Systems | Development | Analytics | API | Testing

Latest Videos

Validate WSO2 API Manager gateway request with open policy agent

Open policy agent (OPA) enables you to write security and compliance policies as code, or call any external policies using the OPA standard. WSO2 API manager uses this capability to offload policy decisions of API gateway requests to this policy engine. By decoupling the policy enforcement from evaluation, API policymakers now have the opportunity to write dynamic and reusable policies for ever-changing requirements. You can then reuse an OPA policy like any other policy in the API Manager by graphically dragging and dropping it into a policy pipeline. This video explains how it works and gives a demo.

Proof of possession for OAuth2 tokens(DPoP) with WSO2 Identity Server #Identityin15

In today's episode, we will discuss how you can secure OAuth2 Tokens with DPoP using the WSO2 Identity Server. DPoP (Demonstrating-Proof-of-Possession) is an additional security mechanism for the token generation which overcomes the issue of bearer token which will not validate between who is requested token and who is actually using the token for the access of a particular resource. The following is the outline for today's session.

Audit Logging for Micro-Integrator

When you are running a micro-integrator on a microservices environment, administrators who have admin access to the micro-integrator are able to change its configurations via admin services API. When someone needs to debug the system and find out which person did what change, then the micro-integrator needs to keep a log of activities performed on the micro-integrator. Audit logs are simply a set of logs that let you find what are the changes performed on the micro-integrator instance. Audit logs feature support from the APIM 4.1.0 onward.

Per API Logging Support for WSO2 API Manager

APIM per API logging support lets you enable logging request details per API basis. This will significantly impact APIM performance when you need to collect logs that come in to and out of the APIM instance. Users are able to enable or disable logging for each API by using the APIM REST API. WSO2 APIM logging gives you multiple log levels that let you log information in different levels.

From culture to business to innovation: leveraging cloud to reprogram banks, WSO2 | Finextra

In this 2 part series, Eric Newcomer, Chief Technology Officer at WSO2 speaks to FinextraTV about the type of technologies that are conducive to self-disruption, what banks need to consider when revamping their technology and operations divisions to promote innovation, how this translates into a culture of innovation, and how migration to the cloud reinforce banks’ cybersecurity and resilience.

Reprogramming the bank: Shifting gears on digital disruption, WSO2 | Finextra

In this 2 part series, Eric Newcomer, Chief Technology Officer at WSO2 speaks about self-disruption across the industry, what is meant by this and how this approach is helping FIs address business challenges. We learn how the internal disruption that comes with new technology strategies can benefit the customer, the type of strategies that could formalise this natural disruption to create a process of structured self-disruption, and how this fits in with the regulatory landscape.