Apogee Edge

Security
1.  Run a proxy that requires clients to pass an API Key.
    We connect to back-end system with 2-way TLS.
2.  OAuth 2.0.  Time-limited token derived from consumer key.

Proxy can transform client-side light-XML or JSON to/from server-side SOAP/XML.
Can transform by XSLT.
JSON transform policies.

Caching.

Composition

Light orchestration with Python, NodeJS, Java

Extensions incl. Mathematica, AWS Lambda.

Routing.  Load balancing, failover, optimizations.

Developer Portal  (Registry?)
Register for an API key.

Analytics
Uses Google Cloud Analytics