• 💡 What is Azure API Center?
  • 📝 API Governance & Azure API Center
  • 📝 API Analysis in Azure API Center (Overview)
• 🚀 How to Run
  • 🔧 Configure your environment
  • 🔧 Running the sample using the Azure Developer CLI (azd)
  • 🔧 Configure & run your function locally
• 📦 How to deploy
• 📄 Custom Ruleset
• ✏️ Contributing
• ☀️ Bugs & Issues & Feedback
• 🚧 Code of Conduct
• 👌 Trademark Notice
• 🔍 Telemetry

Azure API Center is a service that helps you develop and maintain a structured inventory of your organization’s APIs. With API Center, you can track all of your APIs in a centralized location, regardless of their type, lifecycle stage, or deployment location. API Center enables API discovery, reuse, and governance empowering API Platform Teams.

API governance is a critical aspect of managing APIs across an organization. It involves establishing and enforcing policies and procedures that guarantee the quality, consistency, security, and compliance of APIs. Effective API governance not only maximizes the value of an organization's API portfolio but also reduces complexity, eliminates redundancy, and mitigates potential risks.

For API Platform Teams, governance is crucial as it guides them in designing, building, and deploying APIs that align with the organization's objectives, standards, and best practices.

To facilitate robust API governance, we're excited to introduce API Analysis in Azure API Center. API Analysis employs API linting, a technique that validates your API specifications against a predefined set of rules or standards. With API Analysis, you can ensure your APIs adhere to your organization's guidelines and best practices, making them consistently secure and compliant.

API Analysis currently supports OpenAPI v2, v3.x, and AsyncAPI specifications uploaded as JSON or YAML files.

Here is a high-level overview of how API analysis works in Azure API Center

Before you get started, make sure you have the following requirements in place:

• An Azure account with an active subscription. Create an account for free.
• Node.js 18.x or above. Use the node --version command to check your version.
• TypeScript 4.x. Use the tsc -v command to check your version.
• Visual Studio Code on one of the supported platforms.
• The Azure Functions extension v1.10.4 or above for Visual Studio Code.
• Azure Functions Core Tools v4.0.5382 or above.
• Azure Developer CLI.
• Azure CLI.

The Azure Developer CLI (azd) is a developer-centric command-line interface (CLI) tool for creating Azure applications.

After logging in with the following command, you will be able to use the azd cli to quickly provision and deploy the application.

# Authenticate with Azure Developer CLI
azd auth login

# Authenticate with Azure CLI
az login

Then, run azd up to provision all the resources to Azure and deploy the code to those resources.

azd up

Enter an environment name and select your desired subscription and location. Then choose whether to create the monitoring resources. If you want to use an existing api center resource, pass the values for apiCenterName and apiCenterResourceGroupName. Otherwise leave them blank to create a new one. Wait a moment for the resource deployment to complete. Then you can upload your own api definition for test.

There are four scenarios:

1. New APIC with monitoring. You need to leave apiCenterName and apiCenterResourceGroupName blank and set useMonitoring to "True".
2. New APIC without monitoring. You need to leave apiCenterName and apiCenterResourceGroupName blank and set useMonitoring to "False".
3. Existing APIC with monitoring. You need to fill in apiCenterName and apiCenterResourceGroupName with an existing resource and set useMonitoring to "True".
4. Existing APIC without monitoring. You need to fill in apiCenterName and apiCenterResourceGroupName with an existing resource and set useMonitoring to "False".

(Optional) You can also set the Env variables manually using the following command to skip setting them during the azd up process.

azd env set USE_MONITORING <true/false>

azd env set APIC_NAME <your-api-center-name>

azd env set APIC_RESOURCE_GROUP_NAME <your-api-center-resource-group-name>

You can also run the sample directly locally (See below).

• Clone the APICenter-Analyzer repository to your local machine.
• Open the Project in Visual Studio Code
• Set a breakpoint
• To start the function locally, press F5 or the Run and Debug icon in the left-hand side Activity bar. The Terminal panel should display the Output from Azure Functions Core Tools.
• Follow the instructions in Test your Event Grid handler locally to trigger the function.

Follow the instructions in Quickstart: Create a function in Azure with TypeScript using Visual Studio Code. Start from the "Sign in to Azure" section and complete all subsequent sections.

This template provides you with the default OAS (OpenAPI Specification) ruleset from Spectral. To see the exact rules within the ruleset, see OpenAPI Rules.

If you want to customize your Ruleset for analysis, simply swap out the default ruleset file oas.yaml located in {workSpaceFolder}/resources/rulesets with any valid Spectral ruleset file. We accept all valid Spectral formats (YAML, JSON, and JavaScript). Afterward, head over to the {workSpaceFolder}/src/constants.ts file and update the RulesetFileName constant with your chosen ruleset file name.

See the contribution guidelines for ideas and guidance on how to improve the template. Thank you!

We Love Hearing From You!

Your feedback is invaluable to us, and we encourage you to share your thoughts and suggestions in the repository's Issues section. You can also report bugs or submit feature requests there. Rest assured, we’ll be keeping a close eye on your input to continuously improve. While we’re dedicated to monitoring these issues, please note that this channel is not part of our Microsoft Azure Service Support.

Microsoft Azure Support assistance is limited to the initial setup of the Azure Function app that runs the linting engine. Best effort support is provided for problems that are caused by environmental factors, such as (but not limited to): hosting platform, development environment, network configuration.

If you need technical assistance with extending the linting engine or improving existing rules , please leverage existing technical communities such as Stack Overflow. We don't provide support through GitHub Issues.

We welcome and appreciate community contributions.

This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact [email protected] with any additional questions or comments.

Trademarks This project may contain trademarks or logos for projects, products, or services. Authorized use of Microsoft trademarks or logos is subject to and must follow Microsoft’s Trademark & Brand Guidelines. Use of Microsoft trademarks or logos in modified versions of this project must not cause confusion or imply Microsoft sponsorship. Any use of third-party trademarks or logos are subject to those third-party’s policies.

Data Collection. The software may collect information about you and your use of the software and send it to Microsoft. Microsoft may use this information to provide services and improve our products and services. You may turn off the telemetry as described in the repository. There are also some features in the software that may enable you and Microsoft to collect data from users of your applications. If you use these features, you must comply with applicable law, including providing appropriate notices to users of your applications together with a copy of Microsoft’s privacy statement. Our privacy statement is located at https://go.microsoft.com/fwlink/?LinkID=824704. You can learn more about data collection and use in the help documentation and our privacy statement. Your use of the software operates as your consent to these practices.

MIT