Agile Information Sharing Through API Management with The J.M. Smucker Company

ca Securecenter

Agile Information Sharing Through API Management with The J.M. Smucker Company

Bob Covington

SCT06S #CAWorld

The J.M. Smucker CompanyDirector Enterprise Architecture

2

Abstract

In the new application, economy it’s the successful organizations that can release and update apps faster, optimize the user experience and innovate to stay ahead of the competition. But it’s the most agile and secure information sharing models that will keep that competitive software edge. Please attend this session to hear Bob Covington, Director Enterprise Architecture, Information Services at The J.M. Smucker Company, discuss the value they received from implementing a powerful API Management and Security solution to meet their mobile app and data sharing business objectives. A new generation of API management capabilities are now available to drive business forward while allowing the enterprise to secure information with a fraction of the time required by traditional methods.

Bob Covington

The J.M. Smucker Company

Director Enterprise Architecture

3

Agenda

CA API GATEWAY IMPLEMENTATION ARCHITECTURE

USE CASE 1 – MOBILE APPLICATION GATEWAY

USE CASE 2 – CLOUD SSO INTEGRATION (SAML)

USE CASE 3 – REST – PLSQL GATEWAY

USE CASE 4 – THIRD-PARTY DATA INTEGRATION

2

3

4

5

6

SMUCKER’S OVERVIEW & BUSINESS DRIVERS1

4

The J.M. Smucker Company

For more than 115 years, The J. M. Smucker Company has been committed to offering consumers

quality products that bring families together to share memorable meals and moments.

Today, Smucker is a leading marketer and manufacturer of fruit spreads, retail packaged coffee,

peanut butter, shortening and oils, ice cream toppings, sweetened condensed milk and natural foods

products in North America.

Its family of brands includes Smucker's®, Folgers®, Dunkin’ Donuts®, Jif®, Crisco®, Pillsbury®, Eagle

Brand®, R.W. Knudsen Family®, Hungry Jack®, Millstone®, Café Bustelo®, Café Pilon®, truRoots®,

White Lily®, Martha White® and Sahale Snacks® in the United States, along with Robin Hood®, Five

Roses®, Carnation® and Bick's® in Canada.

5

Smucker’s Business Drivers

Securely connect mobile apps to enterprise data.

Improve end-user experience for access to cloud applications.

Standardize access to legacy enterprise data repositories.

Enable “just-in-time” access to products by third parties.

Improve supply chain efficiencies

with seamless connectivity.

Create an agile software

organization through integration.

Grow user adoption through better user

experience.

Improve employee productivity through

mobility.Initiatives

6

CA API Gateway Implementation Architecture

API Gateway Cluster

Mobile

Inte

rnet

Fir

ewal

l/R

ou

ter

Mo

bile

ASA

V

PN

F5 L

oad

B

alan

cer CA API Gateway

CA API Gateway

Smu

cker

Ap

plic

atio

n/D

atab

ase

Serv

ers

DesktopESM

Client

API Portal(Shared)

External Apps/

Customers

7

Use Case 1 – Mobile Application Gateway

Challenge

Smucker needed a secure way to access corporate data through mobile devices. We required support for thick and thin mobile clients, the ability to log access, protect against malformed request and normalize the security context of a number of back end systems to a single authentication scheme.

Approach

Through a combination of an autoconnect VPN and the API Gateway, all mobile access is controlled through a single access point.

Primary Access Methods:

• REST APIs for “thick” client mobile applications

• HTML 5/Java Script Proxy for thin client applications

Benefit

Extremely secure access to corporate data through mobile devices.

The ability to onboard new mobile applications in a fraction of the time of previous methods

Abstraction of the API from the back-end to isolate changes in the back-end from mobile applications

8

Use Case 2 – Cloud SSO Integration (SAML)

Challenge

Enable single sign-on access to cloud applications.

The Cost and Complexity of traditional enterprise single sign-on tools was prohibitive.

Approach

Leverage a combination of Integrated Windows Authentication, Microsoft Active Directory and SAML Authentication with CA API Gateway to provide seamless authentication with our cloud providers.

Benefit

Implementation of CA Single Sign-On with our existing Microsoft Active Director infrastructure.

One Password

9

Use Case 3 – REST - PLSQL Gateway

Challenge

Smucker extensively uses E-Business Suite as our ERP solution. As such, much of our business logic is embedded in PLSQL Stored Database Procedures. We needed a way to leverage this business logic in a more efficient way through Web services.

Approach

Utilize the CA API Gateway to create REST APIs that leverage database calls using JDBC to call Oracle PLSQL Stored Procedures. CA API Gateway leverages AD authentication on the API side and database authentication on the PLSQL side.

Benefit

The ability to leverage a significant repository of “legacy” PLSQL code in modern applications through Web services.

10

Use Case 4 – Third-Party Data Integration

Challenge

Batch-based pushes of data to third parties results in potentially stale data

Resource-intensive process to maintain and test interface code when changes occur or add new third parties

Tightly coupled ETL code tied to applications and data models

Approach

Leverage the CA API Gateway to publish data access Web services for third parties to securely pull data from our systems.

Simpler to maintain and test when changes occur

Loosely coupled, provides flexibility to change

Adding new third parties requires little or no work

ETL Code

App

Bat

chThird Party

Bat

chThird Party

ETL Code

App

Third Party

Third Party

Published API

CA

AP

I G

atew

ay

11

For More Information

To learn more about Security,

please visit:

http://bit.ly/10WHYDm

Insert appropriate screenshot and text overlayfrom following “More Info Graphics” slide here;

ensure it links to correct pageSecurity

12

For Informational Purposes Only

This presentation provided at CA World 2014 is intended for information purposes only and does not form any type of warranty.

Content provided in this presentation has not been reviewed for accuracy and is based on information provided by CA Partners

and Customers.

Terms of this Presentation