API Runtime Services

API Runtime Services is deployed to on-premise data centers utilizing existing investments in hardware, storage, network, and security infrastructure. Based on industry standards such as Docker and VMware virtualization, this deployment option provides the highest level of security and compliance capabilities. API Runtime Services is provided using docker images or an installable virtual machine image contains the entire software stack needed for operation of the API Runtime. No other software components such as applications servers or databases need to be provided by the customer. Other than your virtualization solution such as VMWare, no other software licenses are required to host API Runtime Services.

Architecture

The API Runtime platform runs in a dedicated or shared VMware hosting environment consisting of industry standard servers, network switches, and Network Attached Storage (NAS) devices to provide a highly reliable and scalable platform. Configuration of the virtual machines and launching of the API Runtime virtual machine image is handled by VMware vCenter.

API Runtime platform may also be deployed to Docker capable physical or virtual machines provided by the customer.Each virtual machine will run multiple API Runtime containers as shown in the diagram below. The minimum requirements for CPU, memory and storage should be allotted to each virtual machine to provide optimal performance. Application data is stored in a distributed database spanning multiple VMs. Virtual machine images and application data files are stored on the shared Network File System (NFS) service provided by the NAS device.

Networking

Each virtual machine requires a Private IP address in order to perform load balancing across multiple servers. Applications accessing the cluster from outside of your corporate network will be using HTTPS port 443. A Public IP Address is required for each instance of the API Runtime Services server in the data center. You will need to provide these IP Addresses.

Security

The on-premises installation of API Runtime services may contain other VMs, therefore, it is recommended to configure the virtual machines on a separate VLAN to isolate the traffic for security purposes. All communications between the API Runtime servers is encrypted with SSL regardless. Application data stored within the database and application data files are encrypted using the file system encryption mechanism provided by the NAS/RAID device.

Related Links