{"id":13653207,"url":"https://github.com/wso2/product-apim","last_synced_at":"2026-04-20T10:02:31.328Z","repository":{"id":911443,"uuid":"20717348","full_name":"wso2/product-apim","owner":"wso2","description":"Welcome to the WSO2 API Manager source code! For info on working with the WSO2 API Manager repository and contributing code, click the link below.","archived":false,"fork":false,"pushed_at":"2026-04-17T11:56:23.000Z","size":356279,"stargazers_count":978,"open_issues_count":665,"forks_count":909,"subscribers_count":170,"default_branch":"master","last_synced_at":"2026-04-17T13:17:38.682Z","etag":null,"topics":["api-gateway","api-management","apis","gateway","microservices","rest","synapse"],"latest_commit_sha":null,"homepage":"http://wso2.github.io/","language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/wso2.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2014-06-11T08:05:00.000Z","updated_at":"2026-04-17T11:56:27.000Z","dependencies_parsed_at":"2023-10-02T03:51:15.839Z","dependency_job_id":"1c783b59-00de-43e3-b1e2-74e089817ffc","html_url":"https://github.com/wso2/product-apim","commit_stats":{"total_commits":5878,"total_committers":241,"mean_commits":"24.390041493775932","dds":0.9424974481116026,"last_synced_commit":"1fd4768f593dd3383b428e57e9a7da2f5ffec407"},"previous_names":[],"tags_count":274,"template":false,"template_full_name":null,"purl":"pkg:github/wso2/product-apim","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wso2%2Fproduct-apim","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wso2%2Fproduct-apim/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wso2%2Fproduct-apim/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wso2%2Fproduct-apim/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/wso2","download_url":"https://codeload.github.com/wso2/product-apim/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/wso2%2Fproduct-apim/sbom","scorecard":{"id":69532,"data":{"date":"2025-07-07","repo":{"name":"github.com/wso2/product-apim","commit":"19de1a0b4ed12d41fdaab3194420098268545b12"},"scorecard":{"version":"v5.2.1-18-gbb9c347d","commit":"bb9c347dff6349d986baab6578a46d68a5524c62"},"score":4.4,"checks":[{"name":"Code-Review","score":10,"reason":"all changesets reviewed","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/bb9c347dff6349d986baab6578a46d68a5524c62/docs/checks.md#code-review"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/bb9c347dff6349d986baab6578a46d68a5524c62/docs/checks.md#packaging"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: SECURITY.md:1","Info: Found linked content: SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: SECURITY.md:1","Info: Found text in security policy: SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/bb9c347dff6349d986baab6578a46d68a5524c62/docs/checks.md#security-policy"}},{"name":"Maintained","score":10,"reason":"30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/bb9c347dff6349d986baab6578a46d68a5524c62/docs/checks.md#maintained"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/maven.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/bb9c347dff6349d986baab6578a46d68a5524c62/docs/checks.md#token-permissions"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/bb9c347dff6349d986baab6578a46d68a5524c62/docs/checks.md#cii-best-practices"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/bb9c347dff6349d986baab6578a46d68a5524c62/docs/checks.md#dangerous-workflow"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/bb9c347dff6349d986baab6578a46d68a5524c62/docs/checks.md#license"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/bb9c347dff6349d986baab6578a46d68a5524c62/docs/checks.md#branch-protection"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact v4.5.0 not signed: https://api.github.com/repos/wso2/product-apim/releases/206335630","Warn: release artifact v4.5.0-rc2 not signed: https://api.github.com/repos/wso2/product-apim/releases/204573894","Warn: release artifact v4.5.0-rc not signed: https://api.github.com/repos/wso2/product-apim/releases/204043676","Warn: release artifact v4.5.0-beta not signed: https://api.github.com/repos/wso2/product-apim/releases/202008271","Warn: release artifact v4.5.0-alpha not signed: https://api.github.com/repos/wso2/product-apim/releases/200776390","Warn: release artifact v4.5.0 does not have provenance: https://api.github.com/repos/wso2/product-apim/releases/206335630","Warn: release artifact v4.5.0-rc2 does not have provenance: https://api.github.com/repos/wso2/product-apim/releases/204573894","Warn: release artifact v4.5.0-rc does not have provenance: https://api.github.com/repos/wso2/product-apim/releases/204043676","Warn: release artifact v4.5.0-beta does not have provenance: https://api.github.com/repos/wso2/product-apim/releases/202008271","Warn: release artifact v4.5.0-alpha does not have provenance: https://api.github.com/repos/wso2/product-apim/releases/200776390"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/bb9c347dff6349d986baab6578a46d68a5524c62/docs/checks.md#signed-releases"}},{"name":"Binary-Artifacts","score":4,"reason":"binaries present in source code","details":["Warn: binary detected: all-in-one-apim/modules/distribution/product/src/main/lib/slf4j-jdk14-1.7.28.jar:1","Warn: binary detected: all-in-one-apim/modules/integration/tests-common/clients/admin/gradle/wrapper/gradle-wrapper.jar:1","Warn: binary detected: all-in-one-apim/modules/integration/tests-common/clients/apim-governance/gradle/wrapper/gradle-wrapper.jar:1","Warn: binary detected: all-in-one-apim/modules/integration/tests-common/clients/publisher/gradle/wrapper/gradle-wrapper.jar:1","Warn: binary detected: all-in-one-apim/modules/integration/tests-common/clients/service-catalog/gradle/wrapper/gradle-wrapper.jar:1","Warn: binary detected: all-in-one-apim/modules/integration/tests-common/clients/store/gradle/wrapper/gradle-wrapper.jar:1"],"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/bb9c347dff6349d986baab6578a46d68a5524c62/docs/checks.md#binary-artifacts"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/bb9c347dff6349d986baab6578a46d68a5524c62/docs/checks.md#fuzzing"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 30 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/bb9c347dff6349d986baab6578a46d68a5524c62/docs/checks.md#sast"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/maven.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/wso2/product-apim/maven.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/maven.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/wso2/product-apim/maven.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/maven.yml:44: update your workflow using https://app.stepsecurity.io/secureworkflow/wso2/product-apim/maven.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/maven.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/wso2/product-apim/maven.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/maven.yml:60: update your workflow using https://app.stepsecurity.io/secureworkflow/wso2/product-apim/maven.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/maven.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/wso2/product-apim/maven.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/maven.yml:80: update your workflow using https://app.stepsecurity.io/secureworkflow/wso2/product-apim/maven.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/maven.yml:82: update your workflow using https://app.stepsecurity.io/secureworkflow/wso2/product-apim/maven.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/maven.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/wso2/product-apim/maven.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/maven.yml:92: update your workflow using https://app.stepsecurity.io/secureworkflow/wso2/product-apim/maven.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/maven.yml:102: update your workflow using https://app.stepsecurity.io/secureworkflow/wso2/product-apim/maven.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/maven.yml:107: update your workflow using https://app.stepsecurity.io/secureworkflow/wso2/product-apim/maven.yml/master?enable=pin","Info:   0 out of  10 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   2 third-party GitHubAction dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/bb9c347dff6349d986baab6578a46d68a5524c62/docs/checks.md#pinned-dependencies"}},{"name":"Vulnerabilities","score":0,"reason":"86 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GHSA-968p-4wvh-cqc8","Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92","Warn: Project is vulnerable to: GHSA-6chw-6frg-f759","Warn: Project is vulnerable to: GHSA-v88g-cgmw-v5xw","Warn: Project is vulnerable to: GHSA-93q8-gq69-wqmw","Warn: Project is vulnerable to: GHSA-v6h2-p8h4-qcjw","Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg","Warn: Project is vulnerable to: GHSA-x9w5-v3q2-3rhw","Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275","Warn: Project is vulnerable to: GHSA-gxpj-cx7g-858c","Warn: Project is vulnerable to: GHSA-w573-4hg7-7wgq","Warn: Project is vulnerable to: GHSA-vh7m-p724-62c2","Warn: Project is vulnerable to: GHSA-r9p9-mrjm-926w","Warn: Project is vulnerable to: GHSA-434g-2637-qmqr","Warn: Project is vulnerable to: GHSA-49q7-c7j4-3p7m","Warn: Project is vulnerable to: GHSA-977x-g7h5-7qgw","Warn: Project is vulnerable to: GHSA-f7q4-pwc6-w24p","Warn: Project is vulnerable to: GHSA-fc9h-whq2-v747","Warn: Project is vulnerable to: GHSA-vjh7-7g9h-fjfh","Warn: Project is vulnerable to: GHSA-8r6j-v8pm-fqw3","Warn: Project is vulnerable to: MAL-2023-462","Warn: Project is vulnerable to: GHSA-w457-6q6x-cgp9","Warn: Project is vulnerable to: GHSA-62gr-4qp9-h98f","Warn: Project is vulnerable to: GHSA-f52g-6jhx-586p","Warn: Project is vulnerable to: GHSA-2cf5-4w76-r9qv","Warn: Project is vulnerable to: GHSA-3cqr-58rm-57f8","Warn: Project is vulnerable to: GHSA-g9r4-xpmj-mj65","Warn: Project is vulnerable to: GHSA-q2c6-c6pm-g3gh","Warn: Project is vulnerable to: GHSA-765h-qjxv-5f44","Warn: Project is vulnerable to: GHSA-f2jv-r9rf-7988","Warn: Project is vulnerable to: GHSA-c429-5p7v-vgjp","Warn: Project is vulnerable to: GHSA-43f8-2h32-f4cj","Warn: Project is vulnerable to: GHSA-pc5p-h8pf-mvwp","Warn: Project is vulnerable to: GHSA-qqgx-2p2h-9c37","Warn: Project is vulnerable to: GHSA-896r-f27r-55mw","Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h","Warn: Project is vulnerable to: GHSA-6c8f-qphg-qjgp","Warn: Project is vulnerable to: GHSA-76p3-8jx3-jpfq","Warn: Project is vulnerable to: GHSA-3rfm-jhwj-7488","Warn: Project is vulnerable to: GHSA-hhq3-ff78-jv3g","Warn: Project is vulnerable to: GHSA-jf85-cpcp-j695","Warn: Project is vulnerable to: GHSA-p6mc-m468-83gw","Warn: Project is vulnerable to: GHSA-29mw-wpgm-hmr9","Warn: Project is vulnerable to: GHSA-35jh-r3h4-6jhm","Warn: Project is vulnerable to: GHSA-r6rj-9ch6-g264","Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv","Warn: Project is vulnerable to: GHSA-f8q6-p94x-37v3","Warn: Project is vulnerable to: GHSA-vh95-rmgr-6w4m","Warn: Project is vulnerable to: GHSA-xvch-5gv4-984h","Warn: Project is vulnerable to: GHSA-5fw9-fq32-wv5p","Warn: Project is vulnerable to: GHSA-hj48-42vr-x3v9","Warn: Project is vulnerable to: GHSA-h7cp-r72f-jxh6","Warn: Project is vulnerable to: GHSA-v62p-rq8g-8h59","Warn: Project is vulnerable to: GHSA-hrpp-h998-j3pp","Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6","Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw","Warn: Project is vulnerable to: GHSA-h9rv-jmmf-4pgx","Warn: Project is vulnerable to: GHSA-hxcc-f52p-wc94","Warn: Project is vulnerable to: GHSA-vx3p-948g-6vhq","Warn: Project is vulnerable to: GHSA-3jfq-g458-7qm9","Warn: Project is vulnerable to: GHSA-r628-mhmh-qjhw","Warn: Project is vulnerable to: GHSA-9r2w-394v-53qc","Warn: Project is vulnerable to: GHSA-5955-9wpr-37jh","Warn: Project is vulnerable to: GHSA-qq89-hq3f-393p","Warn: Project is vulnerable to: GHSA-f5x3-32g6-xq36","Warn: Project is vulnerable to: GHSA-4wf5-vphf-c2xc","Warn: Project is vulnerable to: GHSA-jgrx-mgxx-jf9v","Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3","Warn: Project is vulnerable to: GHSA-884p-74jh-xrg2","Warn: Project is vulnerable to: GHSA-j7fq-p9q7-5wfv","Warn: Project is vulnerable to: GHSA-6fc8-4gx4-v693","Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q","Warn: Project is vulnerable to: GHSA-c4w7-xm78-47vh","Warn: Project is vulnerable to: GHSA-p9pc-299p-vxgp","Warn: Project is vulnerable to: PYSEC-2023-62 / GHSA-m2qf-hxjv-5gpq","Warn: Project is vulnerable to: PYSEC-2020-73","Warn: Project is vulnerable to: GHSA-m87m-mmvp-v9qm","Warn: Project is vulnerable to: PYSEC-2020-96 / GHSA-6757-jp84-gxfx","Warn: Project is vulnerable to: PYSEC-2021-142 / GHSA-8q59-q68h-6hv4","Warn: Project is vulnerable to: GHSA-2g68-c3qc-8985","Warn: Project is vulnerable to: GHSA-f9vj-2wh5-fj8j","Warn: Project is vulnerable to: PYSEC-2023-221 / GHSA-hrfv-mqp8-q5rw","Warn: Project is vulnerable to: PYSEC-2023-57 / GHSA-px8h-6qxv-m22q","Warn: Project is vulnerable to: GHSA-q34m-jh98-gwm2","Warn: Project is vulnerable to: PYSEC-2023-58 / GHSA-xg9f-g7g7-2323","Warn: Project is vulnerable to: PYSEC-2022-203"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/bb9c347dff6349d986baab6578a46d68a5524c62/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-15T03:30:42.421Z","repository_id":911443,"created_at":"2025-08-15T03:30:42.421Z","updated_at":"2025-08-15T03:30:42.421Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":32042293,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-20T00:18:06.643Z","status":"online","status_checked_at":"2026-04-20T02:00:06.527Z","response_time":94,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["api-gateway","api-management","apis","gateway","microservices","rest","synapse"],"created_at":"2024-08-02T02:01:07.268Z","updated_at":"2026-04-20T10:02:31.189Z","avatar_url":"https://github.com/wso2.png","language":"Java","funding_links":[],"categories":["API Gateway","Java","Recently Updated","Projects"],"sub_categories":["Public REST APIs To Use In Tests","[May 10, 2025](/content/2025/05/10/README.md)","API Management"],"readme":"# WSO2 API Manager\n        \n\n---\n\n\n[![Build Status](https://wso2.org/jenkins/job/products/job/product-apim/badge/icon)](https://wso2.org/jenkins/job/products/job/product-apim/)\n[![License](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](https://opensource.org/licenses/Apache-2.0)\n[![stackoverflow](https://img.shields.io/badge/stackoverflow-wso2am-orange)](https://stackoverflow.com/tags/wso2-am/)\n[![slack](https://img.shields.io/badge/slack-wso2--apim-blueviolet)](https://join.slack.com/t/wso2-apim/shared_invite/enQtNzEzMzk5Njc5MzM0LTgwODI3NmQ1MjI0ZDQyMGNmZGI4ZjdkZmI1ZWZmMjNkY2E0NmY3ZmExYjkxYThjNzNkOTU2NWJmYzM4YzZiOWU?src=sidebar)\n\n---\n\nWSO2 API Manager (WSO2 API-M) is a powerful platform for creating, managing, consuming, and\nmonitoring web APIs. It combines tried and tested SOA best practices with modern\nday API management principles to solve a wide range of enterprise challenges\nassociated with API provisioning, governance, and integration.\n\nWSO2 API Manager consists of several loosely coupled modules.\n\n        * API Publisher\n        * API Developer Portal\n        * API Gateway\n        * API Key Manager\n        * API Traffic Manager\n\n\nThe API publisher module allows API publishers to easily define APIs and manage them\nusing a strong governance model that consists of well-established concepts such as,\nversioning and lifecycles. API consumers can use the API Developer Portal to discover\npublished, production-ready APIs and access them in a secure and reliable manner\nusing unique API keys.  The built-in API Gateway module provides powerful tools to\nsecure and control the load on individual APIs.\n\nWSO2 API Manager is based on the revolutionary WSO2 Carbon [Middleware a' la carte]\nframework. All the major features have been developed as reusable Carbon\ncomponents.\n\nTo learn more about WSO2 API Manager please visit http://wso2.com/products/api-manager.\n\nKey Features\n=============\n\u003cdetails\u003e\n\u003csummary\u003eDesign and Prototype APIs\u003c/summary\u003e\n        \n    - Design APIs, gather developer's feedback before implementing (API First Design).\n    - Design can be done from the publishing interface or by importing an existing Swagger definition.\n    - Deploy a prototyped API, provide early access to APIs, and get early feedback.\n    - Mock API implementation using Javascript.\n    - Support publishing SOAP, REST, JSON, and XML style services as XML. \n\u003c/details\u003e \n\n    \n\u003cdetails\u003e\n\u003csummary\u003eCreate a Developer Portal of All the Available APIs\u003c/summary\u003e\n        \n    - Graphical experience similar to Android Marketplace or Apple App Store.\n    - Browse APIs by provider, tags, or name.\n    - Self-registration to developer community to subscribe to APIs.\n    - Subscribe to APIs and manage subscriptions on per-application basis.\n    - Subscriptions can be at different service tiers based on the expected usage levels.\n    - Role based access to API Developer Portal, which helps to manage public and private APIs.\n    - Manage subscriptions per-developer.\n    - Browse API documentation, download helpers for easy consumption.\n    - Comment on and rate APIs.\n    - Forum for discussing API usage issues (Available soon in a future version).\n    - Try APIs directly on the Developer Portal.\n    - Internationalization (i18n) support. \n\u003c/details\u003e\n    \n\u003cdetails\u003e\n\u003csummary\u003ePublishing and Governing API use\u003c/summary\u003e\n        \n    - Publish APIs to external consumers and partners, as well as internal users.\n    - Supports publishing multiple protocols including SOAP, REST, JSON, and XML style services as APIs.\n    - Manage API versions and deployment status by version.\n    - Govern the API lifecycle (publish, deprecate, retire).\n    - Attach documentation (files, external URLs) to APIs.\n    - Provision and Manage API keys.\n    - Track consumers per API.\n    - One-click deployment to API Gateway for immediate publishing.\n\u003c/details\u003e\n        \n\u003cdetails\u003e\n\u003csummary\u003eControl Access and Enforce Security\u003c/summary\u003e\n        \n    - Apply Security policies to APIs (authentication and authorization).\n    - Rely on OAuth2 standard for API access (implicit, authorization code, client, SAML, IWA Grant type).\n    - Restrict API access tokens to domains/IPs.\n    - Block a subscription and restrict a complete application.\n    - Associate API available to system defined service tiers.\n    - Leverage XACML for entitlements management and fine grained authorization.\n    - Configure Single Sign-On (SSO) using SAML 2.0 for easy integration with existing web apps.\n    - Powered by WSO2 Enterprise Service Bus (WSO2 ESB).\n\u003c/details\u003e\n        \n\u003cdetails\u003e\n\u003csummary\u003eRoute API Traffic\u003c/summary\u003e\n        \n    - Supports API authentication with OAuth2.\n    - Extremely high performance pass-through message routing with sub-millisecond latency.\n    - Enforce rate limiting and throttling policies for APIs by consumer.\n    - Horizontally scalable with easy deployment into cluster using proven routing infrastructure.\n    - Scales to millions of developers/users.\n    - Capture all statistics and push to pluggable analytics system.\n    - Configure API routing policies with capabilities of WSO2 Enterprise Service Bus.\n    - Powered by WSO2 Enterprise Service Bus.            \n\u003c/details\u003e\n        \n\u003cdetails\u003e\n\u003csummary\u003eManage Developer Community\u003c/summary\u003e\n        \n    - Self-sign up for API consumption.\n    - Manage user account including resetting password.\n    - Developer interaction with APIs via comments and ratings.\n    - Support for developer communication via forums (Available soon in a future version).\n    - Powered by WSO2 Identity Server (WSO2 IS).\n\u003c/details\u003e\n        \n\u003cdetails\u003e\n\u003csummary\u003eGovern Complete API Lifecycle\u003c/summary\u003e  \n        \n    - Manage API lifecycle from cradle to grave: create, publish, block, deprecate, and retire.\n    - Publish both production and sandbox keys for APIs to enable easy developer testing.\n    - Publish APIs to partner networks such as ProgrammableWeb (Available soon in a future version).\n    - Powered by WSO2 Governance Registry (WSO2 G-Reg).\n\u003c/details\u003e\n        \n\u003cdetails\u003e\n\u003csummary\u003eMonitor API Usage and Performance\u003c/summary\u003e\n        \n    - All API usage published to pluggable analytics framework.\n    - Out-of-the-box support for the WSO2 Analytics Platform and Google Analytics.\n    - View metrics by user, API, and more.\n    - Customized reporting via plugging reporting engines.\n    - Monitor SLA compliance.\n    - Powered by WSO2 Data Analytics Server (WSO2 DAS).      \n\u003c/details\u003e\n    \n\u003cdetails\u003e\n\u003csummary\u003ePluggable, Extensible, and Themeable\u003c/summary\u003e  \n        \n    - All components are highly customizable through styling, theming, and open source code.\n    - Developer Portal implemented with React.\n    - Pluggable to third-party analytics systems and billing systems (Available soon in a future version).\n    - Pluggable to existing user stores including JDBC and LDAP.\n    - Components usable separately. \n    - Developer Portal can be used to front APIs that are routed through third-party gateways such as, Intel Expressway Service Gateway.\n    - Support for Single Sign On (SSO) using SAML 2.0 for easy integration with existing web apps.\n\u003c/details\u003e\n\n\u003cdetails\u003e\n\u003csummary\u003eEasily Deployable in Enterprise Settings\u003c/summary\u003e\n        \n    - Role based access control (RBAC) for managing users and their authorization levels.\n    - Developer Portal can be deployed in DMZ for external access with the Publisher inside the firewall for private control.\n    - Different user stores for developer focused Developer Portal and internal operations in the publisher.\n    - Integrates with enterprise identity systems including LDAP and Microsoft Active Directory.\n    - Gateway can be deployed in DMZ with controlled access to WSO2 Identity Server (for authentication/authorization) and governance database behind a firewall.\n\u003c/details\u003e\n\n\u003cdetails\u003e\n\u003csummary\u003eSupport for Creating Multi-tenanted APIs\u003c/summary\u003e  \n        \n    - Run a single instance and provide API Management to multiple customers.\n    - Share APIs between different departments in a large enterprise.\n\u003c/details\u003e\n \n\u003cdetails\u003e\n\u003csummary\u003ePublishing and Governing API Use\u003c/summary\u003e \n        \n    - Document an API using Swagger.\n    - Restrict API access tokens to domains/IPs.\n    - Ability to block a subscription and restricting a complete application.\n    - Ability to revoke access tokens.\n    - Separate validity period configuration for application access token.\n    - OAuth2 authorization code grant type support.\n    - Configuring execution point of mediation extensions.\n\u003c/details\u003e\n \n\u003cdetails\u003e\n\u003csummary\u003eMonitor API Usage and Performance\u003c/summary\u003e\n        \n    - Improved dashboard for monitoring usage statistics (Filtering data for a date range, More visually appealing widgets).   \n    \n\u003c/details\u003e    \n    \n\nSystem Requirements\n==================================\n\n1. Minimum memory - 2GB\n2. Processor      - Pentium 800MHz or equivalent at minimum\n3. Java 11 or higher\n4. The Management Console requires you to enable Javascript of the Web browser,\n   with MS IE 7. In addition to JavaScript, ActiveX should also be enabled\n   with IE. This can be achieved by setting your security level to\n   medium or lower.\n5. Apache Ant is required to compile and run the sample clients. Apache Ant 1.7.0\n   version is recommended.\n6. To build WSO2 API Manager from the source distribution, it is necessary that you have\n   JDK 11 and Maven 3.0.4 or later.\n\nInstallation \u0026 Running\n==================================\n\n1. Extract the wso2am-4.5.0.zip and go to the 'bin' directory\n2. Run the api-manager.sh or api-manager.bat script based on you operating system.\n3. Access the respective WSO2 API-M interfaces\n    * API Publisher web application is running at - https://localhost:9443/publisher \\\n  You may sign in to the Publisher using the default administrator credentials (username: admin, password: admin).\n    * Developer Portal web application is running at - https://localhost:9443/devportal \\\n  You may sign in to the Developer Portal using the default administrator credentials (username: admin, password: admin).\n\nDocumentation\n==============\n\nOnline product documentation is available at:\n        https://apim.docs.wso2.com/en/latest/\n\nSupport\n==================================\n\nWSO2 Inc. offers a variety of development and production support\nprograms, ranging from Web-based support up through normal business\nhours, to premium 24x7 phone support.\n\nFor additional support information please refer to http://wso2.com/support\n\nFor more information on WSO2 API Manager please visit https://wso2.com/api-management/\n\nSurvey On Open Source Community Communication\n==================================\n\nWSO2 wants to learn more about our open source software (OSS) community and your communication preferences to serve you better.\n\nIn addition, we may reach out to a small number of respondents to ask additional questions and offer a small gift.\n\nLink to survey: https://forms.gle/h5q4M3K7vyXba3bK6\n\n\nKnown Issues of WSO2 API Manager\n==================================\n\nAll known issues of WSO2 API Manager are filed at:\n   \n* https://github.com/wso2/api-manager/issues\n\nIssue Tracker\n==================================\n\nHelp us make our software better. Please submit any bug reports or feature\nrequests through GitHub:\n\n   https://github.com/wso2/api-manager/issues\n\n\nCrypto Notice\n==================================\n\n   This distribution includes cryptographic software.  The country in\n   which you currently reside may have restrictions on the import,\n   possession, use, and/or re-export to another country, of\n   encryption software.  BEFORE using any encryption software, please\n   check your country's laws, regulations and policies concerning the\n   import, possession, or use, and re-export of encryption software, to\n   see if this is permitted.  See \u003chttp://www.wassenaar.org/\u003e for more\n   information.\n\n   The U.S. Government Department of Commerce, Bureau of Industry and\n   Security (BIS), has classified this software as Export Commodity\n   Control Number (ECCN) 5D002.C.1, which includes information security\n   software using or performing cryptographic functions with asymmetric\n   algorithms.  The form and manner of this Apache Software Foundation\n   distribution makes it eligible for export under the License Exception\n   ENC Technology Software Unrestricted (TSU) exception (see the BIS\n   Export Administration Regulations, Section 740.13) for both object\n   code and source code.\n\n   The following provides more details on the included cryptographic\n   software:\n\n* Apache Rampart   : http://ws.apache.org/rampart/\n* Apache WSS4J     : http://ws.apache.org/wss4j/\n* Apache Santuario : http://santuario.apache.org/\n* Bouncycastle     : http://www.bouncycastle.org/\n\n--------------------------------------------------------------------------------\n(c) Copyright 2020 WSO2 Inc.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fwso2%2Fproduct-apim","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fwso2%2Fproduct-apim","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fwso2%2Fproduct-apim/lists"}