Skip to Content
Author's profile photo Nitin Arora

API Business Hub: API Sandbox

API Sandbox is not a new concept in API Business Hub or in API industry. As we were getting lot of queries around this topic so I thought to write a blog which explains sandbox positioning in API Business Hub.

SAP API Business Hub is a central catalog of SAP and selected partner APIs along with integration content. Developers could search, discover, test and consume these APIs to build extensions or integrations using the Cloud Platform.



Problem statement:

As a developer visiting API Business Hub, I would like to test and experience an API listed in Hub. Do I need to have license or account to test any of the listed APIs(eg: SuccessFactors, SAP S/4HANA ) ?


Solution: API Sandbox.

API provider can host a service to enable test experience of an API listed in API Business Hub. Logged in user can experience this API without having account/license for specific API.


Advantage for API consumer:

  • Homogeneous API Sandbox approach for the consumer
  • One API Key per user to test and experience all the APIs in SAP API Business Hub which has sandbox available.
  • Sap community user can test and experience APIs without an account/subscription.
  • When user test an API with Sandbox, implicitly user’s API key is passed to authenticate/authorize user for API call.
  • If API is tested/invoked from outside of API Business Hub, then user must pass his API Business hub’s API Key in header.

Note: In API Business Hub, all sandbox APIs are protected by API Key which is generated per user.


Advantage for API provider:

  • Host a single service which can be shared with all [ or multi-tenant support]
  • This service will be protected with security mechanism.
  • API throttling with defined call rate at user level
  • As service is called in controlled fashion, it will avoid DoS attack.
  • Provide API rich experience to developers to capture early feedback.



Assigned Tags

      You must be Logged on to comment or reply to a post.
      Author's profile photo Sumandeep Kaur
      Sumandeep Kaur

      Hi Nitin,

      Thanks for sharing the information about API sandbox. In case I design an API in API designer then can I give sandbox url as target url to test my API. If it is possible then what url is to be given to test my API.



      Author's profile photo Nitin Arora
      Nitin Arora
      Blog Post Author

      Hi Suman,

      URL should be of the service against which try out will be enabled. To leverage API management capabilities, this service endpoint could be exposed via API Management layer to bring in security checks, rate limit and other policies.