Events are happening all the time, and these can present opportunities to exceed expectations. What is better than solving a customer problem? Getting ahead of the situation by recognizing events and taking proactive actions. Look at the possibilities for Events and APIs to provide solutions to improve your customer satisfaction and drive... Continue reading APIs and Events – Recognizing Opportunities Instead of Reacting to Problems
Are you ready for the Istio revolution? Istio is a service mesh platform built on top of Kubernetes that is radically simplifying how microservices are deployed, monitored, and routed. IBM is a major contributor to the Istio open-source project, providing thought leadership and delivering functionality to the community. IBM Continue reading Why API and Microservices Management is the perfect marriage – Transformation your digital solutions with API Connect and Istio Whitepaper
It should be noted that the implementation below uses undocumented variables and therefore it might break on a version upgrade Intro My customer wanted to use a JWS to control access to an API, however he wanted the JWS to be signed by the certificate that the client application registered in the developer portal. Since this functionality... Continue reading Validating JWS in API Connect with client application registered certificate
We are pleased to announce the release of DataPower Operations Dashboard (DPOD) v1.0.8. IBM’s monitoring and problem determination solution for applications that are secured and optimized by DataPower Gateways. DPOD also integrates with IBM’s comprehensive API management solution for the entire API lifecycle, API Connect. The latest version 1.0.8 reaches an important milestone for our... Continue reading What’s new in DataPower Operations Dashboard v1.0.8
Many IT organizations built an SOA (Service Oriented Architecture) in the mid-2000s or early 2010s. Other businesses, never did. But as both sets of organizations begin looking at an API initiative they ask questions about the relationships between APIs and Services: Are APIs and Services the same thing? ... Continue reading Which Comes First, The API or The Service?
What is PKCE PKCE (pronounce pixy) is a standard (https://tools.ietf.org/html/rfc7636) that proves that the entity that makes the /token call is also the entity that initiated the /authorize call and mitigates the risk for a authorization code interception attack, when using the S256 method it would even prevent a malicious user that intercepted the outgoing call... Continue reading Leveraging PKCE with OAuth2 in API Connect V5