Learning Center
Modern applications depend on APIs to connect services, platforms, and users at scale. Explore how API infrastructure enables reliable traffic management, security, governance, and operational visibility across the API lifecycle, from foundational concepts to cloud-native architectures.
API infrastructure learning map
Foundations
API 101 and API Gateway
Platform
Management and Governance
Operations
Security and Observability
Extensions
AI Gateway and emerging topics
API infrastructure is the shared technical and operational foundation used to expose, secure, manage, observe, and govern APIs across applications and services. It combines runtime traffic handling with lifecycle management, policies, workflows, and visibility teams need to operate a scalable API ecosystem.
Modern organizations rarely operate APIs from one team or one environment. Shared infrastructure helps distributed teams serve internal and external consumers without losing control of security, reliability, or developer productivity.
Shared controls keep ownership, lifecycle, and operations consistent as APIs spread across teams, clouds, services, and partners.
Central standards reduce inconsistent authentication, authorization, documentation, and compliance practices across teams and APIs.
Traffic control, observability, and self-service workflows help microservices and Kubernetes environments change without losing reliability.
API infrastructure combines runtime traffic handling, lifecycle management, governance, security, and observability. These capabilities work together, although organizations often mature them at different stages.
Gateway Fundamentals
Route requests, enforce authentication, and apply traffic policies through a controlled API entry point.
API Lifecycle
Coordinate API design, publishing, discovery, consumption, and operations across the complete API lifecycle.
Governance & Compliance
Define ownership, standards, policies, and compliance controls for consistent API practices across teams.
Security & Access
Protect APIs with authentication, authorization, access controls, threat prevention, and enforceable security policies.
Reliability & Operations
Track traffic, latency, errors, and usage so teams can troubleshoot and improve API reliability.
This section separates the runtime request path from the controls around it, then shows how the same model is applied in microservices, enterprise platform, and cloud-native environments.
The gateway is the runtime enforcement point, but it is only one part of the wider infrastructure used to operate APIs.
Applications, developers, partners, internal services, and machine clients.
Routing, authentication enforcement, request processing, limits, and policy execution.
Business services, Kubernetes workloads, legacy systems, data services, and APIs.
These capabilities coordinate how APIs are designed, governed, secured, observed, and improved around the runtime path.
A gateway provides a controlled entry point between API consumers and distributed services.
Web, mobile, partner, and service consumers.
Routes traffic and enforces shared runtime policies.
Distributed services owned and deployed by API teams.
An enterprise API platform coordinates people, standards, and shared capabilities. It is an operating model rather than a runtime request path.
Define standards, policies, tooling, and shared infrastructure for the organization.
Design, publish, own, and operate API products using the shared platform and standards.
Developers, partners, and internal teams discover and use APIs through documented, controlled access.
Shared API infrastructure applies consistent controls across dynamic Kubernetes and container environments.
Internal and external API consumers.
Traffic control, policies, discovery, and operational visibility.
Containerized workloads across clusters and environments.
Effective API infrastructure requires more than selecting a gateway. Architecture standards, operating practices, and feedback loops keep APIs secure, reliable, and usable as the ecosystem grows.
Design scalable API architectures around clear runtime traffic entry points.
Read API Gateway GuideEstablish API governance standards for ownership, lifecycle, and consistency.
Read API Governance GuideSecure API access with authentication, authorization, and policy enforcement.
Explore Zero-Trust SecurityMonitor API performance, reliability, errors, and usage trends.
Explore ObservabilityImprove developer experience with documentation, catalogs, and self-service workflows.
Read API Management GuideApply consistent controls across cloud-native clusters, services, and environments.
Explore Kubernetes MigrationStart with the fundamentals, then continue into runtime, lifecycle, governance, and related extension topics. Each guide is a focused learning path within the wider API infrastructure ecosystem.
Build shared vocabulary around API fundamentals and runtime gateways before moving into platform-wide practices.
API Fundamentals
Build a foundation in API concepts, design, security, lifecycle management, documentation, and practical standards.
Explore API 101
Gateway Fundamentals
Route requests, enforce authentication, and apply traffic policies through a controlled API entry point.
Explore API Gateway Guide
Continue with lifecycle management, governance, standards, and operating models for organization-wide API programs.
API Lifecycle
Coordinate API design, publishing, discovery, consumption, and operations across the complete API lifecycle.
Explore API Management Guide
Governance & Compliance
Define ownership, standards, policies, and compliance controls for consistent API practices across teams.
Explore API Governance Guide
Build shared, self-service API platforms that standardize delivery while preserving team autonomy.
Platform Operating Model
Learn how platform teams create shared API infrastructure, paved-road workflows, and self-service capabilities for API teams.
Topic in developmentLearn how organizations package, distribute, and monetize APIs as managed products.
API Products & Business
Explore how organizations package API products, define access plans, measure usage, and connect consumption to commercial models.
Topic in developmentExplore specialized extensions that apply API infrastructure patterns to newer traffic types and application architectures.
Related AI Extension
Extend traffic management patterns to LLMs, AI agents, model providers, and AI-specific controls.
Explore AI Gateway Guide