You can integrate the Cequence Unified API Protection (UAP) platform with an Azure API Management (APIM) environment in several ways depending on the desired outcome and goals.
This article discusses setting up the integration in passive mode, where the integration captures and forwards traffic to the ingestion API of the Cequence UAP platform for analysis. In this mode, the Cequence UAP platform provides bot detection and API traffic analysis, including sensitive data exposure and potential OWASP API issues.
This diagram shows traffic flow throughout your environment.
-
An Azure APIM receives the request
-
The plugin captures the request metadata .
-
Request is send over to upstream applications
-
APIM Receives the response from Upstream
-
The plugin captures the response metadata
-
Azure APIM gives the response back to the clients.
-
The Azure Global policy plugin asynchronously sends copies of the captured transactions to the Cequence Bridge.
-
The cequence bridge then sends it to the UAP platform's traffic ingestion API.
Once ingested, the Cequence UAP platform analyzes the transactions.