your organization.

We’ll go through the model together so you can score your company’s program. You’ll leave the session with a score and roadmap of how this can help you influence your stakeholders.


Tuesday October 31, 2017 1:30pm - 3:00pm
Broadway III/IV

1:30pm

OpenAPI Workshop
This hands on workshop will give you experience working with OpenAPI and the ecosystem of tooling.

Bring your laptop because we are going to build some APIs.  We will walk you through the process of describing an API using OpenAPI and you are going use that description to build stuff with it.  Documentation, clients, real APIs, mock APIs, you choose!  Bring your favorite tools, or we can show you some new ones.  

We will be working with the new OpenAPI V3 from the ground up, so whether you are new to OpenAPI or a veteran user of OpenAPI V2, there will plenty to learn.  If you never used any tooling before, you'll get to see what is available and if you are creating tooling for V3, come and show it off.

Tuesday October 31, 2017 1:30pm - 3:00pm
Pavilion East

1:30pm

Starting with GTK - Julita Inca, GNOME
GTK is a toolkit to create GUI based on C program language. Programming some forms are the initial point to educate developers in this new language. Glib and clutter are other technologies involved with GTK, and Interactions with DataBases that support Linux (Fedora 25) such as Sqlite or PostgreSQL are part of my proposal workshop of 6 hours. We can achieve at least four forms with an interaction of a DataBase to build a system to register people in an event.

Speakers
avatar for Julita Inca

Julita Inca

Member of the GNOME Foundation, GNOME
Computer Science interested. IT Linux and HPC.


Tuesday October 31, 2017 1:30pm - 3:00pm
Director Suite

1:30pm

Super-Powered REST API Testing - James Messinger, Postman
Let's talk testing. You know you should do it, but you probably don't enjoy it very much.  I'll try to change your mind about that by showing you just how easy – and fun – it can be to test REST APIs. Whether you prefer the command line, a text editor, or a GUI, I'll show you tools that will fit nicely into your workflow. 

In this workshop, you'll get hands-on experience with multiple API testing tools. We'll test the same API in each tool to compare the differences between them, including features, limitations, and ease of use.  So bring your laptop, or just watch me. Either way, I'll send you home with sample code, working demos, and a better understanding of API testing.

Speakers
avatar for James Messinger

James Messinger

Mr, Postman
I live in #ATX. | I work at Postman (http://getpostman.com ). | 我在学汉语。



Tuesday October 31, 2017 1:30pm - 3:00pm
Pavilion West

3:00pm

Afternoon Break
Tuesday October 31, 2017 3:00pm - 3:30pm
Plaza Foyer

3:30pm

API and Identity Management Landscape - Vinay Bhalerao & Yossi Koren, Red Hat
Today's modern infrastructure faces a unique challenge of users and their access to the resources. To protect the integrity, companies have an identity and Access Management (IAM) solutions in-house and it creates a difference in the security of an enterprise.  As multiple users access multiple applications using multiple devices it is impossible for organizations to understand which apps are accessing and how to provide access controls. 

Redhat 3scale API management platform makes it easy and can be easily integrated with major IDP (RHSSO, Forgerock, Auth0, PingIdentity - to name a few) and take control of your apps.

This workshop will help you in understanding the complete picture of APIs, Identity and API Management and how they are glued together.

If you are company and with existing Identity management platform and looking for API management, this workshop will be the best place to understand the holistic view with a live demo on Redhat 3scale and Red Hat Single Sign-On that provides SAML, OAuth, and OpenID Connect identity services for your applications.

Speakers
avatar for Vinay Bhalerao

Vinay Bhalerao

Senior Solution Engineer, Red Hat
Vinay works at Redhat and helps Fortune 500 Companies to Startups to expose their APIs. He is passionate about APIs and love sharing the knowledge with the community.



Tuesday October 31, 2017 3:30pm - 5:00pm
Pavilion East

3:30pm

API-first Redesign of a Legacy Application- Chris Busse, APIvista
The classic text-based computer game "Lemonade Stand" was a favorite among elementary school students growing up in the 80s. It presented a simple model to teach business and economics. In this workshop we'll use it as the "legacy application" we've been asked by our client to turn into an API-first application.

Starting with the overall taxonomy of the game and working our way down to the resource and payload level, we'll take a look at what needs to be represented in the game - from user inputs to IoT weather sensors - and define an API specification that could be used to faithfully recreate the logic from the original.

This workshop will be both fun and educational. Participants will leave with a better appreciation of what it takes to reorganize real-world legacy applications into a RESTful model represented by an Open API Specification.


Speakers
avatar for Chris Busse

Chris Busse

CTO, APIvista
Chris Busse works at APIvista as CTO where he helps his clients design, publish, and support APIs. Before joining APIvista he lead the API Consumer Services team for the Capital One DevExchange platform, supporting internal and external business partners while developing new prod... Read More →



Tuesday October 31, 2017 3:30pm - 5:00pm
Broadway I/II

3:30pm

Building a Service Mesh with Kubernetes and Istio- Part 2
Building a Service Mesh with Kubernetes and Istio: In this workshop you'll gain knowledge and hands-on experience of connecting and securing microservices using service mesh built on Istio.

Speakers
avatar for Sandeep Dinesh

Sandeep Dinesh

Developer Advocate, Google
Sandeep started coding and creating websites when he was 12 and hasn't stopped. He is passionate about building easy-to-use products people love. Before Google, he founded an IoT startup in agriculture and developed educational HTML5 games. At Google, Sandeep's goal is to make cl... Read More →
avatar for Ryan Knight

Ryan Knight

Principle Architect, Grandcloud
Ryan Knight (Grand Cloud) is Principal Architect at Grand Cloud. He is a passionate technologist with extensive experience in larg scale distributed systems and data pipelines. He first started Java Consulting at the Sun Java Center and has since worked at a wide variety of compa... Read More →
avatar for Mike Stowe

Mike Stowe

Building Your API for Longevity, Tigera
Michael Stowe is a professional engineer with over 10 years experience building applications for the enterprise, law enforcement, the medical field, nonprofits, and numerous industrial companies. Over the last several years he has been focused on APIs and ways to improve industry... Read More →


Tuesday October 31, 2017 3:30pm - 5:00pm
Council Suite

3:30pm

Creating Communication Applications using the Asterisk RESTFul Interface (ARI) - Chris Howard, Digium
People often tend to think of Asterisk as an "open source PBX" because that was the focus of the original development effort. But calling Asterisk a PBX is both selling it short (it is much more) and overstating it (it can be much less). Asterisk is to communications applications what the Apache web server is to web applications. Apache is a web server. Asterisk is a communication server. When you install Asterisk, you have a communications server but it is up to you to create the communications applications.

The Asterisk RESTFul Interface (ARI) is an asynchronous API that allows developers to build communications applications by exposing the raw primitive objects in Asterisk - channels, bridges, endpoints, media, etc. The state of the objects being controlled by the user are conveyed via JSON events over a WebSocket. These resources were traditionally the purview of Asterisk's C modules. By handing control of these resources via ARI to all developers regardless of their language choice Asterisk has become an engine of communication, with the business logic of how things should communicate deferred to the application using Asterisk.

This presentation will provide information on getting started using ARI and will provide a working demonstration of using the ARI to create a telephone application.

Speakers
avatar for Chris Howard

Chris Howard

Developer Products Training Manager, Digium
Chris Howard is Digium’s Developer Products Training Manager. Chris has over twenty years of telecommunication experience with a unique blend of operation support systems integration, software development, project management, and technical training. As Digium’s Training Manag... Read More →



Tuesday October 31, 2017 3:30pm - 5:00pm
Director Suite

3:30pm

OWASP’s Latest Category: API Underprotection - Skip Hovsmith, CriticalBlue
OWASP’s 2017 top ten adds a new category called 'underprotected APIs', reflecting the growth of RESTful Web APIs and richer front-end clients which stress current security and access authorization approaches. You’ll learn about potential threats resulting from undersecured Web APIs and techniques to strengthen your API security posture. You'll gain a clear understanding of user authorization via OAuth2, software authorization via static API keys and the critical interplay between them. Of particular concern are mobile API consumers whose code is statically published with secrets which are often poorly concealed. Practical advice with code examples will show how to improve mobile API security. TLS is necessary but insufficient to fully secure client-server communications. Certificate pinning is explained with code examples to show how to strengthen channel communications. Some advanced techniques will be discussed such as app hardening, white box cryptography and mobile app attestation. You should gain a good understanding of the underprotected API problem, with some immediately practical tips to improve your API security posture and a sense of emerging tools and technologies that enable a significant step change in API security.

Speakers
avatar for Skip Hovsmith

Skip Hovsmith

Growth Hacker, CriticalBlue
Mobile API Protection



Tuesday October 31, 2017 3:30pm - 5:00pm
Pavilion West

3:30pm

Simplify and Scale Your Connections to Data - William Broza, BitScoop Labs
Learn how to make an Alexa Skill using APIs. The BitScoop platform radically simplifies data integration and streamlines the data and services development process with unified access to APIs, Microservices, and more. Learn how to unify all internal and external data in your ecosystem under one API or SDK using our powerful and feature rich iPaaS. 

Learn how to:
- Manage all HTTP traffic in your network with deep insight
- Get rid of annoying SDK dependencies to connect to other services
- Adapt to changes in APIs and SDKs without changing deployed code
- Securely manage access to APIs, Microservices, and HTTP resource
- Easily add failover and test monitoring to your API and Microservice infrastructure

Speakers
avatar for William Broza

William Broza

CEO, BitScoop Labs
Integrating data should be effortless.



Tuesday October 31, 2017 3:30pm - 5:00pm
Broadway III/IV

6:00pm

Boos and Brews Hosted by Red Hat- RSVP Requested (See Description for Link)

Join Red Hat for APIStrat welcome drinks in Portland and an evening of Halloween fun to kick-off your week at the API Strategy & Practice Conference.

Eat, drink & be scary. Costumes are encouraged.

Please RSVP if you can join us, and feel free to forward the invite to any of your colleagues who will be attending APIStrat. Everyone will just need to show their 2017 APIStrat name badge at the restaurant to attend.


Tuesday October 31, 2017 6:00pm - 8:00pm
Hilton Portland Downtown - Jackrabbit Restaurant 921 SW 6th Avenue Portland, OR 97204
 
Wednesday, November 1
 

8:00am

Registration and Coffee
Wednesday November 1, 2017 8:00am - 9:00am
Plaza Foyer

9:00am

Keynote - Opening Session
Wednesday November 1, 2017 9:00am - 9:20am
Atrium BR

9:20am

Keynote - From Guns to Graphs- Yina Arenas, Principal Program Manager, Microsoft
Yina will share the behind the scenes story of the new Microsoft API strategy. This is a story about how personal passion, drive, and motivation for getting the right developer experience fueled a grassroots effort to create a unified Microsoft Graph API. The effort started a movement within the company that aligns with its recent cultural transformation, shifting from old silos towards a new “One Microsoft” vision. This project showed that the sum can be larger than its parts and that a scrappy team with heart and passion can influence from the bottom up. Yina will share her challenges and successes on the graph project, and how this effort transformed the API strategy across Microsoft.

Speakers
avatar for Yina Arenas

Yina Arenas

Principal Program Manager, Microsoft
Yina leads engineering for Microsoft Graph, one of the highest-profile projects in Office and at Microsoft. Her work involves transforming disjointed, legacy APIs into a new unified API world. During her career, she has built the APIs and platform that enable developers to access... Read More →


Wednesday November 1, 2017 9:20am - 9:40am
Atrium BR

9:40am

Keynote - Open APIs and The Power of Positive Sum Games- Sarah Novotny, Head of Open Source Strategy for GCP, Google
Speakers
avatar for Sarah Novotny

Sarah Novotny

Head of Open Source Strategy for GCP, Google
Sarah Novotny is head of Open Source Strategy group for Google Cloud Platform. She has long been an Open Source community champion in communities such as Kubernetes, NGINX and MySQL and ran large scale technology infrastructures before web-scale had a name. She co-founded Blue Ge... Read More →


Wednesday November 1, 2017 9:40am - 10:00am
Atrium BR

10:00am

Keynote - APIs at Scale: Humans and Machines - Adam DuVander, Developer Marketing, Zapier
Speakers
AD

Adam DuVander

Adam DuVander loves APIs and the people behind them. He helps Zapier’s API partners integrate with its automation platform to empower their shared customers. Previously he led developer relations for database API Orchestrate (acquired by CenturyLink Cloud) and developer communi... Read More →


Wednesday November 1, 2017 10:00am - 10:20am
Atrium BR

10:20am

Morning Break
Wednesday November 1, 2017 10:20am - 10:50am
Plaza Foyer

10:50am

Google’s API Methodology and Style Guide - Hong Zhang, Google
Google makes and uses a lot of APIs. Every Google service is built with APIs, and Google publishes hundreds of APIs for external developers. Maintaining quality and consistency across the organization requires a strong dedication to governance. We will share our experience with the process of writing, approving and publishing our API Design Guide. We will also talk about the importance of governance, and about the process and tools we use to keep our APIs of consistently high quality.

Speakers
HZ

Hong Zhang

Senior Staff Software Engineer, Google
Hong Zhang is an engineer in Google’s API Services Platform Team, where he leads Google’s API governance efforts, including Google’s API style guide, API review process, and API launch process. He contributed to the design of Protocol Buffers v3, Google’s API Service Conf... Read More →



Wednesday November 1, 2017 10:50am - 11:10am
Pavilion East

10:50am

Chatbots are the Future: Let's Build One! - Tessa Mero, Cisco DevNet
Chatbots and conversational agents have become very popular in the recent years and there is a huge research effort to automate conversations in several applications. What are Chatbots? How can it benefit you? How do you write the code for it? These questions will be answered during the session with step by step directions using node.jsso you can easily follow along. Come join me and build your first Chatbot!

Speakers
TM

Tessa Mero

Developer Evangelist, Cisco DevNet
Tessa Mero is a Developer Evangelist for Cisco. She spends her extra time contributing on a leadership team for the Joomla! Project and has been involved with Joomla for the past 5 years. She runs the Seattle PHP Meetup and is the organizer of the Pacific Northwest PHP conference... Read More →


Wednesday November 1, 2017 10:50am - 11:10am
Atrium BR

10:50am

Istio: Open Source Service Mesh for Microservices - Sandeep Dinesh, Google
"Microservices are great, but they have their challenges. You might start with a few, but over time your system is composed of more and more. You might be using tools like Docker and Kubernetes to build and deploy your services, but that’s just part of the story.

Each service needs to have a suite of features to make sure it works well with other services. Load balancing, routing, tracing, auth, TLS, graceful failures, rate limits, and more. You might need to reimplement these functionalities multiple times in multiple languages in multiple places. A total nightmare.

Istio is a open source system that works to solve these common problems. Istio transparently proxies service traffic and acts as a distributed switchboard, giving you a solid base to build your microservices. In this talk, I’ll go over the motivation behind Istio, and show you how you can use it to help build your system."

Speakers
avatar for Sandeep Dinesh

Sandeep Dinesh

Developer Advocate, Google
Sandeep started coding and creating websites when he was 12 and hasn't stopped. He is passionate about building easy-to-use products people love. Before Google, he founded an IoT startup in agriculture and developed educational HTML5 games. At Google, Sandeep's goal is to make cl... Read More →



Wednesday November 1, 2017 10:50am - 11:10am
Pavilion West

11:20am

Extending REST APIs for Complex Queries- Kirsten Hunter, Akamai
Description: 
REST APIs tend to be created with single resources, without references to other related resources. The gold standard for REST includes hypermedia for related resources, but how can a server best provide the related resources to clients? This talk explores a few different approaches to handling related data, with thought given to request size, cacheability and scaling. 

Abstract: 
In Richardson’s Maturity Model, the Glory of REST lives in hypermedia. However, many REST APIs don’t incorporate hypermedia, and even when it’s available it tends to result in a very chatty transaction. Various companies have solved this problem with different approaches, and some new technologies have given API providers even more choice in helping their clients provide the best user experience.The richness of our data has made it important to tackle this topic so API clients can provide a rich user experience. 

The approaches I will discuss include: 
* Hypermedia guided calls - Clients choose which additional resources to request based on hypermedia information 
* Hypermedia-driven expansion - Netflix’s original API allowed clients to expand related resources inline to retrieve a richer dataset 
* Specialized query language - LinkedIn’s complex graph was served by a specialized query language 
* GraphQL - Framework for graph queries to shape custom requests 
* Hypermedia-driven H/2 Server Push - Offering related information for clients to process or reject 

Speakers
avatar for Kirsten Hunter

Kirsten Hunter

Akamai Technologies, Akamai
Kirsten Hunter is an API Evangelist at Akamai with decades of experience in both development and system administration, more recently focusing on REST APIs. Her passion for Developer Experience has led her to build better tools, interfaces and technologies for coders to use when... Read More →



Wednesday November 1, 2017 11:20am - 11:40am
Pavilion East

11:20am

OpenAPI and gRPC Side-by-Side - Tim Burks, Google
Spend some time working with OpenAPI and gRPC and you’ll notice that these two technologies have a lot in common. Both are open source efforts, both describe APIs, and both promise better experiences for API producers and consumers. So why do we need both? If we do, what value does each provide? What can each project learn from the other? We’ll bring the two together for a side-by-side comparison and pose answers to these and other questions about two API methodologies that will do much to influence the future of networked APIs.

Speakers
avatar for Tim Burks

Tim Burks

Staff Software Engineer, Google
Tim Burks spent a decade building Electronic Design Automation systems and another building mobile apps. Now he's focused on the thing that holds them all together. In 2016 he joined the world's biggest API company where he works on open source tools to help developers build and... Read More →



Wednesday November 1, 2017 11:20am - 11:40am
Atrium BR

11:20am

Breaking a Monolith: In-Place Refactoring with Service-Oriented Architecture at a Life-Sciences Startup - Ryan Harrison, BioBright
"The dirty secret of the microservices movement is the heavy operational burden of service provisioning, discovery and interface specification. For many applications, e.g. those with logically grouped activities or that require single-tenant deployment, microservices are a “bridge too far.” In-place refactoring of monolithic applications with service-oriented architecture presents a 3rd-way between monoliths and microservices. OpenAPI provides the API specification and the supporting tooling ecosystem to define sensible service boundaries at the API-layer, substantially de-risking monolith refactors. We present a “war story”, targeted at software architects and developers, detailing the design and implementation considerations that allowed us to use OpenAPI to “break” our monolithic code-base into sensible services to support our life-sciences partners."

Speakers
avatar for Ryan Harrison

Ryan Harrison

Head of Engineering, BioBright
By day, Ryan is driving the development of a non-hierarchical engineering team at BioBright, a life-sciences technology startup bringing biological laboratories into the digital age. By night, he hacks for social good on projects such as VoluntaryBasicIncome.org. Holding a doctor... Read More →



Wednesday November 1, 2017 11:20am - 11:40am
Pavilion West

11:50am

The Great API Redesign - Simone Carletti, DNSimple
Redesigning a public web service API is a major undertaking: 3 years, thousands of hours of work, new clients, new documentation, a series of releases... This is the story of the DNSimple API v2, a project that started with a single, innocuous GitHub pull request with the title "Proposal for versioned API" in December 2013, and which came to a successful general availability launch at the end of 2016. Simone will explain some of the decisions that the team took over the last 3 years that shaped the development of the API as well as challenges the team faced, and provide you with tips and techniques that may help you in your next major API project. Finally, the important question: what’s next?

Speakers
avatar for Simone Carletti

Simone Carletti

CTO, DNSimple
Simone Carletti is a passionate programmer, a scuba diving instructor and a former professional sommelier. He works at DNSimple and he is the main architect of the DNSimple domain and DNS API. Simone is very passionate about code quality and best practices. He has been involved w... Read More →



Wednesday November 1, 2017 11:50am - 12:10pm
Pavilion East

11:50am

Bringing GraphQL to the Enterprise: When REST Isn't Enough - Jason Lengstorf, IBM
"In a micro-service architecture, managing REST API surfaces can get out of control in a hurry. And on bigger teams, utter chaos is just one breaking change away. In this talk, we'll take a look at how IBM's Bluemix is leveraging GraphQL to unify dozens of independent services by consuming and normalizing their APIs — all while creating huge (~2.5x) performance improvements.

We'll also look at how you can use this technique in companies of any size to create a better, more reliable data layer and improve the experience for both the customers using the platform AND the developers building the platform."

Speakers
avatar for Jason Lengstorf

Jason Lengstorf

Senior Front End Developer, IBM
Jason Lengstorf is a developer, designer, author, and friendly bear. His focus is on the efficiency and performance of people, teams, and software. At IBM, he creates processes and systems to Make The Right Thing The Easy Thing™. At all other times, he wanders the earth in sear... Read More →



Wednesday November 1, 2017 11:50am - 12:10pm
Atrium BR

11:50am

The Damning Fallacy of Assuming Reuse Is The Road to Efficiency - Leveraging Microservices for Experimentation - Irakli Nadareishvili, Capital One
Code reuse is commonly perceived to be an effective means of achieving efficiency. One of the main principles in Microservice Architecture is directly questioning this approach, however, advocating to prioritize "replaceability and upgradeability over reuse". Following in this footsteps we further explore the concept of software reuse, especially in large, enterprise settings and come to some unorthodox conclusions that maybe reuse is actually not the most efficient way, at least not always. To keep things sane, we also suggest some guard rails to avoid chaos, in case you decide to de-prioritize reuse.

Speakers
avatar for Irakli Nadareishvili

Irakli Nadareishvili

Sr. Director, DigiTech, Capital One
Irakli Nadareishvili is currently leading microservices transformation efforts as the Senior Director of the Tech Fellows Group at Capital One. Irakli is a co-author of Microservice Architecture (O'Reilly 2016), and was formerly co-founder and CTO of ReferWell, a NY-based health... Read More →


Wednesday November 1, 2017 11:50am - 12:10pm
Pavilion West

12:20pm

API Design in the Age of Bots, IoT, and Voice - James Higginbotham, Launch Any
"Developers have been debating RPC vs. REST for some time, and now we have GraphQL and other options growing in popularity. But what happens to our API design when we add bots, edge devices, and voice into the mix?

This talk examines how our APIs must change in the world of bots, voice, and edge devices. We'll also look at ways that we can future-proof our API design in light of these new ways of interaction. Finally, we'll identify design strategies to support the growing need for edge computing."

Speakers
avatar for James Higginbotham

James Higginbotham

API Strategy Coach, Launch Any
James Higginbotham is an API consultant, speaker, and instructor with experience in architecting, building, and deploying APIs. He enjoys helping businesses align their business, product, and technology to deliver a great customer experience. He also enjoys equipping cross-functi... Read More →



Wednesday November 1, 2017 12:20pm - 12:40pm
Pavilion East

12:20pm

Building Serverless APIs for Modern Application Architectures - Sai Vennam, IBM

Serverless platforms are rapidly gaining adoption and for good reason - it’s a consumable and cost-effective way to host functions and capabilities. Developers are told they simply need to write code and let the platform take care of the rest. However, it’s not always that straight-forward; most applications in production are complex and have restrictions to integrate with legacy systems.

In this talk, we’ll cover the hybrid architectures that result from refactoring existing applications for modern workloads. In addition, we’ll consider requirements that developers encounter when going to production like security and analytics for APIs. We’ll tackle how serverless allows you to transform your applications from traditional to modern hybrid architectures.


Speakers
avatar for Sai Vennam

Sai Vennam

IBM, IBM
Sai Vennam is a Developer Evangelist at IBM with expertise on Node.js, Go, APIs, API Connect and IBM Cloud. He enjoys representing IBM at conferences and creating content targeted for developers. Sai still loves coding and is a core contributor to the API Connect offering at IBM... Read More →



Wednesday November 1, 2017 12:20pm - 12:40pm
Atrium BR

12:20pm

API Workflow Engine (AWEsome) - Erik Hansen, Dell EMC
Query, Extract, Transform, Persist, Repeat.

How many thousands of times has this workflow been codified? What if it never needs to be written again?

AWE is a method that enables developers to retrieve data via APIs without the need to write API aware code. This method has been shown to reduce development time by at least two orders of magnitude.

This presentation describes a method that enables developers to focus on WHAT they want to retrieve from an API, not HOW to retrieve it. Specifically, we have abstracted out the standard workflow for interacting with an API.

We utilize the API documentation and a document that describes what data items are required by the application. We further analyze the API documentation to “string together” the calls required to retrieve the data items.

Stop the insanity of pedantic codification!!

Speakers
avatar for Erik Hansen

Erik Hansen

Principal Technologist, Dell EMC
Erik Hansen is helping Dell EMC advance what is possible within data protection – utilizing big data analytics, enhancing user experiences, and contributing to the next generation of copy data management. A childhood of building and repairing computers ignited Erik’s passion... Read More →



Wednesday November 1, 2017 12:20pm - 12:40pm
Pavilion West

12:40pm

2:00pm

API Style Guide: The Lord of API Designs - Arnaud Lauret, AXA Banque/API Handyman
"Every company’s API surface grows irremediably. More and more APIs means more and more people designing APIs, therefore keeping a company’s API surface consistent is quite a challenge. Failing this challenge may lead to a less efficient and even be counterproductive.

In this session, based on my own experience defining and sharing API design common practices in my company and based on the API styles guides that I have collected on apistylebook.com, we will discover why we desperately need API style guides, what we can put in them, how to build them and how they can or cannot help us and our fellow API designers to create together a flawless consistent API surface for our company. We will also see how API style guides could be used in the API ecosystem with tools such as the OpenAPI specification and API design tools to ensure that their rules are followed retrospectively and preemptively."

Speakers
avatar for Arnaud Lauret

Arnaud Lauret

IT Architect/API Handyman, AXA Banque/API Handyman
Arnaud Lauret aka The API Handyman. Creator of the API Stylebook. Writing a book on API design for Manning. Author of the most complete OpenAPI 2 tutorial. Architect working on API design, documentation, software architecture, tools and governance at AXA Banque (french online ban... Read More →



Wednesday November 1, 2017 2:00pm - 2:20pm
Pavilion West

2:00pm

Hypermedia at Scale - Ben Greenberg, Comcast
"Hypermedia APIs provide loose coupling between an API and its client, allowing the API to evolve without client changes. When operating a hypermedia-based service with heavy usage, this evolvability introduces opportunities to improve scalability, as well as adding some new challenges.

Using Comcast’s experiences with the Xfinity Stream app, we will discuss how to use hypermedia to shape traffic and calling patterns, how to perform load shedding if necessary, and how to introduce API changes when it can take days for new versions of a service to fully rollout to clients. Implications for both API services and clients are considered."

Speakers
avatar for Benjamin Greenberg

Benjamin Greenberg

Architect, Comcast
Ben is an architect on Comcast's Advanced Applications Engineering team. A hypermedia API proponent for many years, he now designs APIs and solutions that power the Xfinity Stream TV application on mobile, web, Roku and Smart TVs. Ben resides in Philadelphia with his wife, and t... Read More →



Wednesday November 1, 2017 2:00pm - 2:20pm
Pavilion East

2:00pm

How Microsoft Uses OpenAPI to Connect to Everything - Jeff Hollan, Microsoft
Learn how Microsoft is using OpenAPI to accelerate the development and extensibility of some of it's powerful tools within Azure. Azure Logic Apps and Microsoft Flow were built to allow seamless integration across over a hundred services and APIs. Early on Microsoft made the decision to use the OpenAPI standard to describe these APIs. This fun presentation will go over the difference that has made (both for our developers and our users), the challenges we've faced, and the opportunities that have come.

Speakers
avatar for Jeff Hollan

Jeff Hollan

Senior Program Manager, Microsoft
Jeff is a Senior Program Manager for Microsoft Azure Functions. He works on building serverless services and integration with a variety of APIs - with emphasis on integrating via the OpenAPI specification. Before working in Azure, Jeff spent a many years working in IT around syst... Read More →



Wednesday November 1, 2017 2:00pm - 2:20pm
Atrium BR

2:30pm

Pragmatic JSON API Design - Yehuda Katz, Tilde
"Do you need to adopt GraphQL to get its advantages? Were the ideas behind REST and hypermedia misaligned with client needs all along? I don’t think so. In this talk, I will explore API design from the perspective of the clients consuming the API. We will look at how different client platform constraints and use cases benefit from different styles of Web API design. Then, I will demonstrate how the JSONAPI.org specification enables API providers to serve diverse, often opposing client requirements.

This talk is informed by my 4 years leading Web API design and infrastructure at Fitbit and why it ultimately chose JSON API for the next version of its Web API."

Speakers

Wednesday November 1, 2017 2:30pm - 2:50pm
Pavilion West

2:30pm

Using Jekyll As A Hypermedia Client - Kin Lane
Static website, and headless CMS approaches to providing API driven solutions have grown in popularity. Jekyll has been leading the charge when it comes to static website deployment, partly due to Github being behind the project, and their adoption for Github Pages. Join me for a conversation about pushing forward the relationship between static websites and APIs, and how you can use Jekyll as a hypermedia API client. Helpin gyou deliver more custom, yet evolving website and applicaiton experiences that will run 100% on Github, driven by Jekyll, complete with a hypermedia core.

Speakers
avatar for Kin Lane

Kin Lane

API Evangelist
I am the API Evangelist. Not in the sense that I’m evangelizing a single API to you—it is more about making sure everybody is aware that APIs exist in general, and that they are impacting our lives each day. I’m paying attention to not just the technical, but also the business an... Read More →


Wednesday November 1, 2017 2:30pm - 2:50pm
Pavilion East

2:30pm

Standards and Definitions of Your APIs and Why Words Matter - Ash Hathaway, Independent
In this session, we’ll examine why the words we use matter- and especially in API documentation and around your product. Semantics don’t have to be boring, either. We’ll look at how words change over time and to different users. There will also be strategies for consistency as well as tools to guide teams to consensus.

Speakers
avatar for Ash Hathaway

Ash Hathaway

Front-end dev and former UX designer turned product manager based in Texas.



Wednesday November 1, 2017 2:30pm - 2:50pm
Atrium BR

3:00pm

Never Make Another Breaking Change, Believe me! - Darrel Miller, Microsoft
"Changes to APIs, like death and taxes, are inevitable. However, not all changes are alike. It is common practice to use the notion of breaking changes, to help classify the impact we think those changes will have on our consumers' code. But we can only guess, and when we are wrong, that makes unhappy customers.

Recognizing that HTTP APIs are different than the language APIs that we are familiar with, leads us to an innovative new approach to managing change in HTTP APIs. Come to this talk to see how Revisions and Versions can give you the flexibility to confidently evolve your APIs and never break your customers.
"

Speakers
DM

Darrel Miller

Never Make Another Breaking Change, Believe me!, Microsoft
Darrel is a software developer at Microsoft working for the Azure API Management team. He has been building distributed business applications on the Microsoft platform for more than 20 years. He is an active member of the .NET community and OSS contributor. He is a member of the... Read More →



Wednesday November 1, 2017 3:00pm - 3:20pm
Pavilion West

3:00pm

Designing Intuit IT's REST APIs - Steven Fonseca, Intuit
The office of the CIO has embarked on an ambitious mission to offer all of the enterprise capabilities it delivers to run the Intuit business as a comprehensive and cohesive set of reusable RESTful services. The "IT as a service" initiative has achieved a high level of design consistency across disparate functional teams and their domains, developing a unified set of carefully crafted API contracts that meet the needs of multiple business units. The purpose of this talk is to share Intuit IT's experience with contract design, sharing a little bit about its API First process, service and resource granularity, and then jumping into a review of key design idioms that get used consistently including URL structure, pagination, HATEOAS links, immediate link traversal, resource expansion, client-API synchronicity patterns, versioning, and error codes. The talk concludes with a high level summary of Intuit IT's design strategy and the future introduction of a query language abstraction layer over the services designed and implemented today.

Speakers
SF

Steven Fonseca

Principal Cloud and Services Architect, Intuit
Technical leader helping organizations adopt new technologies and enterprise architecture practices for over a decade, shaping and governing programs adopting the cloud, REST APIs, Agile, and common middleware. Academic background (PhD) in software reuse and software engineering... Read More →


Wednesday November 1, 2017 3:00pm - 3:20pm
Pavilion East

3:00pm

Keep Your Swagger On - Ron Ratovsky, SmartBear
Behold the magic of the next-gen of the OSS Swagger tooling, now with OpenAPI V3 support! Learn how we improved developer experience, making the tools even easier to use. With our enhanced infrastructure, you can make it your own - configure, customize and extend to suit your needs. This talk will cover what changed in our ecosystem and provide a glimpse of the roadmap ahead. Come and get a demo of what the future of Swagger and OpenAPIV3 looks like!

Speakers
avatar for Ron Ratovsky

Ron Ratovsky

Swagger Developer Evangelist, SmartBear
Working with APIs for too long, gatherer of the first OpenAPI spec and a current TDC member. Driving the Swagger open source tooling around the spec.



Wednesday November 1, 2017 3:00pm - 3:20pm
Atrium BR

3:30pm

The Perils of Polling - Ross Garrett, Cloud Elements
Applications and Service Providers provide value when they are able to alert users of events they are interested in. Sadly, in the sphere of API integration events are underserved and the request/response pattern introduces significant inefficiency. This session will explore the perils of polling - applications calling the same API over and over, without receiving any new useful data. We’ll look at alternatives - including WebHooks and the evolution of OAI to support eventing.

Speakers
avatar for Ross Garrett

Ross Garrett

Cloud Elements, Cloud Elements
Ross Garrett is the Head of Product Marketing at Cloud Elements - responsible for market strategy, product positioning and evangelism. He is a well-known speaker at developer events and other industry conferences. Ross has over 10 years of product and marketing leadership experie... Read More →


Wednesday November 1, 2017 3:30pm - 3:50pm
Pavilion West

3:30pm

Unlocking the Hypermedia API with Intelligent Generic Clients - Michael Hibay, Baysong Services
What is a hypermedia API? Why are they locked, why should they be unlocked, and how to unlock them? How can a generic client be intelligent, and why would we want one anyway? Can’t we just let the engineers worry about this stuff?

In this talk we will explore the concept of a hypermedia API, and why it can be considered locked. We will briefly discuss design guidelines, and the problems they solve. We will then explore generic clients, and how they benefit an application and the industry. How to make a generic client intelligent and how this will allow non-technical team members to directly contribute within the hypermedia API space. We will discover why the use of hypermedia APIs enables organizations of any size to be able to innovate at a higher pace while engaging a wider range of employee talent.

Does this all seem too good to be true? It isn’t. We will go through live examples of this process in action revealing a glimpse of the future of our hAPI industry.

Speakers
avatar for Michael Hibay

Michael Hibay

hAPI evangelist, Architect, and Java Developer, Baysong Services
Michael Hibay is a hAPI Evangelist, architect, java developer, katharsis.io maintainer, bad guitarist, and terrible singer who is writing the hAPI specification. He has designed and contributed to APIs in Fintech, E-Commerce, tax services, and sports management industries. When n... Read More →



Wednesday November 1, 2017 3:30pm - 3:50pm
Pavilion East

3:30pm

Embracing JSON Schema - Jeremy Whitlock, Google
JSON Schema is an extremely powerful, yet easily approachable, tool for describing data structures. In fact, the OpenAPI has embraced JSON Schema and currently uses it for describing the inputs/outputs of your APIs. JSON Schema is a technology that is often misunderstood and often used in ways that leave people scratching their heads when it does not work the way they expected. This talk will introduce JSON Schema from the ground up, complete with gotchas and best practices. In the end, the hope is that the attendee will see the value of JSON Schema and understand it well enough to use in their OpenAPI documents and even their own applications.

Speakers
avatar for Jeremy Whitlock

Jeremy Whitlock

Software Engineer, Google
Jeremy is a long time open source contributor/evangelist and is currently a Technical Team Lead and Software Engineer at Google. During his day job he contributes to Google Cloud, and during his free time he contributes to the OpenAPI as an inaugural member of its Technical Devel... Read More →



Wednesday November 1, 2017 3:30pm - 3:50pm
Atrium BR

3:50pm

Afternoon Break
Wednesday November 1, 2017 3:50pm - 4:10pm
Plaza Foyer

4:10pm

Your Attention, Please: Optimizing API Metrics for Humans - John Feminella, Pivotal
APIs in use require careful monitoring to make sure they're delivering on their promises. But that monitoring needs to be useful to humans as much as to machines; how do we do this when there's so much we could measure? In this talk, we'll share how we revamped the metrics in APIs used by many of the world's biggest companies, reduced our response times to anomalous conditions, and lowered our false-positive rate to under 0.1%.

Speakers
JF

John Feminella

Advisor, Pivotal
John Feminella is an avid technologist, occasional public speaker, and curiosity advocate. He serves as an advisor to Pivotal, where he works on helping enterprises transform the way they write, operate, and deploy software. He's also the cofounder of a tiny analytics monitoring... Read More →


Wednesday November 1, 2017 4:10pm - 4:30pm
Pavilion East

4:10pm

Don't Build a Death Star - Chris Teitzel, Lockr
"Have you been tasked to build the most powerful weapon in the universe? No? How about an enterprise website which both consumes external and provides its own APIs?

Whatever your task is, secure architecture is key. And while putting an exhaust port on the reactor core seems like a good idea, trust me when I say it'll blow up in your face later.

Web development is no different. What seems like a simple decision at the outset, or an overlooked detail may turn out to cause severe issues later on.

During this session we’ll take a look at how to architect for success and security when building a website which connects to external systems and while providing access to data. By building security in from the beginning you can help prevent a young Jedi shooting a proton torpedo through a hole the size of a wamp rat and destroying your hard work.

We’ll cover:
• Overview of common API authentication and security methods
• Using capabilities instead of roles to define security
• How to store and access keys and tokens in your website
• Providing an API to access your website data
• Common mistakes developers make when creating APIs

A session for developers of all skills and abilities, this will be an interactive time filled with lessons learned and examples from the real world, including some recent examples of how a single exposed API can prove catastrophic. Just promise that afterwards you’ll use what you learn for the good of the galaxy and that you won't go build a planet sized weapon of mass destruction."

Speakers
avatar for Chris Teitzel

Chris Teitzel

Founder / CEO, Lockr
Chris founded Lockr with the goal of creating a simple method for any website or application to store secrets from encryption keys to API tokens in a secure manner. Having worked extensively in Drupal as part of one of the largest front-end projects, the Omega Theme, as well as t... Read More →



Wednesday November 1, 2017 4:10pm - 4:30pm
Atrium BR

4:10pm

Your API Spec is a Contract, So Test It Like One! - Noah Dietz, Google
"An API specification is a contract representing the developer’s guarantee of an APIs behavior to its consumers. Now, anyone can have an API specification. But just having one is not enough. To be useful, a specification needs to be true, the implementation must be aligned and the developer held to their contract.

Specification standards, like OpenAPI, are popular for documenting an API. But, even with a standardized specification the same rule applies: to be useful, a specification and its implementation must always be aligned.

Rather than add specification maintenance to your to-do list, make it part of your workflow, make it part of your tests. We will explore specification-based testing with OpenAPI and some projects that aim to help make this idea a first-class part of the API development lifecycle."

Speakers
avatar for Noah Dietz

Noah Dietz

Software Engineer, Google
Noah Dietz is a recent graduate of Cal Poly, SLO and a long time lover of APIs. He started his career building specification-based tooling to help developers swallow the pill of testing their APIs. While this is no longer his main work, he has continued to evangelize and develop... Read More →



Wednesday November 1, 2017 4:10pm - 4:30pm
Pavilion West

4:40pm

Developer Portals - When Docs Become DX - Kristof Van Tomme, Pronovix
"Developer eXperience (DX) is crucial for the success of an API. That is why API teams build developer portals where the team can publish their API reference. This is where most teams fail. A great developer experience requires more than reference docs. In this talk you’ll learn about the curious world of API docs, exploring the different documentation components you need for a great developer experience through a series of less known facts and non-obvious insights that I've collected over the course of 2 years of research.

Should you automatically generate your SDKs? Is there a difference between guides and tutorials? Are reference docs sufficient for your API docs MVP? Is Swagger the ultimate API reference documentation format? Find out if you know the answers to these and many more questions and make a chance to win some Belgian chocolates!"

Speakers
avatar for Kristof Van Tomme

Kristof Van Tomme

CEO/co-founder, Pronovix
Kristof Van Tomme is an open source strategist and architect. He is the CEO and co-founder of Pronovix, a boutique consultancy that builds developer portals and documentation systems in Drupal. He's got a degree in bioengineering and is a regular speaker at technology conferences... Read More →



Wednesday November 1, 2017 4:40pm - 5:00pm
Pavilion East

4:40pm

Beyond OAuth: A Holistic Approach to Securing Your APIs and Your Infrastructure - Isabelle Mauny, 42Crunch
\"If you ask about API security, you will be most likely be told about OAuth2, may be OpenID Connect and of course TLS. But in order to properly secure APIs, you will have to address many other aspects. In this session, we present the concepts related to API Security, as well as practical tools/solutions to address the overall issue, such as:
- Transport and message encryption.
- Digital Signatures
- Auditing and non-repudiation
- SecDevOps and security as code
- Coding best practices and how to enforce them
- Infrastructure Best Practices
Attendees attending this session will leave with practical information to apply directly to their APIs. \"

Speakers
avatar for Isabelle Mauny

Isabelle Mauny

42 Crunch, 42Crunch
Isabelle is an industry veteran with more than 25 years of experience in the fields of integration, SOA, services and APIs. After more than 15 years at IBM in various technical roles working on the WebSphere platform, she worked as a Product Manager and technical evangelist in a... Read More →



Wednesday November 1, 2017 4:40pm - 5:00pm
Atrium BR

4:40pm

Pain-Free Microservices Integration Using Contract Tests - Ama Asare & Danilo Sato, ThoughtWorks
Service integration can be a pain when providers of APIs don't have visibility into how they're being consumed. Evolving their APIs can be a slow, painful process. When a contract breaking change is released, API consumers may not find out until in production, which integration point failed and why.

Contract Tests are lightweight, easy to maintain, and quick at detecting breaking changes in API contracts. Even better are Consumer-Driven Contract Tests (CDCTs), that help consumers build their integrations based on provider contracts they expect. Serving these contracts to providers enable their creators evolve their APIs while complying with consumers' specifications.

This talk will cover reasons to practice CDCTs, how to write, version and test contracts from both consumer and provider perspectives using Pact, a cross-platform polyglot framework, and how to incorporate CDCTs in a deployment pipeline.

Speakers
avatar for Ama Asare

Ama Asare

Senior Developer/Consultant, ThoughtWorks
Ama Asare is a Senior Developer/Consultant at ThoughtWorks. Over the last few years, she has worked with clients to help them develop and deploy innovative software, applying software best practices in an agile manner. When she is not working with clients, she is experimenting wi... Read More →
avatar for Danilo Sato

Danilo Sato

Danilo is a polyglot Principal Consultant with more than 15 years of experience as an Architect, Data Engineer, Developer, and Agile Coach. He balances strategy with execution, helping clients refine their technology strategy while also adopting practices to reduce the time betwe... Read More →



Wednesday November 1, 2017 4:40pm - 5:00pm
Pavilion West

5:10pm

Creating an API Ecosystem that Benefits Producers and Consumers - Brayden Winterton, Brigham Young University
A few years ago, Brigham Young University set out to replace an aging API Ecosystem. The ecosystem at the time was one that was hard to navigate, contained outdated documentation, centered around non-standard authentication, and resistant to rapid iteration and a DevOps model. Noting these issues, BYU set out to create an API Ecosystem that would be a joy to use for both the API Developers, as well as their consumers. A large part of this effort has been focused around the adoption of several open standards such as OAuth2.0, JSON Web Tokens, and the OpenAPI specification. The adoptions of these standards has allowed BYU to create a system that is making API deployment and documentation easy on the developers, promises consumers up to date documentation, and allows both parties to utilize the vast number of Open Source libraries available to interact with these open standards.

Speakers
BW

Brayden Winterton

Software Engineer, Brigham Young University
Brayden is a Software Engineer working in Higher Ed at Brigham Young University (BYU) in Provo Utah. He is an avid developer with a passion for open source software. Brayden is passionate about creating software that makes the lives of developers easier and better. He is currentl... Read More →



Wednesday November 1, 2017 5:10pm - 5:30pm
Pavilion East

5:10pm

Risky Business: How to Avoid Screen Scraping and Improve Security with API Development - Becky Heironimus, Capital One
"Risky Business: How to Avoid Screen Scraping and Improve Security with API Development (Becky Heironimus and Claudia Holanda*, Capital One): Customers rely on Personal Financial Management applications for help managing and tracking their financial data securely held in multiple banks, and what’s the first thing they are asked to do? Entrust a third party with their banking credentials. That’s a risky solution, for lots of good reasons. At Capital One, we think there’s a better way: Introducing our Customer Transactions API product. As part of our DevExchange family of APIs, this product seeks to solve many of the security and privacy issues baked in to the standard operating procedures for most financial software.

For the application developer, we take on the tricky security task of handling and protecting login credentials that’s part of our normal charter, and we do it very well. We also free you from the limitations imposed by screen-scraping; you’ll never have to re-code your app because we’ve re-designed one of our UIs. And we’re normalizing account data across all account types, so as the API grows and more account types are added, you’ll have less work to do to add them to your experience.

For customer end users, we offer explicit control over their Capital One accounts, no matter how many they might have: they decide which accounts to provide access to; they decide who can access them; they decide when it’s time to change or revoke that access for one or all of those accounts. And they never have to expose their login credentials to a third party. Our API is helping redesign current practices and making them better for our customers, our developers and Capital One.

*(Second Speaker - Claudia Holanda): Claudia Holanda is a Digital Product Manager at Capital One Financial Corporation building data-driven products. Prior to Capital One, Claudia held product roles at Hobsons, United Communications Group and Information Builders. Claudia holds a B.S. in Computer Science from New York Institute of Technology. "

Speakers
BH

Becky Heironimus

Vice President of Enterprise Digital Products and Data Connections, Capital One
Becky Heironimus is Vice President of Enterprise Digital Products and Data Connections at Capital One Financial Corporation, a financial holding company which offers a broad spectrum of financial products and services to consumers, small businesses and commercial clients through... Read More →



Wednesday November 1, 2017 5:10pm - 5:30pm
Atrium BR

5:10pm

Bulletproofing Your API's - Nathan Jakubiak, Parasoft
In today’s inter-connected world, the statistics are against you for a secure API. It is not a matter of if but when one simple breach can make front page news, tarnish your organization’s reputation, and cause problems not only for your organization but for external consumers of your API as well.

With such loaded consequences, testing and validating access to your application or device for security vulnerabilities needs to become an industry standard.

In this session, you'll learn: 
  • Shift left your security testing efforts and establish a continuous security testing process
  • Perform API security penetration testing
  • Extend existing functional tests with security scenarios
  • Correlate security vulnerabilities to business requirements

Speakers
avatar for Nathan Jakubiak

Nathan Jakubiak

Project Lead Engineer, Parasoft
Nathan is a Project Lead Engineer for the industry-leading API testing solution Parasoft SOAtest. He has been with Parasoft since 2000 and helped build SOAtest from the ground up. He recently took responsibility for the Parasoft Unit Test Assistant which helps developers automate... Read More →



Wednesday November 1, 2017 5:10pm - 5:30pm
Pavilion West

5:40pm

It’s Not You, It’s My API - Melissa Jurkoic, Amadeus Hospitality
When companies are eager to publish APIs due to business pressure and customer demand, they often neglect the importance of finding the right consumer before building their API.  The result is a dysfunctional relationship that will cause conflict for both the provider and the consumer in the end.  Relationships are the cornerstone of a healthy API program.  Understanding the needs and preferences of your consumers through market research and an established dialogue are critical to build long-lasting relationships.  When your consumers are not a good match for your program, it may be time to break it off. 

This talk will share how we dealt with rejection when consumers wouldn’t use our API and how we learned from that experience so we could attract compatible developers for long term partnerships in the future.

Speakers
avatar for Melissa Jurkoic

Melissa Jurkoic

Melissa Jurkoic is currently the Product Strategist for the Amadeus Hospitality Web Services platform at Amadeus Hospitality. Focused on the launch of their cloud and API strategy, she defines the vision and roadmap. | | With over two decades’ experience as a technologist, her... Read More →



Wednesday November 1, 2017 5:40pm - 6:00pm
Pavilion East

5:40pm

Practical DevSecOps for APIs - Isabelle Mauny, 42Crunch
In DevSecOps “shift left” applies to application security too: developers should commit to provide API security at the earliest stages of development.

In this session, Isabelle will propose an innovative strategy to address API security, in which developers collaborate with security teams and bring their business knowledge of the APIs to:

1/ Assess the API risk in terms of data and operation sensitivity
2/ Specify the input/output data formats
3/ Describe the application flow logic From the data gathered previously, tools can then generate automatically the appropriate security policies, respecting the rules set by the security teams.

Isabelle will also explain how the CI/CD pipeline can leverage a containerized PEP (Policy Enforcement Point) in the different testing / QA / Pre-Production / Production environments.

Speakers
avatar for Isabelle Mauny

Isabelle Mauny

42 Crunch, 42Crunch
Isabelle is an industry veteran with more than 25 years of experience in the fields of integration, SOA, services and APIs. After more than 15 years at IBM in various technical roles working on the WebSphere platform, she worked as a Product Manager and technical evangelist in a... Read More →



Wednesday November 1, 2017 5:40pm - 6:00pm
Atrium BR

5:40pm

Testing Layers in a Distributed Architecture - Karl Hughes, The Graide Network
"Modern web applications rely on internal APIs, multiple frontend applications, several third-party services, and dozens of vendor libraries. With complex distributed systems like this, how can developers create a comprehensive test plan that covers everything without slowing development down to a crawl?

In this talk we'll dive into real-world examples of test plans for complex, service-oriented applications as well as some best practices for testing across a distributed architecture. We'll see how layers of unit, integration, acceptance, and end-to-end tests can greatly improve the reliability of our applications and make maintaining them much easier in the long-run."

Speakers
avatar for Karl Hughes

Karl Hughes

CTO, The Graide Network
Karl has been building software and teams for education technology startups in Chicago for the past six years. He is currently the CTO at The Graide Network where he oversees architecture, testing, and product planning.



Wednesday November 1, 2017 5:40pm - 6:00pm
Pavilion West

6:00pm

Booth Crawl
Wednesday November 1, 2017 6:00pm - 7:00pm
Plaza Foyer

7:00pm

Conference Party - Sponsored by Microsoft

Walking Directions:

 

  • Head north (left out main entrance of hotel) on SW 6th Ave toward SW Taylor St
  • Turn right onto SW Yamhill St
  • Turn left onto SW 4th Ave
  • Enter Pioneer Place at the corner of SW 4th and SW Morrison on the right
  • Take the escalators up to the 3rd Floor

 




Wednesday November 1, 2017 7:00pm - 10:00pm
Punch Bowl Social
 
Thursday, November 2
 

8:00am

Registration and Coffee
Thursday November 2, 2017 8:00am - 9:00am
Plaza Foyer

9:00am

Keynote - Moving Beyond Webhooks with Serverless Extensibility - Glenn Block, Director of Product Management, Auth0
Imagine how happy customers would be if you made it easier for them to extend your SaaS product?. How much stickier would they be to your platform if they could easily add their own business requirements, without having to become API experts or deal with the ongoing operational cost? In this keynote, you'll learn about Serverless Extensibility. You'll see how more and more SaaS products are leveraging Serverless / FaaS technologies to greatly reduce the barriers to customer value.

Speakers
GB

Glenn Block

Glenn is a Director of Product Management at Auth0 where he focuses on SaaS Extensibility and Serverless architecture. Glenn is an active supporter of the OSS community and contributor to several OSS projects. He is a frequent speaker internationally, an organizer of several even... Read More →


Thursday November 2, 2017 9:00am - 9:20am
Atrium BR

9:20am

Keynote - OAI Panel- Lorinda Brandon (Moderator), Capital One DevExchange; Erin McKean, IBM; Darrel Miller, Microsoft; Ron Ratovsky, SmartBear; Tony Tam, Open API Initiative
Moderators
LB

Lorinda Brandon

Director, Developer Marketing, Capital One DevExchange
During the day, I spend most of my time talking, writing, and meeting about the API industry. I get to rub shoulders with some of the best technical minds in the world every single day… and I love it. I currently work as the Director of Developer Marketing for Capital One DevExch... Read More →

Speakers
avatar for Erin McKean

Erin McKean

Developer Evangelist, IBM
Developer Advocate, IBM | | Erin McKean is a Developer Advocate for IBM and loves talking about APIs to anyone who will stand still long enough. Before Node.js, she dabbled in Ruby, HyperCard, Perl, and Omnimark, and still finds herself writing bash scripts on a regular basis. E... Read More →
DM

Darrel Miller

Never Make Another Breaking Change, Believe me!, Microsoft
Darrel is a software developer at Microsoft working for the Azure API Management team. He has been building distributed business applications on the Microsoft platform for more than 20 years. He is an active member of the .NET community and OSS contributor. He is a member of the... Read More →
avatar for Ron Ratovsky

Ron Ratovsky

Swagger Developer Evangelist, SmartBear
Working with APIs for too long, gatherer of the first OpenAPI spec and a current TDC member. Driving the Swagger open source tooling around the spec.


Thursday November 2, 2017 9:20am - 10:20am
Atrium BR

10:20am

Morning Break
Thursday November 2, 2017 10:20am - 10:40am
Plaza Foyer

10:50am

Open Data vs. the World - Shelby Switzer, Healthify
"Despite open data's potential to change the world, it seems that developers and open data providers are constantly in an uphill battle to make open data not only available, but usable and actively used. The obstacles facing open data’s growth and adoption vary from technical infrastructure concerns, including maintenance, APIs, open data formats, to societal ones, including the ethical and security challenges of open data and the political climate shift in some countries causing antagonism towards open data.

In this talk, Shelby Switzer will dive into the origins and current state of open data globally and in the US, using concrete stories to illustrate the value of open data and its potential impact on our communities, governments, and businesses. She will explore the challenges facing the open data ecosystem, and discuss how key open source projects and standards, including Open API, have the potential to be instrumental in changing the game and positively impacting the open data movement."

Speakers
avatar for Shelby Switzer

Shelby Switzer

Head of Integrations, Healthify
Software engineer, public speaker, and veteran nomad, Shelby has dedicated herself to community work and civic hacking across four continents. She is obsessed with APIs, semantics, and connectivity, and has led API design, development, and consumption projects in a variety of ind... Read More →



Thursday November 2, 2017 10:50am - 11:10am
Pavilion West

10:50am

Supporting SDKs in 7 Different Programming Languages While Maintaining Sanity - Elmer Thomas, SendGrid
Many companies that provide an API also include SDKs. In this talk, learn from SendGrid’s Developer Experience Engineer, Elmer Thomas about how he re-built their 7 open source SDKs (Python, PHP, C#, Ruby, Node.js, Java and Go) to support 233 API endpoints. This tale involves automated integration test creation and execution with a Swagger/OAI powered mock API server, documentation, code, examples, CLAs, backlogs and sending out swag along with some insights on what should not be automated, like HTTP clients. He will dig into the technologies that made these automations possible along with lessons learned from the various programming communities.

Speakers
avatar for Elmer Thomas

Elmer Thomas

Developer Experience Engineer, SendGrid
Elmer completed a B.S. in Computer Engineering and a M.S. in Electrical Engineering at the University of California, Riverside. His focus was on Control Systems, specifically GPS navigation systems. He currently serves as the Developer Experience Engineer at SendGrid, leading, de... Read More →



Thursday November 2, 2017 10:50am - 11:10am
Pavilion East

10:50am

Machine Learning: What Are We Teaching? - Lorinda Brandon, Capital One
It's been well established that software design and development suffers from the biases of the humans involved. We all have natural biases that we can acknowledge but not undo. While we can adjust our traditional software products as needed in order to better represent and communicate with the end users of those products, what happens when the product we're building is basically a brain? This talk will discuss the diversity challenge in the tech industry and how that is shaping our AI and machine learning systems in ways that will be difficult to recover from.

Speakers
LB

Lorinda Brandon

Director, Developer Marketing, Capital One DevExchange
During the day, I spend most of my time talking, writing, and meeting about the API industry. I get to rub shoulders with some of the best technical minds in the world every single day… and I love it. I currently work as the Director of Developer Marketing for Capital One DevExch... Read More →


Thursday November 2, 2017 10:50am - 11:10am
Atrium BR

11:20am

Empowering Citizens Through Open APIs - Nitin Agarwal, Reliance Jio Infocomm Ltd.
"Governments around the world are facing a unique challenge these days. Citizens with the use of social media and omnipresent information, are more vocal and cohesive. Incase of Governments, especially in the emerging world, are slow in delivering Governance, results can sometime be catastrophic. Lately we have seen mass movements in various countries that has led to chaos.

What the Governments in the emerging world need is Proactive Governance. Proactive Governance, means delivering public services to the right audience before the need becomes dissatisfaction.

Open APIs build by the Government can take reactive Governance to Proactive Governance. And this is actually happening in India. Digital India is the ideal example of How a country can transform using Open APIs.

A part of Digital India initiative, Aadhaar is the largest Biometric Identity Database in the world with 1.15 Billion enrollments and counting. Authentication APIs on this database is transforming the public delivery system and ensuring transparency and targeted delivery of benefits. The APIs are further utilized by the Private sector for instant delivery of services like, getting a phone connection or opening a bank account. This has also enabled door step banking in the rural areas, which largely were unbanked.

Aadhaar, part of Digital India initiative, is transforming the public delivery mechanism. And it is just an “API”."

Speakers
NA

Nitin Agarwal

Asst Vice President, Reliance Jio Infocomm Ltd.
"Nitin Agarwal has been associated with eGovernance initiatives in India for over a decade now. His primary area of work has been implementing Digital India initiatives. Nitin worked with UIDAI and Accenture, and is subject matter expert in the area of Aadhaar (Digital Identity... Read More →



Thursday November 2, 2017 11:20am - 11:40am
Pavilion West

11:20am

Automate API Discovery in Big Organizations - Nicolas Grenié, Red Hat
"As companies are growing, more organizations start their digital transformation strategy. This transformation implies working with APIs and micro-services, mainly internal ones.

When the team has thousands of collaborators around the world with hundreds of teams producing APIs it's hard to keep track of all the services available.
There should be an easy way to find about all the available APIs, to help teams gain in efficiency and not duplicate someone's work.

In 2014, we launched in collaboration with Kin Lane, the APIs.json format, which should act as the robots.txt for APIs metada, making APIs easily crawlable and indexable.
As a demonstration we've launched a public search engine: APIs.io to demonstrate how this mechanism could work on public domain.

What we've learned for public APIs could be used for internal services. We will announced our newest version and progress to make APIs more discoverable inside companies."

Speakers
avatar for Nicolas Grenié

Nicolas Grenié

Developer Advocate, Red Hat
Nicolas is a Hacker in Residence at 3scale living in San Francisco. | | Nicolas built his first website in 2000 using Microsoft Word, and since them did not stop learning about programming. | | This "API freak" likes to try new languages and APIs all the time. | He also r... Read More →



Thursday November 2, 2017 11:20am - 11:40am
Pavilion East

11:20am

Diving Deep into the API Ocean with Open Source Deep Learning Tools - Paul Cray, APImetrics
"The world is full of seas of data. Some of these seas are created and exchanged by APIs; some of them are even about APIs. Since 2014, APImetrics has accumulated over 100 GB of data on API test calls made to over 5000 API endpoints by agents deployed in cloud locations on 5 continents.

There's a huge amount of insight trapped at the bottom of that sea of (in our case unlabelled) data. Getting at it would've been nearly impossible before the emergence of powerful open source deep learning libraries in the mid-2010s.

APImetrics will share how we chose a deep learning library and the data munging we did to get our data to work with the library. We will explain how we were able carry out unsupervised and semi-supervised learning and discuss the insights on global API performance and quality we were able to dredge from the bottom of our sea of data. We'll provide pointers on how organizations, from startups like APImetrics to megacorporations, can use deep learning to create oceans of knowledge from their own seas of data."

Speakers
avatar for Paul Cray

Paul Cray

Machine Learning Specialist, APImetrics
Dr Paul Cray is Machine Learning Specialist at APImetrics, the provider of the leading API and SLA performance and quality monitoring solution, where he applies advanced deep learning techniques to extract actionable realtime intelligence from API test call results. In a varied c... Read More →



Thursday November 2, 2017 11:20am - 11:40am
Atrium BR

11:50am

APIs in the Core of Open Smart City IoT - Hanna Niemi-Hugaerts, Forum Virium Helsinki / City of Helsinki
Smart Cities around the globe are levering IoT to make their cities run in a smoother, usable and environmentally friendly manner while budgets are getting tighter. While public sector IoT is creating business opportunities it has been noted that often these investments are resulting in siloed, closed solutions. Helsinki, like many other cities, has been active on open data, open APIs and engagement of third parties (businesses, developers) on digital service production. Cities in initiatives like Open and Agile Smart Cities and projects like Synchronicity and Select4Cities have now started moving forward with taking the lessons learnt following the same principles of openness in the IoT domain: engaging businesses and citizens through out the data value chain, enabling crowdsourcing of data, building IoT capabilities through hacklab functions, harmonizing southbound and northbound APIs and building an open source IoT platform in collaboration with other cities. To mention a few.

Speakers
avatar for Hanna Niemi-Hugaerts

Hanna Niemi-Hugaerts

Program Director, IoT, Forum Virium Helsinki / City of Helsinki
Hanna Niemi-Hugaerts (MA in New Media) works as a Program Director leading teams working on Forum Virium's new IoT projects mySMARTLife and SynchroniCity as well as teams boosting data-driven business through the Six City Strategy's Open Data spearhead project. | | During her... Read More →


Thursday November 2, 2017 11:50am - 12:10pm
Pavilion West

11:50am

Nom Nom: Consuming REST APIs - Tessa Mero, Cisco DevNet
Feeling hungry? You’ve came to the right place! As APIs have become increasingly more important and popular in usage in the past few years in web development, it is important to understand the basics of what they are and why to use them. I will be going over the basics: The What’s, Why’s, Where’s, and When’s. You will learn the basics of REST APIs and I will show you how you can use POSTMAN to test making REST API calls. By the end of this presentation, you’ll be able to go home and make REST calls on any API.

Speakers
TM

Tessa Mero

Developer Evangelist, Cisco DevNet
Tessa Mero is a Developer Evangelist for Cisco. She spends her extra time contributing on a leadership team for the Joomla! Project and has been involved with Joomla for the past 5 years. She runs the Seattle PHP Meetup and is the organizer of the Pacific Northwest PHP conference... Read More →


Thursday November 2, 2017 11:50am - 12:10pm
Pavilion East

11:50am

Building AI Powered APIs - Randall Hunt, Amazon Web Services

Operating and developing services backed by AI introduces new challenges for deliverability, monitoring, and availability. Requests have more nuance than 200 vs 500. As deep learning models learn on the fly your deployments are more frequent but also less granular. Automation becomes paramount to the success of your service. In this talk we’ll cover Rekognition, Lex, Macie, Lambda, and more. We’ll dive deep not just on how to build APIs on these services but also into how the services themselves are built.

Speakers
avatar for Randall Hunt

Randall Hunt

Developer Evangelist, Amazon Web Services
Randall Hunt is a Sr. Technical Evangelist at Amazon Web Services in Los Angeles. Prior to AWS, he wrote software for rockets and databases at SpaceX, MongoDB, and NASA. Python is his favorite language but he can sometimes be found in the dark realm of C++. Randall is an author a... Read More →


Thursday November 2, 2017 11:50am - 12:10pm
Atrium BR

12:20pm

Getting Your API House In Order - Ryan Day, General Services Administration
"Is your organization getting maximum impact from the technical talent and API experience that you already have? What is stopping you from turning that potential into results?

Ryan will share some of the steps that that GSA is taking in implementing an agency-wide API Strategy. Early successes include publishing API Standards, reviving an internal API Working Group, and creating an API documentation template and reference prototype API.

Learn about the journey that GSA is on, and how you can apply similar strategies across your organization."

Speakers
avatar for Ryan Day

Ryan Day

IT Specialist, General Services Administration
Ryan has worked on a variety of enterprise application development projects for GSA, with an emphasis on APIs, service-oriented architectures, and web development. Ryan recently spent four months on a special assignment for GSA’s Chief Technology Officer to implement the agency... Read More →



Thursday November 2, 2017 12:20pm - 12:40pm
Pavilion West

12:20pm

Developer Experience Strategy - What to (or not to) Automate? - Adeel Ali, APIMATIC

This session will be comprised of two parts: 

  1. A brief survey of the developer experience components provided by the most famous APIs. We'll elucidate the common patterns used by those APIs to engage developer communities at a massive scale.
  2. Using automation to provide formerly discussed components for any API. We'll highlight the features that take SDKs beyond mere API wrappers, and reactive code samples that greatly enhance developer experience. We'll also discuss the areas where automation does not work. The session will be concluded by a short demo of automatically building, customizing and updating an API portal, with all the DX components, using a machine readable description.

Speakers
avatar for Adeel Ali

Adeel Ali

Co-Founder & CEO, APIMATIC
Adeel is the founding CEO of APIMatic.io, which emerged out of his PhD research, and now have become a well known developer experience platform for APIs. Besides APIMatic, Adeel loves reading, travelling and playing Cricket.


Thursday November 2, 2017 12:20pm - 12:40pm
Pavilion East

12:20pm

Case Study: Cold Decision Trees- Shruti Patel

Disclaimer: This talk is about the models, processes, and algorithms that power machine learning APIs rather than about the API itself.

Machine learning is fast becoming ubiquitous, from large enterprises to small startups. In this talk, we’ll embark on a journey with a small risk management startup, and  we’ll talk about how snowflakes & trees and chickens & eggs came together to help the startup implement its own flavor of machine learning. This is the story of the cold decision tree and how it solved the cold start problem.

 


Speakers


Thursday November 2, 2017 12:20pm - 12:40pm
Atrium BR

12:40pm

2:00pm

How We Built a Thriving API Ecosystem at a 65-year-old Company - Rick MacConnell, Cox Automotive
Manheim is a 65 year old company and is the largest automotive wholesaler in the world. The company has used the IBM iSeries platform since the 1970's as a core part of it's brick and mortar business. Two years ago, we set out to transform the technology foundation at Manheim with a goal of accelerating developer productivity and flexibility. We started by establishing a vision for a developer-centric API alongside a cloud vision. The first system that we built uses Apache Camel which listens to streams of changes coming from each of the individual iSeries boxes at our brick and mortar locations and turns these changes into logical business events. Camel then routes these events to a series of Java Spring processors that handle them and deliver them on to interested subscribers. This system has been a critical addition and has transformed the way we build software. It has led both to our successful ability to integrate with third parties as well as being a core part of our ongoing ERP implementation. Following this, we developed an API cookbook that prescribes rules for the structure and behavior of our REST based entity centric API. Using this cookbook, we developed a foundational API catalog that gave developers outside of Manheim the ability to interact with key services including inventory and wholesale pricing. At the same time, we committed to creating a robust developer portal with a commitment that our API should pass the 15 minute test with developers. Our goal is that they should be able to go to our portal, read through the documentation and get code up and running in 15 minutes. Finally, building on the success of both our real-time event delivery system and our API, we built a system called Eventer. Eventer is a cloud native system that lets our partners use an API to establish subscriptions to events that they're interested in receiving. Using a variety of cloud SAAS tools and Java Spring code, we've built a self-service API driven system that allows third parties to subscribe to and receive events in real-time. Combining the three concepts; an API vision, event-driven data and the developer portal, we've built a thriving ecosystem that has taken on a life of it's own. We are now having to develop new support structures in order to service the growing customer base that is adopting our API. Additionally, we've succeeded in transforming the way we build software here. One of our internal partners used our real-time events to roll out a new business model across the country in three months. This would not have even been conceivable prior to the existence of our API.

Speakers
RM

Rick MacConnell

AVP Engineering, Cox Automotive
Rick MacConnell is a software developer who has worked on large-scale enterprise applications for the last 20 years. He has been with Cox Automotive for 16 years where he started working on AutoTrader.com. Over the past 3 years, he has been focused on building an API ecosystem at... Read More →


Thursday November 2, 2017 2:00pm - 2:20pm
Atrium BR

2:00pm

I Believe You But My Enterprise Don't: Adopting Open Standards in Enterprise Healthcare - Shelby Switzer, Healthify
To many of us in the API community, open standards seem like a no-brainer: they promote interoperability, extensibility, and longevity, all while helping you reap the benefits of being part of a larger ecosystem. These benefits include greater and more rapid adoption by developers and being in sync with and a contributor to best practices. But what happens when the clients consuming your APIs are enterprise healthcare companies, whose teams will develop integrations with your APIs regardless of best practices and who want things done their way rather than the open standard way? This talk draws on the speaker’s experiences integrating with enterprise healthcare systems to illustrate the value of projects such as the Open API Specification, open data model standards (e.g. Open Referral), and hypermedia formats, and how to communicate these benefits to reluctant enterprise clients.

Speakers
avatar for Shelby Switzer

Shelby Switzer

Head of Integrations, Healthify
Software engineer, public speaker, and veteran nomad, Shelby has dedicated herself to community work and civic hacking across four continents. She is obsessed with APIs, semantics, and connectivity, and has led API design, development, and consumption projects in a variety of ind... Read More →



Thursday November 2, 2017 2:00pm - 2:20pm
Pavilion East

2:00pm

Get to Know Your User for a Better API; A UX Approach to APIs - Ashley Chang, ReadMe
When building an API, we usually spend some time designing it, most of the time building it, and scribble out some instructions for how to use it at the end. We’re doing it wrong. Making our API this way means we start by thinking about ourselves and don’t think about who is using it until the very end. Instead, we should be thinking about users first. If we’re making this API for other people, we need to understand who the user is, what they know, and what they're trying to do. This lets us build an API that people will actually use, and docs that help them get the solution they want. This can be building features that make the docs better, but just as often it is pointing out the simple things people need to get started. No matter what, the first step is to talk to your users! With just a few questions to a few people, you can make your API infinitely better. With more and more APIs competing to offer similar services, a little attention to your users can give you a huge advantage.

Speakers
avatar for Ashley Chang

Ashley Chang

Product Manager, ReadMe
Ashley is a Product Manager at ReadMe. After studying at UC Davis, she joined ReadMe as the first employee to help create beautiful docs and easy to use APIs. She now helps shape product and user experience for ReadMe’s platform and docs around the world. Outside of work, she e... Read More →


Thursday November 2, 2017 2:00pm - 2:20pm
Pavilion West

2:30pm

REST API Microversions - Sean Dague, IBM
OpenStack ran into a challenge: how do you balance the ability to evolve a REST API, with backwards compatibility guarantees, and have it work the same across different deployments, when you have no control over when they are going to upgrade. The answer we came up with was labeled "Microversions", inspired by HTTP content negotiation. This talk will dig into the challenges of versioning REST APIs, as well as the unique challenges of versioning ones that expect to exist in interoperable public clouds. It will dive through ideas that were tried and retired in OpenStack, and describe in depth the microversion system that many OpenStack services now use. We'll look at what's been learned in 2 years of this in the field, and suggest how related approaches might be applied to other open source projects.

Speakers
avatar for Sean Dague

Sean Dague

Software Engineer, IBM
Sean Dague has been an Open Source developer for most of his professional life. He's worked on numerous Open Source projects over the years including SystemImager, OpenHPI, Xen, OpenSim, NFS Ganesha, and OpenStack. | | He's a core reviewer on Nova, Tempest, Devstack, Grenade... Read More →



Thursday November 2, 2017 2:30pm - 2:50pm
Atrium BR

2:30pm

Standing Taller with Technology: APIs, IoT, and the Digital Workforce - Matthew Plaks, Temboo
How can we extend everyone's technological reach, no matter where they're starting from? How can IT become a platform that lets everyone stand taller? I'll talk about the critical role APIs play in creating more digital workforces. As organizations spend billions on various digital transformation efforts, they need to empower more of their people, not just developers and IT staff, to understand and interact with their data and technologies through APIs. The key is providing tools to people that make APIs more accessible to more people. APIs enable all sorts of combinations and linkages between data and technologies, and giving people streamlined access to APIs enables them to combine and extend their own expertise in innovative ways. Illustrative examples from working in IoT and APIs include academic research projects in many disciplines and business implementations across industries.

Speakers
avatar for Matthew Plaks

Matthew Plaks

Temboo
Cares deeply about upskilling the global workforce, pushing back against the negative narrative that follows automation and emerging technologies (Machine Learning, AI, etc).



Thursday November 2, 2017 2:30pm - 2:50pm
Pavilion East

2:30pm

API Marketing: First Comes Usability, then Discoverability - Bill Doerrfeld, Nordic APIs
How would you market an API? Well, first you must design a usable service that caters to your developer experience. But even the best API needs a promotional boost. One way to do this is to maximize all routes toward making your interface naturally discoverable. In this presentation, I’ll outline strategies and tools that can be used to increase the exposure of an API, covering things like: * Examples of sandboxes, API playgrounds, and other types of usable interfaces found in well-designed dev portals throughout the API space. * Discoverability benefits of using machine readable API definitions. * Tooling that can aid in generating beautiful documentation and test consoles to appeal to developers. * Directory profiling: Increasing exposure in web API-specific directories like ProgrammableWeb, APIs.guru, and 10 others. * Content generation: Crafting search-engine-optimized descriptions of APIs from a copywriting sensibility and the power of graphic design trends and thought leadership to reinforce credibility. * Many other ideas on establishing communities and marketing APIs and SaaS on integral developer social channels.

Speakers
avatar for Bill Doerrfeld

Bill Doerrfeld

Editor in Chief, Nordic APIs
Bill Conrad Doerrfeld is an API specialist, focusing on API economy research and marketing strategy for developer programs. He is the Editor in Chief for Nordic APIs, a high impact blog and knowledge center for API providers. He was also formerly a Directory Manager & Associate E... Read More →



Thursday November 2, 2017 2:30pm - 2:50pm
Pavilion West

3:00pm

How We Doubled the Velocity of Our Developer Experience Team - Matt Bernier, SendGrid
We ruthlessly prioritize everything we do and automate away anything we have to do more than a couple times. This has helped the SendGrid DX team to maintain libraries for 7 different programming languages and their github communities with a single engineer. We challenge ourselves to always be working on the highest impact items for our users. Our goals are to maintain engagement with our developer community, manage our libraries at the highest possible level, all while sustaining our lean team.

Speakers
avatar for Matt Bernier

Matt Bernier

Developer Experience Product Manager, SendGrid
Matt Bernier is an avid proponent for maximizing the experience of developers with APIs. He gardens, bakes things, cans things, brews things, fathers things, manages products, and uses sriracha as if it were ketchup. He reads 50 books or more a year. On a business trip to Beijing... Read More →



Thursday November 2, 2017 3:00pm - 3:20pm
Atrium BR

3:00pm

How APIs Can Help Banks to Stay Relevant - Manfred Bortenschlager, Red Hat
"Traditional institutions in the financial services sector are heavily challenged by disruptive startups and squeezed by regulations like PSD2. By implementing API programs correctly, banks can revolutionize their business models and stay relevant.
We will cover how APIs can be used to secure and control access to a bank's data and services (programmable bank), discuss a reference architecture, give practical API program recommendations, and present some APIs in banking success stories."

Speakers
avatar for Manfred Bortenschlager

Manfred Bortenschlager

Director, Business Development for API-based Integration Solutions and API Management, Red Hat
Manfred's responsibilities include discovering and covering new markets, educating about the value of APIs, and about implementing effective API programs. | | His activities involve public speaking at relevant industry events, content creation such as ebooks and case studies... Read More →



Thursday November 2, 2017 3:00pm - 3:20pm
Pavilion East

3:00pm

Don't Repeat Yourself - Your API is Your Documentation - Michael Hibay, Baysong Services
"If you find yourself maintaining a set of documents explaining the use of your API, you haven't finished it's design yet. This talk will compare various strategies with examples, while discussing ways to determine the most appropriate method for your API.

We will explore OAS (Swagger), Json-LD, Schema.org, HAL, Hydra, Siren, Semantic profiles, and other formats while comparing their relative strengths and weaknesses. After these options, we will arm you with a series of questions which direct you to the appropriate tool for your API.

Discover how you can save considerable time and headaches by incorporating a self documenting method in your API design."

Speakers
avatar for Michael Hibay

Michael Hibay

hAPI evangelist, Architect, and Java Developer, Baysong Services
Michael Hibay is a hAPI Evangelist, architect, java developer, katharsis.io maintainer, bad guitarist, and terrible singer who is writing the hAPI specification. He has designed and contributed to APIs in Fintech, E-Commerce, tax services, and sports management industries. When n... Read More →



Thursday November 2, 2017 3:00pm - 3:20pm
Pavilion West

3:30pm

Contract-first API Development: A Case Study in Parallel API Publishing & Consumption - Chris Busse, APIvista
The idea of designing an API first, then having both the publishing developer teams and consuming client developer teams do their work in parallel is a pattern that the standards & tooling of the Open API ecosystem make worth considering. However, this approach is not without its challenges especially when it comes to governance and communication.

This session will present a real-world case study where this approach was executed successfully, going over how the work, teams, and deliverables were structured and presenting lessons learned that will be useful to anyone else considering this working model.

Speakers
avatar for Chris Busse

Chris Busse

CTO, APIvista
Chris Busse works at APIvista as CTO where he helps his clients design, publish, and support APIs. Before joining APIvista he lead the API Consumer Services team for the Capital One DevExchange platform, supporting internal and external business partners while developing new prod... Read More →



Thursday November 2, 2017 3:30pm - 3:50pm
Atrium BR

3:30pm

Lifting Legacy to the Cloud on API Boosters - Seth Lachner, Avantas, Inc
Congratulations, you have a project to migrate a large legacy software system to the cloud. Also it needs some updates and the clients have a whole list of feature requests. Are you experiencing feelings of dread or exciting visions of the possibilities? The good news is that it can and should be the latter. The Open API ecosystem makes it easier than ever to take on a project like this and be successful. In this talk Seth will introduce his team’s ongoing migration project as a case study. He will discuss the primary benefits of open APIs as part of the migration and how they contribute to velocity, visibility, team focus, and feature development. He will examine strategies for identifying APIs, validating APIs, and integrating APIs into a legacy migration project. He will then discuss the layers of a legacy application that APIs can be used to address (hint: more than you may think).

Speakers
avatar for Seth Lachner

Seth Lachner

Software Engineer/Architect, Avantas, Inc
Seth has been working in the software industry for 24 years in various roles including programmer, team lead, architect, configuration manager, system admin, and technical liaison. He has spoken at conferences around Nebraska including Nebraska.code (2015), Heartland Developers C... Read More →



Thursday November 2, 2017 3:30pm - 3:50pm
Pavilion East

3:30pm

Things I Wish People Told Me About Writing Docs - Taylor Barnett, Keen IO
"Have you ever read a piece of API documentation and thought it was a mess? Maybe it was incomplete, badly organized, or in general just not great. There’s a good chance it was quickly thrown together by someone who had no idea what they were doing. In this talk, we will discuss the things Taylor wished she knew before starting to dive into the world of writing docs and developer focused content.

We will discuss how people actually read documentation, different types of docs and when they are appropriate, and docs navigation techniques using design principles. Also, we will learn more about the importance of focusing on language, including why naming matters and error messages as a form of documentation. Lastly, we will talk about tools and tactics to enable other team members to write documentation."

Speakers
avatar for Taylor Barnett

Taylor Barnett

Community Engineer, Keen IO
Taylor Barnett is a Community Engineer at Keen IO, an API platform that allows you to stream, compute, and visualize events from anything connected to the internet. She’s passionate about building great developer experiences with an emphasis on empathy and inclusion within docu... Read More →



Thursday November 2, 2017 3:30pm - 3:50pm
Pavilion West

4:00pm

Wrap-up Session
Thursday November 2, 2017 4:00pm - 4:15pm
Atrium BR