Back

Back

Back

Scaling API Management

Yappes Technologies Private Limited

Yappes Technologies Private Limited

Yappes Technologies Private Limited

Mar 2024 - Current

Overview

At Yappes, an API lifecycle management platform for developers managing high-scale ecosystems, one of my key tasks was implementing the Transformation Policy feature. This capability was introduced as a configurable extension within the existing gateway policy management system, enabling users to modify headers, query parameters, and body content at both request and response levels. The feature was seamlessly integrated into the legacy UI, maintaining design consistency. It was delivered in alignment with the product roadmap, ensuring minimal disruption to engineering velocity while enhancing policy flexibility.

My role in Yappes

Senior UI/UX Designer - Yappes Technologies Pvt Ltd

I led the end-to-end product design for Yappes’ policy management system. Building a scalable design system, designing complex features like transformation and advance routing across multiple API protocols, and ensuring a seamless developer experience through research, consistent cross-platform workflows, detailed prototyping, and rigorous validation via CURL, API tryouts & user flow testing.

Design Sprints Process

Considering timeline and product roadmap, adopted a design sprint structure. This allowed rapid discovery, validation, and iteration while keeping the design effort aligned with engineering sprints and delivery.

Understand

Feature research
Competitive analysis
Stakeholder interviews

Understand

Feature research
Competitive analysis
Stakeholder interviews

Understand

Feature research
Competitive analysis
Stakeholder interviews

Sketch

User flow
Review existing Ideas
Solution sketching

Sketch

User flow
Review existing Ideas
Solution sketching

Sketch

User flow
Review existing Ideas
Solution sketching

Decide

Critique & discussion
Wire framing
Finalise solution

Decide

Critique & discussion
Wire framing
Finalise solution

Decide

Critique & discussion
Wire framing
Finalise solution

Prototype

UI Iteration design
Prototype Flows

Prototype

UI Iteration design
Prototype Flows

Prototype

UI Iteration design
Prototype Flows

Test

User Testing
API Testing
Command-line API Testing

Test

User Testing
API Testing
Command-line API Testing

Test

User Testing
API Testing
Command-line API Testing

Focus & Goals

Integrating API Transformation feature

Adding new feature into existing API level policy attachment workflows.
Adding new feature into existing API level policy attachment workflows.
Map new transformation feature flows to reduce friction in policy configuration
Map new transformation feature flows to reduce friction in policy configuration
Validate technical and design feasibility of integrating the feature without excessive dev effort.
Validate technical and design feasibility of integrating the feature without excessive dev effort.
Benchmark gaps between Yappes and competitors to inform scalable new workflows.
Benchmark gaps between Yappes and competitors to inform scalable new workflows.

Desk Research

Understanding Transformation feature in API Management

APIs help in communication between two systems or applications. As digital ecosystems scale, API management platforms play a key role in controlling how APIs behave, especially under dynamic client and backend requirements. An API management system sits between the client and backend service, acting as a control layer that handles requests, enforces policies, and ensures secure and reliable interactions.


One of the critical capabilities in managing APIs is Transformation. This feature allows platform users to manipulate the data flowing through APIs, ensuring compatibility, security, and clarity between systems without changing the underlying service.

Transformation can be categorised into two types:

Request Transformation

Applied before the request reaches the backend from client. Useful for adding or modifying request headers, query parameters, or body.

Response Transformation

Applied after receiving the backend’s response but before it reaches the client. Useful for cleaning or simplifying response payloads, filtering unnecessary data fields for client-side optimisation.

End-to-End API Transformation Technical workflow

Why Transformation Matters?

API transformation reduces backend dependency. It helps bridge gaps between frontend and backend by adapting data formats, field names, headers, URLs, query parameters, and even HTTP methods all without changing backend logic.


Common use cases include:

  1. Customising payloads for frontend frameworks

  2. Masking or removing sensitive data for compliance

  3. Mapping partner data fields for easier integration

  4. Serving region-specific content based on request metadata

Stakeholder Insights

Understanding what the product needs

To understand the scope and expectations for implementing new feature, interviews were conducted with key stakeholders including the Engineering VP, Backend Engineer, Gateway Engineer, and the Frontend Team. The following insights emerged:

  1. Control & Flexibility

Control over transformation parameters to modify headers, query parameters, and body fields across both request and response flows. Minimal configuration steps and support for complex transformation cases were expected.

  1. Efficiency & Developer Experience

A core concern was reducing developer effort by including reusable & custom transformation templates for commonly used policies.

  1. Visibility & Error Prevention

Clarity to execution order of policies was crucial to avoid conflicts. Inline form validation and preventing misconfigurations in execution order were considered necessary to support safe deployment.

  1. Scalability & UI Consistency

New feature should fit seamlessly into the existing policy management interface align with current architectural standards and UI patterns.

  1. Functional Expectations

The system should allow:

  1. Attaching both request and response transformation policies at API endpoint level

  2. Support for all standard CRUD actions on transformation rules

  3. Policy reordering for controlling execution flow

Competitive Benchmarking

Industry Approaches to Transformation Features

To contextualise Yappes’ implementation, I benchmarked leading platforms based on transformation support:

Platform

Platform

Transformation Methods

Transformation Methods

Supported Transformations

Supported Transformations

Implementation Approach

Implementation Approach

Advanced Capabilities

Advanced Capabilities

Resource Link

Resource Link

Kong

Kong

Lua plugins, declarative YAML

Lua plugins, declarative YAML

Header/query/body mutation, method/URI rewrite, request/response transformation, redaction

Header/query/body mutation, method/URI rewrite, request/response transformation, redaction

Built-in plugins, custom Lua scripting, Admin API/YAML

Built-in plugins, custom Lua scripting, Admin API/YAML

Highly scriptable, granular control, custom plugins, support for sync/async flows

Highly scriptable, granular control, custom plugins, support for sync/async flows

Kong Transformation Policy

Kong Transformation Policy

Apigee

Apigee

XML policies, JavaScript, XSLT

XML policies, JavaScript, XSLT

XML to JSON, payload/parameter manipulation, format changes, complex message mapping

XML to JSON, payload/parameter manipulation, format changes, complex message mapping

Declarative XML policy chains, JS/XSLT for custom logic

Declarative XML policy chains, JS/XSLT for custom logic

Enterprise tooling, chained policies, fine-grained message shaping, built-in analytics

Enterprise tooling, chained policies, fine-grained message shaping, built-in analytics

Link

Link

AWS API Gateway

AWS API Gateway

VTL (Velocity Template Language) mapping

VTL (Velocity Template Language) mapping

Header/query/body mapping, REST/WebSocket conversions, data enrichment, context variables

Header/query/body mapping, REST/WebSocket conversions, data enrichment, context variables

VTL mapping templates attached to API resources

VTL mapping templates attached to API resources

Deep AWS integration, real-time variable injection, supports complex payloads

Deep AWS integration, real-time variable injection, supports complex payloads

Link

Link

Tyk

Tyk

Middleware, dashboard UI, plugins

Middleware, dashboard UI, plugins

Body/headers/URL transform, method rewrite, validation, async transformation

Body/headers/URL transform, method rewrite, validation, async transformation

Low-code dashboard, middleware scripting (JS/Go), config

Low-code dashboard, middleware scripting (JS/Go), config

Visual + programmable, OAS support, async flows, real-time analytics, endpoint-level

Visual + programmable, OAS support, async flows, real-time analytics, endpoint-level

Link

Link

MuleSoft Anypoint

MuleSoft Anypoint

DataWeave, Flow Designer, Policies

DataWeave, Flow Designer, Policies

Data format conversion (JSON/XML/CSV), payload transformation, routing, enrichment

Data format conversion (JSON/XML/CSV), payload transformation, routing, enrichment

Graphical flow designer, DataWeave scripting, policies

Graphical flow designer, DataWeave scripting, policies

Enterprise integration, complex orchestrations, reusable templates, CI/CD integration

Enterprise integration, complex orchestrations, reusable templates, CI/CD integration

Link

Link

This benchmarking reveals common trends in how transformation is handled. Platforms support a mix of declarative and programmatic (script-based) approaches. Most provide transformation at multiple levels API, route, service, or environment. Common scopes include header, query param, and body manipulation.These findings informed architectural strategies by strengths like plugin flexibility, declarative control, and interface clarity.

Insights from Discover phase

Designing solutions for API Management

At Yappes, an API lifecycle management platform for developers managing high-scale ecosystems, one of my key tasks was implementing the Transformation Policy feature. This capability was introduced as a configurable extension within the existing gateway policy management system, enabling users to modify headers, query parameters, and body content at both request and response levels. The feature was seamlessly integrated into the legacy UI, maintaining design consistency. It was delivered in alignment with the product roadmap, ensuring minimal disruption to engineering velocity while enhancing policy flexibility.

Insights from understand phase

At Yappes, an API lifecycle management platform for developers managing high-scale ecosystems, one of my key tasks was implementing the Transformation Policy feature. This capability was introduced as a configurable extension within the existing gateway policy management system, enabling users to modify headers, query parameters, and body content at both request and response levels. The feature was seamlessly integrated into the legacy UI, maintaining design consistency. It was delivered in alignment with the product roadmap, ensuring minimal disruption to engineering velocity while enhancing policy flexibility.
Complexity of Transformation Areas
  • Handling transformations for headers, query parameters, and body content at both request and response levels can be complex.
  • Policy Flexibility vs. Developer Effort
  • Balancing flexible policy approaches (declarative or script-based) with the need to reduce developer effort.
  • Ease of Configuration
  • Providing simple configuration, live previews, and reusable templates to streamline major transformation tasks for developers.
  • Diverse Platform Implementations
  • Managing transformations differently across platforms (e.g., plugins, XML flows, templates, scripting) creates inconsistency.
  • Clear Policy Sequence and Validation
    • Ensuring clear sequencing of policies, effective inline validation, and granular control at the field level.
  • Scalability and Developer Velocity
    • Scaling solutions effectively within the current UI while maintaining high development velocity.
  • Varied User Roles and Expectations
    • Addressing the needs and expectations of API developers, consumers, admins, owners, and community managers around control, visibility, and responsibility.
  • Safeguarding Against Transformation Errors
    • Controlling execution order and preventing errors through robust safeguards and validations.
    • Consistency Across API Types and Scopes
      • Making policy attachment workflows consistent for all API types (REST, SOAP, GraphQL, WebSocket) and at different scopes (API-level, subscription-level).
    • Legacy System Constraints
      • Adapting policy logic within the constraints of existing legacy design systems.
    • Maximizing Design System Reuse
      • Sustaining high development speed by reusing design system components to overcome limited engineering resources.

Insights & Challenges

Insights from understand phase

Key transformation areas include headers, query parameters, and body at both request and response levels.

Key transformation areas include headers, query parameters, and body at both request and response levels.

Declarative or script-based policies improve flexibility and reduce dev effort.

Declarative or script-based policies improve flexibility and reduce dev effort.

Developers want simple configuration, live previews, and reusable templates to streamline major transformations.

Developers want simple configuration, live previews, and reusable templates to streamline major transformations.

Platforms like Kong, Apigee, AWS, Tyk, and Postman handle transformation differently using plugin, XML flows, templates and scripting.

Platforms like Kong, Apigee, AWS, Tyk, and Postman handle transformation differently using plugin, XML flows, templates and scripting.

Engineers prioritize clear policy sequencing, inline validation, and control at the field level.

Engineers prioritize clear policy sequencing, inline validation, and control at the field level.

Leaders focused on scaling within current UI and keeping dev velocity high.

Leaders focused on scaling within current UI and keeping dev velocity high.

Key Challenges

Diverse user roles API developers, consumers, platform admin, owner and community manager each with distinct expectations around visibility, control, and responsibility.

Diverse user roles API developers, consumers, platform admin, owner and community manager each with distinct expectations around visibility, control, and responsibility.

Controlling execution order and avoiding transformation errors through safeguards and validations.

Controlling execution order and avoiding transformation errors through safeguards and validations.

Making policy attachment workflows consistent across API types (REST, SOAP, GraphQL, WebSocket) and scopes (API-level, subscription-level).

Making policy attachment workflows consistent across API types (REST, SOAP, GraphQL, WebSocket) and scopes (API-level, subscription-level).

Adapting complex gateway policy logic within constraints of a legacy design system.

Adapting complex gateway policy logic within constraints of a legacy design system.

Maintaining high development velocity despite limited engineering bandwidth by maximising design system reuse.

Maintaining high development velocity despite limited engineering bandwidth by maximising design system reuse.

Leaders focused on scaling within current UI and keeping dev velocity high.

Problem statement

How can we simplify complex API transformation policy workflows and scale their configuration across APIs without disrupting the legacy UI or adding friction for developers?

As APIs grow, developers need precise control and visibility when configuring request and response transformations. While Yappes already supported basic policy attachments workflow at API Endpoint level, the challenge now lies in enabling flexible transformation policy management with the

Review Current gateway policy management system

The API Gateway manages policies at both the API and subscription levels. When a request is made, the gateway checks for any attached policies like routing, load balancing, mocking, or caching before forwarding the request to the backend.

Each feature is configured using policy settings, which define how the gateway should behave. These reusable configurations are applied to APIs to ensure consistent, automated handling of requests and responses.

Solution Sketching

User Flow for Transformation Policy Attachment

Visualising the integration of transformation policies into the current API gateway interface. This flow outlines how users navigate from selecting an API to configuring request or response transformations within existing policy workflows.

Wireframes

Detailed IA & wireframe flows

Finalise Solution

Collaborative Design Through Stakeholder Reviews and Developer Alignment

The solution was refined through multiple stakeholder meetings to review ideas, flows, and wireframes. Regular feasibility checks with developers ensured component practicality, resulting in a technically sound and user-aligned implementation.

Testing Phase

Content need to update

———-

Results & Validation

Content need to update

———-

Future Scope

Content need to update

———-

Let's connect and build something great.

Contact me

Thanks you for scrolling!

Let's connect and build something great.

Contact me

Thanks you for scrolling!

Let's connect and build something great.

Contact me

Thanks you for scrolling!