3 day course 
Partner of the Year 
Private 
Certificate of Attendance On this course, you’ll take an API originally designed for an on-premises legacy application use and modernise it for the cloud using Apigee X.
You’ll follow Google Cloud best practices alongside Apigee X to design a secure, scalable and resilient platform for your company’s needs, taking into account security vulnerabilities, client access, reliability and scalability, as well authentication and API keys.
Throughout the session, you’ll discuss best practices in how to harden API’s through the use of policies and Cloud Armor, as well as learning to mitigate external threats with reCAPTCHA Enterprise.
You’ll also cover Apigee Analytics to show custom data capture and reporting, and leverage Cloud Code in your development environment.
Our Building Solutions with Apigee X course is offered as a private training session that can be delivered virtually or at a location of your choice in the UK.
Course overview
Who should attend:
This course is suitable for:
- Application developers, API engineers, solution architects, security engineers, and devOps engineers
- Anyone responsible for the design, implementation, or management of APIs, API products, or digital products that leverage APIs
What you'll learn:
By the end of this course, you will be able to:
- Expose security vulnerabilities typically found in legacy API’s
- Secure the backend of your legacy application using mutual TLS
- Secure API access with API Keys
- Design applications with an API first design using the OpenAPI specification
- Integrate your API proxy with the Cloud Data Loss Prevention (DLP) API
- Best practices for site reliability with Apigee using monitoring and logging
- Modernise application deployment using Cloud Run and Cloud Build
- Authentication using API Keys and Firebase Authentication with Apigee
- Harden APIs using Apigee Policies and Cloud Armor
- Mitigate external threats with reCAPTCHA Enterprise
- Leverage Apigee Analytics to show custom data capture and reporting
- Leverage Cloud Code in your development environment to locally emulate Apigee
- Use Apigee Integration to improve connectivity with other services in Google Cloud
Prerequisites
To get the most out of this course, you should have completed our Developing APIs with Google Cloud's Apigee API Platform course or have equivalent experience with Google Cloud and Apigee.
Course agenda
Module 1: Why Apigee X?
- Why Apigee X?
- Introduction to use case - who are you?
- One / two-way TLS
- Getting started
- Lab: Introduction to the legacy application and Apigee
Module 2: The Target
- Implement an mTLS gateway
- API Keys
- Control your API response
- Lab: The target
Module 3: API First Design with OpenAPI
- API First Design
- The rest API
- What is OpenAPI?
- Apigee Debugging
- Lab: API first design with OpenAPI
Module 4: Integrating External Services
- Cloud data loss prevention API (DLP)
- Apigee ServiceCallout policy
- Message logging / cloud logging
- Uptime checks
- Alerting policy
- Lab: Integrating external services
Module 5: Consuming Apigee Resources
- Introducing the client application
- Application build tools
- Firebase authentication
- Apigee security policies
- Lab: Integrating a client application
Module 6: Hardening Your API
- API security vulnerabilities
- JSON threat protection policies
- Cloud Armour
- The hacker tools
- Lab: Hardening your API
Module 7: External Threat Mitigation
- reCAPTCHA enterprise
- Apigee data collection
- Apigee custom reports
- Lab: External threat mitigation with reCapture enterprise
Module 8: Expand Your Apigee Toolset
- The Apigee Management API
- API proxy deployment options
- Local development using cloud code
- Apigee emulator
- Development workflow
- Lab: Developing for Apigee using cloud code
Module 9: Apigee Integration
- Integration to application integration
- Triggers
- Tasks
- Apigee integration policies
- Lab: Expanding your API with Apigee Integrations
Module 10: Summary
- Debrief
- Apigee flavours - X or Hybrid
- What's next?