Api governance in Apigit




How to find API governance?

When you choose to edit your spec file, you will find several different views. One of them is called Governance. In this view, you will see the results of an audit and be able to provide comments for each warning or error based on the rules you have set.


What will API governance help to do?

Here are the key points for API best practices:

  • Info: Make sure each API has essential properties like title, description, and other necessary information.

  • Versioning: Enforce the use of standard semantic or date-based versioning for each API.

  • Operations: Ensure that each individual operation includes a summary, description, and id.

  • Parameters: Standardize the format of parameter names and ensure that all parameters have appropriate descriptions.

  • Responses: Advocate for a common set of status codes, media types, and schema responses across APIs.

  • Schema: Standardize all request and response schemas using JSON Schema components.

What's next?

Currently, we have a fundamental rule named OpenAPI Best Practice. In the future, we plan to introduce additional rule sets, including OWASP Top 10 Security and custom rule sets. Stay tuned for these upcoming additions.

API governance encompasses more than just design and standards; it revolves around empowering people and maximizing the value of APIs. By utilizing automation, workshops, and training sessions, API governance aids users in developing security measures, product definitions, and implementation strategies. To ensure its effectiveness, it is crucial to acknowledge all the components and implications of API governance. For further guidance, stay tuned to the Apigit blog for upcoming posts on essential API governance topics.