2018-10-05 Meeting Notes

Owned by Steven Maglio
Last updated: Aug 15, 2019 by Diana Antova
4 min read

Date

Attendees

Steven Maglio
(tick)
Ian Lessing (Unlicensed)
(tick)
Vince Nievares
(tick)
Kevin Wu
(tick)
Former user (Deleted)
(error)
Diana Antova
(tick)
Reinard Dolleschel(tick)

Goals

  • Updates on continuing development
  • Review, organize and add to work items

Discussion items

TimeItemWhoNotes
Welcome
  • Greetings and salutations

General Info
  • Diana Antova met with Matt Hall to talk further about Apigee and Heroku. Matt has asked Katie Mankins to document the need for a development platform and possible options, so we can discuss with campus app dev management - Masha, Yaheya, Josh Andersen.
  • Diana Antova Matt asked Katie to start looking at Apigee from a production support point of view, and Diana shared the confluence space and the roadmap with her.
  • Steven Maglio Identity meeting update
    • identity is willing to make modifications to accommodate Apigee service accounts. 
    • they want a list of attributes for the service accounts. 
    • JWT tokens - Yaheya is supportive
    • Identity is starting to work on the backlog for their system. Upgrading the version of CAS is on the list. it will take a while to get the functionality we need implemented.
    • We want the campus oauth so we can authenticate the actual user. If we use Apigee's we cannot authenticate the user, just the application.
    • as long as it is a server app, we don't need to authenticate the user. For mobile app and web application we will need to authenticate the use as the account can be hacked.
    • decision: we wait for campus oAuth. it will give users one application account, versus one with ldap and one with apigee. it will give us a way to trust the authenticated user.

Jira tickets review


Service Account
  • Attributes we want on it
    • ucsbCampusId
    • Department
    • Contact Name (probably primary person responsible)
    • Contact Email (probably a shared email address)
    • Callback App Url (for use with SSO)
    • ApigeeClientId (UID from Apigee)



Workflow - Access RequestDiana Antova

Workflow - Publish a New APIDiana Antova
  • Dev Portal Documentation - How To Use the Publishing Workflow (APIGEE-119) - Ian Lessing (Unlicensed)
  • Diana Antova Test the workflow with the Registrar office (today)
  • API publishers - fill in the form for each API, and have them approved by the business owners. 
  • How do we allow logged in users to access the form?



@apibot - Powershell Conversion & HostingKevin Wu
  • Working on Kevin's Computer (node 8.9.X) (APIGEE-105 & APIGEE-101)
  • Apigee Authorization Module (AuthApigee)
  • Replacement Functionality Progress Update
    • apps 
      • apps (no|approved|revoked|pending|all)
      • apps (approve|revoke) email developerApp
      • apps (approve|revoke) email developerApp apiProduct
      • apps search
      • apps users?
    • devs
      • devs created <days=1>
    • targetserver
      • targetserver list <env>
      • targetserver (add|update) <env> <name> <hostname>
      • targetserver delete <env> <name>
    • companies
      • Kevin Wu will implement?
      • Need to build requirements
      • Need to build use cases
      • Need reporting that will display in developer.ucsb.edu
      • Need annual clean up times
  • Get operational on GCP
    • Kevin Wu has determined that GCP is not the right platform for the bot because of the difficulty in setting it up.
    • Kevin Wu tried out Heroku and found it really easy to work with. He wants to know if we can use this?
      • Kevin Wu will write-up a request form and submit it to Matt Hall/Elise Meyer.
  • Heroku for deployment

Google AnalyticsChristian Montecino
  • Talk about the full details of what we want to have google analytics track

Action Items From Previous Meeting



API Access Expected UsageFormer user (Deleted)
  • Expected Usage Text and Legal-ize (Terms of Service)
  • What do we do with separated employees
  • on App create send the legal text to the developer


  • Do we have this documented? Has this been turned into an Apigee Ticket?

API Proxy Standards

Steven Maglio

  • Drop Minor Versions as a requirement
  • Write standard approach for departments that want to use Minor versions; using the approach is also optional.


  • Do we have this documented? Has this been turned into an Apigee Ticket?

Developer Portal Front Page Updates
  • In About Section
    • Diana Antova - Add page about winning the Sautter Award
    • Diana Antova - If Diana thinks its a good idea to add it to the main page, then she will work with Denise to do so

API VersioningSteven Maglio
  • Do we have this documented? Has this been turned into an Apigee Ticket?

DevOps DaysFormer user (Deleted)

CSF notificationDiana Antova
  • Email csf to notify developers of existing APIs and the roadmap APIGEE-155

API Health checkDiana Antova
  • Steven Maglio will setup a preproxy flow hook for healthchecks
  • Steven Maglio will compare Pingdom and Uptime Robot
  • Reinard will check out Zabbix

API DictionaryDiana Antova
  • API dictionary and data governance - define field meaning, naming conventions (Bruce Miller)

Improved DocumentationDiana Antova
  • More documentation, need testers that will help us define the optimal set. Can we have a link to a documentation page?
    • dedicate a meeting to documentation once a month, try it on  

Email GroupsReinard Dolleschel



  • API select page - fix layout (denise)

Action items

  •