Return to Enriching the event's payload.
In this section, we will create an API Management (APIM) layer that will help add extra security and auditing to our Functions. To keep it simple, we will rewrite our function URLs from something like
https://streamer-utils.azurewebsites.net/api/HttpTrigger1?timestamp=1552309994&code=vWfasFDFerSFDGC1UgbfA423rfYctKHVVgdMAF2FWr7D3rfsFSdgEt343=
to something like
https://streamer.azure-api.net/utils/ConvertTimestamp?timestamp=1552309994
Section Outline
-
Click on
Create a resourceand find theAPIM Managementservice.
-
Click
Create.
-
Fill in the form, giving your service a globally unique name. Select the workshop resource group and a preferred location. Upon successful validation, click
Create.
Note: If you were directed here an effort to preload the service, please return to the section you were working on; the remainder of this workshop will depend on services created in prior sections.
-
Once the API Management service has been successfully deployed, head on over to the
APIssection. We will now import our functions into APIM add some usage policies. Click on+ Add API, followed byFunction App.
-
Click on
Browse.
-
Click on the
Function Appoption; select the app and hitSelect.
-
The functions in the Function App should be listed. Select the functions you want to make available via APIM, and hit
Select.
-
Expand the metadata editor by clicking
Full. Add some metadata to your collection of APIs; ensure that you have a product selected before hittingCreate.
-
You should see your newly created set of APIs; select the collection and click on
Test. You may want to keep an extra browser tab handy as you will do a lot of back-and-forth betweenDesignandTestsections.
-
We will now do some debugging to see what's really happening under the covers. Click on the
GETAPI and add thetimestampparameter. Notice how the request URL updates as you add query parameters. ClickSendto make the HTTP request.
-
The output is printed in the
Messagelog. You can also view more detailed info by switching to theTrace.
-
We will now make the necessary set of changes to transform our API's URL. In our APIM designer, click on the
Editicon under theFrontendsection.
-
You will be presented by a JSON document. Find the
pathskey, and update its value to:{ "/ConvertTimestamp": { "get": { "description": "A utility to help with the conversion of Unix timestamps into human readable DateTime objects.", "operationId": "get-httptrigger1", "summary": "ConvertTimestamp", "parameters": [ { "name": "timestamp", "in": "query", "required": true, "type": "string" } ], "responses": {} }, "post": { "description": "A utility to help with the conversion of Unix timestamps into human readable DateTime objects.", "operationId": "post-httptrigger1", "summary": "ConvertTimestamp", "parameters": [ { "name": "", "in": "body", "schema": { "example": "{ \"timestamp\" : 1552309994 }" } } ], "consumes": [ "application/json" ], "responses": {} } } }
-
What did we just do in the previous step? We updated the description of each operation and provided information on expected inputs (query parameters and body). We also changed the signature of the endpoints from
/HttpTrigger1to/ConvertTimestamp; these changes should now be visible in the endpoint listing. We need to make one more change before our revised endpoints are functional. Click on+ Add policyin theInbound processingsection.
-
Add the following as an inbound policy and hit
Save.<rewrite-uri template="/HttpTrigger1" />
-
Head back to our
Testsection to test out the changes we just made. You'll notice that some information is already preloaded; this is the result of the JSON update (for the API definition) we made earlier.
-
Again, can see the output of our request here. Tou can also step into the
Traceto see where the URI is being rewritten.
-
To view a policy that has rate limiting enabled, head on over to the
Productssection of the service and select theStarterproduct. Would you like to add try adding rate limiting to your service? Give it a go...
Move on to Review and next steps.