Priority Three

---

{"class":["gateway"],"properties":{"name":"Akana","provider":"Akana","slug":"akana","rating":3,"license":"Proprietary, Open Source (Apache-2.0)","status":"Pending Review","researchDate":"2022-11","description":"Akana is a provider of computer software products for application programming interface management. The company was founded as Digital Evolution and was later known as SOA Software. In November 2016, Akana was acquired by Rogue Wave Software.\n","platformCapabilities":["Design","Gateway","Analytics","Portal","Documentation","Governance"],"gatewayCapabilities":["Mediation","Protocol Transformation","Traffic Management","Versioning"],"customCodeSupport":["None"],"upstreamProtocols":["AMQP","GraphQL","HTTP/1.1","SOAP","JMS"],"downstreamProtocols":["AMQP","GraphQL","HTTP/1.1","SOAP","JMS"],"deliveryModels":["Customer Managed (Cloud)","Customer Managed (On-Premises)","Hybrid","SaaS"],"policies":[{"category":"Traffic Management","capabilities":["Cache Eviction","Cache Invalidation","Cache Lookup","Cache Population","Cache Storage","Cache Target Response","Cache Validation","Canary Release","Conditional Routing","Content-Based Routing","Dynamic Routing","GraphQL Caching","Quota","Quota Reset","Rate Limiting","Rate Limiting (Dynamic)","Request Size Limiting","Throttling"]},{"category":"Mediation","capabilities":["CORS","Cache Eviction","Cache Lookup","Cache Store","GraphQL","Request Size Limit","Request Termination","Request Transformation","Response Transformation","SOAP Validation","URL Rewriting","XML to JSON"]},{"category":"Security","capabilities":["Auth0","API Key","API Key Authentication","Access Control Lists (ACL)","Audit Logs","Basic Authentication","CORS","IP Access Rules","JWT Validation","JWT authorizers","JWT authorizers (Custom","LDAP","LDAP Authentication","Mutual TLS","OAuth 1.0","OAuth 2.0","Okta","OpenID Connect","PingFederate OAuth2.0 Token","SAML Assertion"]},{"category":"Extensions","capabilities":["AWS service integrations","Kubernetes","Docker"]}]},"links":[{"rel":["urn:gateway:product"],"title":"Product","href":"https://www.akana.com/products/api-platform/api-gateway"},{"rel":["urn:gateway:docs"],"title":"Documentation","href":"https://www.akana.com/products/api-platform/api-gateway"},{"rel":["urn:gateway:logo"],"title":"Logo","href":"/images/gateways/name.svg"},{"rel":["urn:gateway:screenshot"],"title":"Screenshot","href":"https://kinlane-productions2.s3.amazonaws.com/api-gateways/akana.png"}]}

Akana

Akana is a provider of computer software products for application programming interface management. The company was founded as Digital Evolution and was later known as SOA Software. In November 2016, Akana was acquired by Rogue Wave Software.

Platform Capabilities

These are the wider capabilities beyond the gateway they offer.

• Design
• Gateway
• Analytics
• Portal
• Documentation
• Governance

Gateway Capabilities

These are the capabilities the gateway supports.

• Mediation
• Protocol Transformation
• Traffic Management
• Versioning

Upstream Protocols

The different protocols they support upstream.

• AMQP
• GraphQL
• HTTP/1.1
• SOAP
• JMS

Downtream Protocols

The different protocols they support downstream.

• AMQP
• GraphQL
• HTTP/1.1
• SOAP
• JMS

Custom Code

If they offer plugin, extension, and custom coding options.

• None

Delivery Models

These are they ways you can deliver this solution.

• Customer Managed (Cloud)
• Customer Managed (On-Premises)
• Hybrid
• SaaS

Policies

These are the policies available across the gateway capabilities.

Traffic Management

• Cache Eviction
• Cache Invalidation
• Cache Lookup
• Cache Population
• Cache Storage
• Cache Target Response
• Cache Validation
• Canary Release
• Conditional Routing
• Content-Based Routing
• Dynamic Routing
• GraphQL Caching
• Quota
• Quota Reset
• Rate Limiting
• Rate Limiting (Dynamic)
• Request Size Limiting
• Throttling

Mediation

• CORS
• Cache Eviction
• Cache Lookup
• Cache Store
• GraphQL
• Request Size Limit
• Request Termination
• Request Transformation
• Response Transformation
• SOAP Validation
• URL Rewriting
• XML to JSON

Security

• Auth0
• API Key
• API Key Authentication
• Access Control Lists (ACL)
• Audit Logs
• Basic Authentication
• CORS
• IP Access Rules
• JWT Validation
• JWT authorizers
• JWT authorizers (Custom
• LDAP
• LDAP Authentication
• Mutual TLS
• OAuth 1.0
• OAuth 2.0
• Okta
• OpenID Connect
• PingFederate OAuth2.0 Token
• SAML Assertion

Extensions

• AWS service integrations
• Kubernetes
• Docker

API Resources

No API Resources

(Product) (Docs)

---

{"class":["gateway"],"properties":{"name":"Ambassador Emissary-Ingress","provider":"Ambassador Emissary-Ingress","slug":"ambassador-emissary-ingress","rating":3,"license":"Proprietary, Open Source (Apache-2.0)","status":"Pending Review","researchDate":"2021-10","description":"Emissary-Ingress is an open-source Kubernetes-native Gateway + Layer 7 load balancer + Kubernetes Ingress built on Envoy Proxy. Emissary-ingress is a CNCF incubation project (and was formerly known as Ambassador Gateway).\n","platformCapabilities":["Gateway","Analytics","Portal","Documentation"],"gatewayCapabilities":["Mediation","OpenAPI Integration","Protocol Transformation","Traffic Management","Versioning"],"customCodeSupport":["None"],"upstreamProtocols":["HTTP/1.1","HTTP/2","HTTP/2.0","WebSockets","gRPC","TCP"],"downstreamProtocols":["HTTP/1.1","HTTP/2","HTTP/2.0","WebSockets","gRPC","TCP"],"deliveryModels":["Customer Managed (Cloud)","Customer Managed (On-Premises)","Hybrid","SaaS"],"policies":[{"category":"Traffic Management","capabilities":["Automatic Retries","Canary Releases","Circuit Breaker","Clusters","Concurrent Rate Limit","Concurrent Rate Limiting","Conditional Routing","Global Rate Limiting","Per-User Rate Limiting","Content-Based Routing","Distributed Tracing","Dynamic Routing","Header-based routing","Load Balancer Routing","Progressive Delivery","Quota","Quota Reset","Rate Limiting","Rate Limiting (Dynamic)","Request Size Limiting","Service Mesh","Service Discovery","Traffic Shadowing","Throttling","Traffic Optimization"]},{"category":"Mediation","capabilities":["Cross-Origin Resource Sharing (CORS)","Custom Exception Handling","Custom Request Filters","Custom Resource Definitions (CRDs)","Declarative Policy Engine","Edge Policy Console","Request Size Limit","Request Termination","Request Transformation","Response Transformation","SOAP Validation","URL Rewriting","XML to JSON","XSL Tranformations","XSL Transformation"]},{"category":"Security","capabilities":["Auth0","ACL (Access Control List)","API Key","API Key Authentication","Access Control Lists","Audit Logs","Automatic HTTPS","Basic Authentication","CORS","HMAC","IP Access Rules","JWT Validation","JWT Filter","JWT Authorizers","LDAP","LDAP Authentication","Multi-Domain Authentication","Mutual TLS","OAuth 1.0","OAuth 2.0","Okta","OpenID Connect","Role Based Access Control (RBAC)","Session Management","SAML Assertion","WAF"]},{"category":"Extensions","capabilities":["Auth0 Integration","HTTP Callout","HTTP integrations","Kubernetes","Envoy Proxy","Kubernetes Ingress Controller","Consul","Istio","LinkerD","CI/CD"]}]},"links":[{"rel":["urn:gateway:product"],"title":"Product","href":"https://www.getambassador.io/products/api-gateway/"},{"rel":["urn:gateway:docs"],"title":"Documentation","href":"https://www.getambassador.io/products/api-gateway/"},{"rel":["urn:gateway:logo"],"title":"Logo","href":"/images/gateways/name.svg"},{"rel":["urn:gateway:screenshot"],"title":"Screenshot","href":"https://kinlane-productions2.s3.amazonaws.com/api-gateways/ambassador-emissary-ingress.png"}]}

Ambassador Emissary-Ingress

Emissary-Ingress is an open-source Kubernetes-native Gateway + Layer 7 load balancer + Kubernetes Ingress built on Envoy Proxy. Emissary-ingress is a CNCF incubation project (and was formerly known as Ambassador Gateway).

Platform Capabilities

These are the wider capabilities beyond the gateway they offer.

• Gateway
• Analytics
• Portal
• Documentation

Gateway Capabilities

These are the capabilities the gateway supports.

• Mediation
• OpenAPI Integration
• Protocol Transformation
• Traffic Management
• Versioning

Upstream Protocols

The different protocols they support upstream.

• HTTP/1.1
• HTTP/2
• HTTP/2.0
• WebSockets
• gRPC
• TCP

Downtream Protocols

The different protocols they support downstream.

• HTTP/1.1
• HTTP/2
• HTTP/2.0
• WebSockets
• gRPC
• TCP

Custom Code

If they offer plugin, extension, and custom coding options.

• None

Delivery Models

These are they ways you can deliver this solution.

• Customer Managed (Cloud)
• Customer Managed (On-Premises)
• Hybrid
• SaaS

Policies

These are the policies available across the gateway capabilities.

Traffic Management

• Automatic Retries
• Canary Releases
• Circuit Breaker
• Clusters
• Concurrent Rate Limit
• Concurrent Rate Limiting
• Conditional Routing
• Global Rate Limiting
• Per-User Rate Limiting
• Content-Based Routing
• Distributed Tracing
• Dynamic Routing
• Header-based routing
• Load Balancer Routing
• Progressive Delivery
• Quota
• Quota Reset
• Rate Limiting
• Rate Limiting (Dynamic)
• Request Size Limiting
• Service Mesh
• Service Discovery
• Traffic Shadowing
• Throttling
• Traffic Optimization

Mediation

• Cross-Origin Resource Sharing (CORS)
• Custom Exception Handling
• Custom Request Filters
• Custom Resource Definitions (CRDs)
• Declarative Policy Engine
• Edge Policy Console
• Request Size Limit
• Request Termination
• Request Transformation
• Response Transformation
• SOAP Validation
• URL Rewriting
• XML to JSON
• XSL Tranformations
• XSL Transformation

Security

• Auth0
• ACL (Access Control List)
• API Key
• API Key Authentication
• Access Control Lists
• Audit Logs
• Automatic HTTPS
• Basic Authentication
• CORS
• HMAC
• IP Access Rules
• JWT Validation
• JWT Filter
• JWT Authorizers
• LDAP
• LDAP Authentication
• Multi-Domain Authentication
• Mutual TLS
• OAuth 1.0
• OAuth 2.0
• Okta
• OpenID Connect
• Role Based Access Control (RBAC)
• Session Management
• SAML Assertion
• WAF

Extensions

• Auth0 Integration
• HTTP Callout
• HTTP integrations
• Kubernetes
• Envoy Proxy
• Kubernetes Ingress Controller
• Consul
• Istio
• LinkerD
• CI/CD

API Resources

No API Resources

(Product) (Docs)

---

{"class":["gateway"],"properties":{"name":"Apinizer","provider":"Apinizer","slug":"apinizer","rating":3,"license":"Proprietary","status":"Pending Review","researchDate":"2022-11","description":"Apinizer helps enterprises tackle the hardest and most complex issues in building, connecting, and securing APIs. Helps digital transformation and provides secure and easy integration ability.\n","platformCapabilities":["Gateway","Design","Analytics","Threat Protection","Templates","Testing","Monitoring"],"gatewayCapabilities":["Mediation","Protocol Transformation","Traffic Management","Versioning"],"customCodeSupport":["None"],"upstreamProtocols":["HTTP/1.1","SOAP"],"downstreamProtocols":["HTTP/1.1","SOAP"],"deliveryModels":["SaaS"],"policies":[{"category":"Traffic Management","capabilities":["Cache Eviction","Cache Invalidation","Cache Lookup","Cache Population","Cache Storage","Cache Target Response","Cache Validation","Circuit Breaker","Conditional Routing","Content-Based Routing","Dynamic Routing","GraphQL Caching","Load Balancer Routing","Quota","Quota Reset","Rate Limiting","Request Size Limiting","Throttling","Traffic Optimization"]},{"category":"Mediation","capabilities":["CORS","Custom Exception Handling","Redaction","Request Size Limit","Request Termination","Request Transformation","Response Transformation","Regex Filters","SOAP Validation","URL Rewriting","XML to JSON"]},{"category":"Security","capabilities":["API Key","API Key Authentication","Access Control Lists (ACL)","Basic Authentication","CORS","Digital Signature Verification","IP Access Rules","JWT Validation","JWT authorizers","JWT authorizers (Custom","Mutual TLS","OAuth 1.0","OAuth 2.0","OpenID Connect","SAML Assertion"]},{"category":"Extensions","capabilities":["HTTP integrations"]}]},"links":[{"rel":["urn:gateway:product"],"title":"Product","href":"https://www.apinizer.com/products/api-gateway/"},{"rel":["urn:gateway:docs"],"title":"Documentation","href":"https://www.apinizer.com/products/api-gateway/"},{"rel":["urn:gateway:logo"],"title":"Logo","href":"/images/gateways/name.svg"},{"rel":["urn:gateway:screenshot"],"title":"Screenshot","href":"https://kinlane-productions2.s3.amazonaws.com/api-gateways/apinizer.png"}]}

Apinizer

Apinizer helps enterprises tackle the hardest and most complex issues in building, connecting, and securing APIs. Helps digital transformation and provides secure and easy integration ability.

Platform Capabilities

These are the wider capabilities beyond the gateway they offer.

• Gateway
• Design
• Analytics
• Threat Protection
• Templates
• Testing
• Monitoring

Gateway Capabilities

These are the capabilities the gateway supports.

• Mediation
• Protocol Transformation
• Traffic Management
• Versioning

Upstream Protocols

The different protocols they support upstream.

• HTTP/1.1
• SOAP

Downtream Protocols

The different protocols they support downstream.

• HTTP/1.1
• SOAP

Custom Code

If they offer plugin, extension, and custom coding options.

• None

Delivery Models

These are they ways you can deliver this solution.

• SaaS

Policies

These are the policies available across the gateway capabilities.

Traffic Management

• Cache Eviction
• Cache Invalidation
• Cache Lookup
• Cache Population
• Cache Storage
• Cache Target Response
• Cache Validation
• Circuit Breaker
• Conditional Routing
• Content-Based Routing
• Dynamic Routing
• GraphQL Caching
• Load Balancer Routing
• Quota
• Quota Reset
• Rate Limiting
• Request Size Limiting
• Throttling
• Traffic Optimization

Mediation

• CORS
• Custom Exception Handling
• Redaction
• Request Size Limit
• Request Termination
• Request Transformation
• Response Transformation
• Regex Filters
• SOAP Validation
• URL Rewriting
• XML to JSON

Security

• API Key
• API Key Authentication
• Access Control Lists (ACL)
• Basic Authentication
• CORS
• Digital Signature Verification
• IP Access Rules
• JWT Validation
• JWT authorizers
• JWT authorizers (Custom
• Mutual TLS
• OAuth 1.0
• OAuth 2.0
• OpenID Connect
• SAML Assertion

Extensions

• HTTP integrations

API Resources

No API Resources

(Product) (Docs)

---

{"class":["gateway"],"properties":{"name":"APISIX","provider":"APISIX","slug":"apisix","rating":3,"license":"Open Source (Apache-2.0)","status":"Pending Review","researchDate":"2022-11","description":"Apache APISIX provides rich traffic management features like Load Balancing, Dynamic Upstream, Canary Release, Circuit Breaking, Authentication, Observability, etc.\n","platformCapabilities":["Gateway","Dashboards","Analytics"],"gatewayCapabilities":["Mediation","OpenAPI Integration","Traffic Management","Versioning"],"customCodeSupport":["Go","Java","JavaScript","Python","Lua","WASM"],"upstreamProtocols":["HTTP/1.1","RPC","WebSockets","gRPC","RPC","TCP","UDP","MQTT"],"downstreamProtocols":["HTTP/1.1","RPC","WebSockets","gRPC","RPC","TCP","UDP","MQTT"],"deliveryModels":["Customer Managed (On-Premises)"],"policies":[{"category":"Traffic Management","capabilities":["Cache Eviction","Cache Invalidation","Cache Lookup","Cache Population","Cache Storage","Cache Target Response","Cache Validation","Canary Release","Circuit Breaker","Conditional Routing","Content-Based Routing","Dynamic Routing","Ingress Controller","Traffic Split","Proxy Mirror","Load Balancer Routing","Quota","Quota Reset","Rate Limiting","Rate Limiting (Dynamic)","Request Size Limiting","Service Discovery","Throttling","Traffic Optimization"]},{"category":"Mediation","capabilities":["CORS","Context Persistence","Custom Data Storage","Custom Exception Handling","Request Size Limit","Request Termination","Request Transformation","Response Transformation","URL Rewriting"]},{"category":"Security","capabilities":["ACL (Access Control List)","API Key","API Key Authentication","Access Control Lists","Audit Logs","Basic Authentication","CORS","IP Access Rules","JWT Validation","JWT authorizers","JWT authorizers (Custom","Kerberos","LDAP","LDAP Authentication","Lambda authorizers","Let's Encrypt","Managed Identity Authentication","Message Inspection","Mutual TLS","OAuth 1.0","OAuth 2.0","Okta","OpenID Connect","PingFederate OAuth2.0 Token","SAML Assertion","SLA Management","WAF","WSS Username","XML Threat Protection","XSS Protection"]},{"category":"Extensions","capabilities":["Kubernetes","Containers"]}]},"links":[{"rel":["urn:gateway:product"],"title":"Product","href":"https://apisix.apache.org/"},{"rel":["urn:gateway:docs"],"title":"Documentation","href":"https://apisix.apache.org/"},{"rel":["urn:gateway:logo"],"title":"Logo","href":"/images/gateways/name.svg"},{"rel":["urn:gateway:screenshot"],"title":"Screenshot","href":"https://kinlane-productions2.s3.amazonaws.com/api-gateways/apisix.png"}]}

APISIX

Apache APISIX provides rich traffic management features like Load Balancing, Dynamic Upstream, Canary Release, Circuit Breaking, Authentication, Observability, etc.

Platform Capabilities

These are the wider capabilities beyond the gateway they offer.

• Gateway
• Dashboards
• Analytics

Gateway Capabilities

These are the capabilities the gateway supports.

• Mediation
• OpenAPI Integration
• Traffic Management
• Versioning

Upstream Protocols

The different protocols they support upstream.

• HTTP/1.1
• RPC
• WebSockets
• gRPC
• RPC
• TCP
• UDP
• MQTT

Downtream Protocols

The different protocols they support downstream.

• HTTP/1.1
• RPC
• WebSockets
• gRPC
• RPC
• TCP
• UDP
• MQTT

Custom Code

If they offer plugin, extension, and custom coding options.

• Go
• Java
• JavaScript
• Python
• Lua
• WASM

Delivery Models

These are they ways you can deliver this solution.

• Customer Managed (On-Premises)

Policies

These are the policies available across the gateway capabilities.

Traffic Management

• Cache Eviction
• Cache Invalidation
• Cache Lookup
• Cache Population
• Cache Storage
• Cache Target Response
• Cache Validation
• Canary Release
• Circuit Breaker
• Conditional Routing
• Content-Based Routing
• Dynamic Routing
• Ingress Controller
• Traffic Split
• Proxy Mirror
• Load Balancer Routing
• Quota
• Quota Reset
• Rate Limiting
• Rate Limiting (Dynamic)
• Request Size Limiting
• Service Discovery
• Throttling
• Traffic Optimization

Mediation

• CORS
• Context Persistence
• Custom Data Storage
• Custom Exception Handling
• Request Size Limit
• Request Termination
• Request Transformation
• Response Transformation
• URL Rewriting

Security

• ACL (Access Control List)
• API Key
• API Key Authentication
• Access Control Lists
• Audit Logs
• Basic Authentication
• CORS
• IP Access Rules
• JWT Validation
• JWT authorizers
• JWT authorizers (Custom
• Kerberos
• LDAP
• LDAP Authentication
• Lambda authorizers
• Let's Encrypt
• Managed Identity Authentication
• Message Inspection
• Mutual TLS
• OAuth 1.0
• OAuth 2.0
• Okta
• OpenID Connect
• PingFederate OAuth2.0 Token
• SAML Assertion
• SLA Management
• WAF
• WSS Username
• XML Threat Protection
• XSS Protection

Extensions

• Kubernetes
• Containers

API Resources

No API Resources

(Product) (Docs)

---

{"class":["gateway"],"properties":{"name":"App42","provider":"App42","slug":"app42","rating":3,"license":"Proprietary","status":"Pending Review","researchDate":"2022-11","description":"ShepHertz helps enterprises in their digital transformation journey by providing multiple solutions as one single platform. The platform not only provides APIs to build Omni-Channel Apps but also provides Actionable Big Data solution (Marketing Automation & Lead/Campaign Management) to grow their digital properties by increasing user acquisition, engagement, retention & conversion.\n","platformCapabilities":["Design","Gateway","Analytics","Portal","Documentation","Monetization","Monitoring","Testing","SDK"],"gatewayCapabilities":["Custom Code Execution","Mediation","Traffic Management"],"customCodeSupport":["None"],"upstreamProtocols":["HTTP/1.1","SOAP"],"downstreamProtocols":["HTTP/1.1","SOAP"],"deliveryModels":["Customer Managed (Cloud)","Customer Managed (On-Premises)","Hybrid","SaaS"],"policies":[{"category":"Traffic Management","capabilities":["Cache Eviction","Cache Invalidation","Cache Lookup","Cache Population","Cache Storage","Cache Target Response","Cache Validation","Conditional Routing","Content-Based Routing","Pre Processing","Post Processing","Quota","Quota Reset","Rate Limiting","Request Size Limiting","Throttling","Traffic Optimization"]},{"category":"Mediation","capabilities":["CORS","Request Size Limit","Request Termination","Request Transformation","Response Transformation"]},{"category":"Security","capabilities":["API Key","API Key Authentication","AWS IAM roles and policies","AWS IAM roles and policies","Access Control Lists","Audit Logs","Basic Authentication","CORS","Mutual TLS","OAuth 1.0","OAuth 2.0"]},{"category":"Extensions","capabilities":null}]},"links":[{"rel":["urn:gateway:product"],"title":"Product","href":"https://apigateway.shephertz.com/"},{"rel":["urn:gateway:docs"],"title":"Documentation","href":"https://apigateway.shephertz.com/"},{"rel":["urn:gateway:logo"],"title":"Logo","href":"/images/gateways/name.svg"},{"rel":["urn:gateway:screenshot"],"title":"Screenshot","href":"https://kinlane-productions2.s3.amazonaws.com/api-gateways/app42.png"}]}

App42

ShepHertz helps enterprises in their digital transformation journey by providing multiple solutions as one single platform. The platform not only provides APIs to build Omni-Channel Apps but also provides Actionable Big Data solution (Marketing Automation & Lead/Campaign Management) to grow their digital properties by increasing user acquisition, engagement, retention & conversion.

Platform Capabilities

These are the wider capabilities beyond the gateway they offer.

• Design
• Gateway
• Analytics
• Portal
• Documentation
• Monetization
• Monitoring
• Testing
• SDK

Gateway Capabilities

These are the capabilities the gateway supports.

• Custom Code Execution
• Mediation
• Traffic Management

Upstream Protocols

The different protocols they support upstream.

• HTTP/1.1
• SOAP

Downtream Protocols

The different protocols they support downstream.

• HTTP/1.1
• SOAP

Custom Code

If they offer plugin, extension, and custom coding options.

• None

Delivery Models

These are they ways you can deliver this solution.

• Customer Managed (Cloud)
• Customer Managed (On-Premises)
• Hybrid
• SaaS

Policies

These are the policies available across the gateway capabilities.

Traffic Management

• Cache Eviction
• Cache Invalidation
• Cache Lookup
• Cache Population
• Cache Storage
• Cache Target Response
• Cache Validation
• Conditional Routing
• Content-Based Routing
• Pre Processing
• Post Processing
• Quota
• Quota Reset
• Rate Limiting
• Request Size Limiting
• Throttling
• Traffic Optimization

Mediation

• CORS
• Request Size Limit
• Request Termination
• Request Transformation
• Response Transformation

Security

• API Key
• API Key Authentication
• AWS IAM roles and policies
• AWS IAM roles and policies
• Access Control Lists
• Audit Logs
• Basic Authentication
• CORS
• Mutual TLS
• OAuth 1.0
• OAuth 2.0

Extensions

API Resources

No API Resources

(Product) (Docs)

---

{"class":["gateway"],"properties":{"name":"IBM API Connect","provider":"IBM API Connect","slug":"ibm-api-connect","rating":3,"license":"Proprietary, Open Source (Apache-2.0)","status":"Pending Review","researchDate":"2021-10","description":"IBM® API Connect® is a secure API management solution that utilizes an intuitive experience to help consistently create, manage, secure, socialize and monetize APIs, helping power digital transformation on premises and across clouds. This means you and your customers can power digital apps and spur innovation in real time. IBM API Connect is also available with other capabilities as part of IBM Cloud Pak® for Integration, which can help you automate application modernization and API management as part of your journey to cloud.\n","platformCapabilities":["Design","Gateway","Analytics","Portal","Documentation","Monetization"],"gatewayCapabilities":["Mediation","Traffic Management","Versioning"],"customCodeSupport":["None"],"upstreamProtocols":["HTTP/1.1"],"downstreamProtocols":["HTTP/1.1"],"deliveryModels":["SaaS"],"policies":[{"category":"Traffic Management","capabilities":["Content-Based Routing","Quota","Quota Reset","Rate Limiting","Request Size Limiting","Service Discovery","Throttling"]},{"category":"Mediation","capabilities":["CORS","Request Size Limit","Request Termination","Request Transformation","Response Transformation","URL Rewriting"]},{"category":"Security","capabilities":["API Key","API Key Authentication","Access Control Lists (ACL)","Audit Logs","Basic Authentication","CORS","IP Access Rules","Mutual TLS","OAuth 1.0","OAuth 2.0"]},{"category":"Extensions","capabilities":["HTTP Callout","HTTP integrations"]}]},"links":[{"rel":["urn:gateway:product"],"title":"Product","href":"https://www.ibm.com/in-en/cloud/api-connect"},{"rel":["urn:gateway:docs"],"title":"Documentation","href":"https://www.ibm.com/in-en/cloud/api-connect"},{"rel":["urn:gateway:logo"],"title":"Logo","href":"/images/gateways/name.svg"},{"rel":["urn:gateway:screenshot"],"title":"Screenshot","href":"https://kinlane-productions2.s3.amazonaws.com/api-gateways/ibm-api-connect.png"}]}

IBM API Connect

IBM® API Connect® is a secure API management solution that utilizes an intuitive experience to help consistently create, manage, secure, socialize and monetize APIs, helping power digital transformation on premises and across clouds. This means you and your customers can power digital apps and spur innovation in real time. IBM API Connect is also available with other capabilities as part of IBM Cloud Pak® for Integration, which can help you automate application modernization and API management as part of your journey to cloud.

Platform Capabilities

These are the wider capabilities beyond the gateway they offer.

• Design
• Gateway
• Analytics
• Portal
• Documentation
• Monetization

Gateway Capabilities

These are the capabilities the gateway supports.

• Mediation
• Traffic Management
• Versioning

Upstream Protocols

The different protocols they support upstream.

• HTTP/1.1

Downtream Protocols

The different protocols they support downstream.

• HTTP/1.1

Custom Code

If they offer plugin, extension, and custom coding options.

• None

Delivery Models

These are they ways you can deliver this solution.

• SaaS

Policies

These are the policies available across the gateway capabilities.

Traffic Management

• Content-Based Routing
• Quota
• Quota Reset
• Rate Limiting
• Request Size Limiting
• Service Discovery
• Throttling

Mediation

• CORS
• Request Size Limit
• Request Termination
• Request Transformation
• Response Transformation
• URL Rewriting

Security

• API Key
• API Key Authentication
• Access Control Lists (ACL)
• Audit Logs
• Basic Authentication
• CORS
• IP Access Rules
• Mutual TLS
• OAuth 1.0
• OAuth 2.0

Extensions

• HTTP Callout
• HTTP integrations

API Resources

No API Resources

(Product) (Docs)

---

{"class":["gateway"],"properties":{"name":"Nevatech","provider":"Nevatech","slug":"nevatech","rating":3,"license":"Proprietary","status":"Pending Review","researchDate":"2022-11","description":"Nevatech Sentinet is a powerful, flexible, lightweight and scalable API Management and API Governance software platform that will comprehensively address all your API Management needs. Think of any API Management feature or deployment model - and you will find it covered by Sentinet with unprecedented ease of use and completeness of capabilities.\n","platformCapabilities":["Gateway","Analytics","Portal","Documentation","Monetization","Monitoring","Testing","Catalog"],"gatewayCapabilities":["Mediation","Traffic Management","Versioning"],"customCodeSupport":["None"],"upstreamProtocols":["HTTP/1.1","SOAP"],"downstreamProtocols":["HTTP/1.1","SOAP"],"deliveryModels":["SaaS"],"policies":[{"category":"Traffic Management","capabilities":["Quota","Quota Reset","Rate Limiting","Request Size Limiting","Service Discovery","Throttling","Traffic Optimization"]},{"category":"Mediation","capabilities":["CORS","Request Size Limit","Request Termination","Request Transformation","Response Transformation"]},{"category":"Security","capabilities":["API Key","API Key Authentication","Access Control Lists (ACL)","Audit Logs","Basic Authentication","CORS","IP Access Rules","JWT","JWT Validation","JWT authorizers","JWT authorizers (Custom","Mutual TLS","OAuth 1.0","OAuth 2.0","OpenID Connect"]},{"category":"Extensions","capabilities":["HTTP Callout","HTTP integrations","Azure"]}]},"links":[{"rel":["urn:gateway:product"],"title":"Product","href":"https://nevatech.com/how-it-works/api-gateway"},{"rel":["urn:gateway:docs"],"title":"Documentation","href":"https://nevatech.com/how-it-works/api-gateway"},{"rel":["urn:gateway:logo"],"title":"Logo","href":"/images/gateways/name.svg"},{"rel":["urn:gateway:screenshot"],"title":"Screenshot","href":"https://kinlane-productions2.s3.amazonaws.com/api-gateways/nevatech.png"}]}

Nevatech

Nevatech Sentinet is a powerful, flexible, lightweight and scalable API Management and API Governance software platform that will comprehensively address all your API Management needs. Think of any API Management feature or deployment model - and you will find it covered by Sentinet with unprecedented ease of use and completeness of capabilities.

Platform Capabilities

These are the wider capabilities beyond the gateway they offer.

• Gateway
• Analytics
• Portal
• Documentation
• Monetization
• Monitoring
• Testing
• Catalog

Gateway Capabilities

These are the capabilities the gateway supports.

• Mediation
• Traffic Management
• Versioning

Upstream Protocols

The different protocols they support upstream.

• HTTP/1.1
• SOAP

Downtream Protocols

The different protocols they support downstream.

• HTTP/1.1
• SOAP

Custom Code

If they offer plugin, extension, and custom coding options.

• None

Delivery Models

These are they ways you can deliver this solution.

• SaaS

Policies

These are the policies available across the gateway capabilities.

Traffic Management

• Quota
• Quota Reset
• Rate Limiting
• Request Size Limiting
• Service Discovery
• Throttling
• Traffic Optimization

Mediation

• CORS
• Request Size Limit
• Request Termination
• Request Transformation
• Response Transformation

Security

• API Key
• API Key Authentication
• Access Control Lists (ACL)
• Audit Logs
• Basic Authentication
• CORS
• IP Access Rules
• JWT
• JWT Validation
• JWT authorizers
• JWT authorizers (Custom
• Mutual TLS
• OAuth 1.0
• OAuth 2.0
• OpenID Connect

Extensions

• HTTP Callout
• HTTP integrations
• Azure

API Resources

No API Resources

(Product) (Docs)

---

{"class":["gateway"],"properties":{"name":"Oracle","provider":"Oracle","slug":"oracle","rating":3,"license":"Proprietary","status":"Pending Review","researchDate":"2022-11","description":"The Gateway service enables you to publish APIs with private endpoints that are accessible from within your network, and which you can expose with public IP addresses if you want them to accept internet traffic. The endpoints support API validation, request and response transformation, CORS, authentication and authorization, and request limiting.\n","platformCapabilities":["Gateway","Analytics","Portal","Documentation","SDK"],"gatewayCapabilities":["Mediation","Traffic Management","Versioning"],"customCodeSupport":["None"],"upstreamProtocols":["HTTP/1.1"],"downstreamProtocols":["HTTP/1.1"],"deliveryModels":["Customer Managed (Cloud)","Customer Managed (On-Premises)","Hybrid"],"policies":[{"category":"Traffic Management","capabilities":["Cache Eviction","Cache Invalidation","Cache Lookup","Cache Population","Cache Storage","Cache Target Response","Cache Validation","Quota","Quota Reset","Rate Limiting","Request Size Limiting","Regions","Throttling","Traffic Optimization"]},{"category":"Mediation","capabilities":["API Key","API Key Authentication","Access Control Lists (ACL)","Audit Logs","Basic Authentication","CORS","IP Access Rules","Message Inspection","Mutual TLS","OAuth 1.0","OAuth 2.0"]},{"category":"Extensions","capabilities":["HTTP Callout","HTTP integrations","Command Line Interface (CLI)"]}]},"links":[{"rel":["urn:gateway:product"],"title":"Product","href":"https://docs.oracle.com/en-us/iaas/Content/APIGateway/home.htm"},{"rel":["urn:gateway:docs"],"title":"Documentation","href":"https://docs.oracle.com/en-us/iaas/Content/APIGateway/home.htm"},{"rel":["urn:gateway:logo"],"title":"Logo","href":"/images/gateways/name.svg"},{"rel":["urn:gateway:screenshot"],"title":"Screenshot","href":"https://kinlane-productions2.s3.amazonaws.com/api-gateways/oracle.png"}]}

Oracle

The Gateway service enables you to publish APIs with private endpoints that are accessible from within your network, and which you can expose with public IP addresses if you want them to accept internet traffic. The endpoints support API validation, request and response transformation, CORS, authentication and authorization, and request limiting.

Platform Capabilities

These are the wider capabilities beyond the gateway they offer.

• Gateway
• Analytics
• Portal
• Documentation
• SDK

Gateway Capabilities

These are the capabilities the gateway supports.

• Mediation
• Traffic Management
• Versioning

Upstream Protocols

The different protocols they support upstream.

• HTTP/1.1

Downtream Protocols

The different protocols they support downstream.

• HTTP/1.1

Custom Code

If they offer plugin, extension, and custom coding options.

• None

Delivery Models

These are they ways you can deliver this solution.

• Customer Managed (Cloud)
• Customer Managed (On-Premises)
• Hybrid

Policies

These are the policies available across the gateway capabilities.

Traffic Management

• Cache Eviction
• Cache Invalidation
• Cache Lookup
• Cache Population
• Cache Storage
• Cache Target Response
• Cache Validation
• Quota
• Quota Reset
• Rate Limiting
• Request Size Limiting
• Regions
• Throttling
• Traffic Optimization

Mediation

• API Key
• API Key Authentication
• Access Control Lists (ACL)
• Audit Logs
• Basic Authentication
• CORS
• IP Access Rules
• Message Inspection
• Mutual TLS
• OAuth 1.0
• OAuth 2.0

Extensions

• HTTP Callout
• HTTP integrations
• Command Line Interface (CLI)

API Resources

No API Resources

(Product) (Docs)

---

{"class":["gateway"],"properties":{"name":"Sensedia","provider":"Sensedia","slug":"sensedia","rating":3,"license":"Proprietary, Open Source (Apache-2.0)","status":"Pending Review","researchDate":"2022-11","description":"Sensedia is a leading integration solutions provider with more than +200 enterprise clients across a range of sectors. Its world-class portfolio includes: an API Management Platform, Adaptive Governance, Events Hub, Service Mesh, Cloud Connectors and Strategic Professional Services' teams.\n","platformCapabilities":["Design","Gateway","Analytics","Portal","Documentation","Monetization","SDK","Performance","Dashboards","Teams"],"gatewayCapabilities":["Mediation","Mocking","OpenAPI Integration","Traffic Management","Versioning"],"customCodeSupport":["None"],"upstreamProtocols":["HTTP/1.1","SOAP","Database","ERP"],"downstreamProtocols":["HTTP/1.1","SOAP"],"deliveryModels":["SaaS"],"policies":[{"category":"Traffic Management","capabilities":["Cache Eviction","Cache Invalidation","Cache Lookup","Cache Population","Cache Storage","Cache Target Response","Cache Validation","Plans","Quota","Quota Reset","Rate Limiting","Request Size Limiting","Regions","Spike Arrest","Spike Control","Throttling","Traffic Optimization"]},{"category":"Mediation","capabilities":["Cache Eviction","Cache Lookup","Cache Store","CORS","Request Size Limit","Request Termination","Request Transformation","Response Transformation","SOAP Validation","URL Rewriting"]},{"category":"Security","capabilities":["API Key","API Key Authentication","Access Control Lists (ACL)","Audit Logs","Basic Authentication","CORS","IP Access Rules","JWS","JWT Validation","JWT authorizers","Message Inspection","Mutual TLS","OAuth 1.0","OAuth 2.0","PCI - DSS Compliance"]},{"category":"Extensions","capabilities":["HTTP Callout","HTTP integrations","Alerts"]}]},"links":[{"rel":["urn:gateway:product"],"title":"Product","href":"https://www.sensedia.com"},{"rel":["urn:gateway:docs"],"title":"Documentation","href":"https://www.sensedia.com/api-management-platform"},{"rel":["urn:gateway:logo"],"title":"Logo","href":"/images/gateways/name.svg"},{"rel":["urn:gateway:screenshot"],"title":"Screenshot","href":"https://kinlane-productions2.s3.amazonaws.com/api-gateways/sensedia.png"}]}

Sensedia

Sensedia is a leading integration solutions provider with more than +200 enterprise clients across a range of sectors. Its world-class portfolio includes: an API Management Platform, Adaptive Governance, Events Hub, Service Mesh, Cloud Connectors and Strategic Professional Services' teams.

Platform Capabilities

These are the wider capabilities beyond the gateway they offer.

• Design
• Gateway
• Analytics
• Portal
• Documentation
• Monetization
• SDK
• Performance
• Dashboards
• Teams

Gateway Capabilities

These are the capabilities the gateway supports.

• Mediation
• Mocking
• OpenAPI Integration
• Traffic Management
• Versioning

Upstream Protocols

The different protocols they support upstream.

• HTTP/1.1
• SOAP
• Database
• ERP

Downtream Protocols

The different protocols they support downstream.

• HTTP/1.1
• SOAP

Custom Code

If they offer plugin, extension, and custom coding options.

• None

Delivery Models

These are they ways you can deliver this solution.

• SaaS

Policies

These are the policies available across the gateway capabilities.

Traffic Management

• Cache Eviction
• Cache Invalidation
• Cache Lookup
• Cache Population
• Cache Storage
• Cache Target Response
• Cache Validation
• Plans
• Quota
• Quota Reset
• Rate Limiting
• Request Size Limiting
• Regions
• Spike Arrest
• Spike Control
• Throttling
• Traffic Optimization

Mediation

• Cache Eviction
• Cache Lookup
• Cache Store
• CORS
• Request Size Limit
• Request Termination
• Request Transformation
• Response Transformation
• SOAP Validation
• URL Rewriting

Security

• API Key
• API Key Authentication
• Access Control Lists (ACL)
• Audit Logs
• Basic Authentication
• CORS
• IP Access Rules
• JWS
• JWT Validation
• JWT authorizers
• Message Inspection
• Mutual TLS
• OAuth 1.0
• OAuth 2.0
• PCI - DSS Compliance

Extensions

• HTTP Callout
• HTTP integrations
• Alerts

API Resources

No API Resources

(Product) (Docs)

---

{"class":["gateway"],"properties":{"name":"SnapLogic","provider":"SnapLogic","slug":"snaplogic","rating":3,"license":"Proprietary, Open Source (Apache-2.0)","status":"Pending Review","researchDate":"2022-11","description":"SnapLogic is a commercial software company that provides integration platform as a service tools for connecting Cloud data sources, SaaS applications and on-premises business software applications. SnapLogic was founded in 2006, and its headquarters are in San Mateo, CA.\n","platformCapabilities":["Gateway","Analytics","Portal","Documentation","Dashboard"],"gatewayCapabilities":["Mediation","OpenAPI Integration","Traffic Management","Versioning"],"customCodeSupport":["None"],"upstreamProtocols":["HTTP/1.1","Database","ERP"],"downstreamProtocols":["HTTP/1.1"],"deliveryModels":["Customer Managed (Cloud)","Customer Managed (On-Premises)","Hybrid"],"policies":[{"category":"Traffic Management","capabilities":["Quota","Quota Reset","Rate Limiting","Request Size Limiting","Throttling"]},{"category":"Mediation","capabilities":["CORS","Request Size Limit","Request Termination","Request Transformation","Response Transformation","URL Rewriting"]},{"category":"Security","capabilities":["API Key","API Key Authentication","Access Control Lists (ACL)","Audit Logs","Basic Authentication","CORS","IP Access Rules","JWT","JWT Validation","JWT authorizers","Message Inspection","Mutual TLS","OAuth 1.0","OAuth 2.0"]},{"category":"Extensions","capabilities":["HTTP Callout","HTTP integrations","Integration Server services"]}]},"links":[{"rel":["urn:gateway:product"],"title":"Product","href":"https://www.snaplogic.com/products/api-management-development"},{"rel":["urn:gateway:docs"],"title":"Documentation","href":"https://www.snaplogic.com/products/api-management-development"},{"rel":["urn:gateway:logo"],"title":"Logo","href":"/images/gateways/name.svg"},{"rel":["urn:gateway:screenshot"],"title":"Screenshot","href":"https://kinlane-productions2.s3.amazonaws.com/api-gateways/snaplogic.png"}]}

SnapLogic

SnapLogic is a commercial software company that provides integration platform as a service tools for connecting Cloud data sources, SaaS applications and on-premises business software applications. SnapLogic was founded in 2006, and its headquarters are in San Mateo, CA.

Platform Capabilities

These are the wider capabilities beyond the gateway they offer.

• Gateway
• Analytics
• Portal
• Documentation
• Dashboard

Gateway Capabilities

These are the capabilities the gateway supports.

• Mediation
• OpenAPI Integration
• Traffic Management
• Versioning

Upstream Protocols

The different protocols they support upstream.

• HTTP/1.1
• Database
• ERP

Downtream Protocols

The different protocols they support downstream.

• HTTP/1.1

Custom Code

If they offer plugin, extension, and custom coding options.

• None

Delivery Models

These are they ways you can deliver this solution.

• Customer Managed (Cloud)
• Customer Managed (On-Premises)
• Hybrid

Policies

These are the policies available across the gateway capabilities.

Traffic Management

• Quota
• Quota Reset
• Rate Limiting
• Request Size Limiting
• Throttling

Mediation

• CORS
• Request Size Limit
• Request Termination
• Request Transformation
• Response Transformation
• URL Rewriting

Security

• API Key
• API Key Authentication
• Access Control Lists (ACL)
• Audit Logs
• Basic Authentication
• CORS
• IP Access Rules
• JWT
• JWT Validation
• JWT authorizers
• Message Inspection
• Mutual TLS
• OAuth 1.0
• OAuth 2.0

Extensions

• HTTP Callout
• HTTP integrations
• Integration Server services

API Resources

No API Resources

(Product) (Docs)

---

{"class":["gateway"],"properties":{"name":"Spring Cloud","provider":"Spring Cloud","slug":"spring-cloud","rating":3,"license":"Open Source (Apache-2.0)","status":"Pending Review","researchDate":"2022-11","description":"This project provides an Gateway built on top of the Spring Ecosystem, including: Spring 5, Spring Boot 2 and Project Reactor. Spring Cloud Gateway aims to provide a simple, yet effective way to route to APIs and provide cross cutting concerns to them such as: security, monitoring/metrics, and resiliency.\n","platformCapabilities":["Gateway","Testing","Performance"],"gatewayCapabilities":["Mediation","Traffic Management","Versioning"],"customCodeSupport":["None"],"upstreamProtocols":["HTTP/1.1"],"downstreamProtocols":["HTTP/1.1"],"deliveryModels":["SaaS"],"policies":[{"category":"Traffic Management","capabilities":["Circuit Breaker","Conditional Routing","Content-Based Routing","Clusters","Dynamic Routing","Load Balancer Routing","Quota","Quota Reset","Rate Limiting","Request Size Limiting","Throttling"]},{"category":"Mediation","capabilities":["CORS","Request Size Limit","Request Termination","Request Transformation","Response Transformation","URL Rewriting"]},{"category":"Security","capabilities":["API Key","API Key Authentication","Access Control Lists (ACL)","Audit Logs","Basic Authentication","CORS","IP Access Rules","JWS","JWT Validation","JWT authorizers","Mutual TLS","OAuth 1.0","OAuth 2.0","OpenID Connect","Role-Based Access Control","SSO"]},{"category":"Extensions","capabilities":["HTTP Callout","HTTP integrations","Kubernetes","CI/CD","Containers"]}]},"links":[{"rel":["urn:gateway:product"],"title":"Product","href":"https://spring.io/projects/spring-cloud-gateway"},{"rel":["urn:gateway:docs"],"title":"Documentation","href":"https://spring.io/projects/spring-cloud-gateway"},{"rel":["urn:gateway:logo"],"title":"Logo","href":"/images/gateways/name.svg"},{"rel":["urn:gateway:screenshot"],"title":"Screenshot","href":"https://kinlane-productions2.s3.amazonaws.com/api-gateways/spring-cloud.png"}]}

Spring Cloud

This project provides an Gateway built on top of the Spring Ecosystem, including: Spring 5, Spring Boot 2 and Project Reactor. Spring Cloud Gateway aims to provide a simple, yet effective way to route to APIs and provide cross cutting concerns to them such as: security, monitoring/metrics, and resiliency.

Platform Capabilities

These are the wider capabilities beyond the gateway they offer.

• Gateway
• Testing
• Performance

Gateway Capabilities

These are the capabilities the gateway supports.

• Mediation
• Traffic Management
• Versioning

Upstream Protocols

The different protocols they support upstream.

• HTTP/1.1

Downtream Protocols

The different protocols they support downstream.

• HTTP/1.1

Custom Code

If they offer plugin, extension, and custom coding options.

• None

Delivery Models

These are they ways you can deliver this solution.

• SaaS

Policies

These are the policies available across the gateway capabilities.

Traffic Management

• Circuit Breaker
• Conditional Routing
• Content-Based Routing
• Clusters
• Dynamic Routing
• Load Balancer Routing
• Quota
• Quota Reset
• Rate Limiting
• Request Size Limiting
• Throttling

Mediation

• CORS
• Request Size Limit
• Request Termination
• Request Transformation
• Response Transformation
• URL Rewriting

Security

• API Key
• API Key Authentication
• Access Control Lists (ACL)
• Audit Logs
• Basic Authentication
• CORS
• IP Access Rules
• JWS
• JWT Validation
• JWT authorizers
• Mutual TLS
• OAuth 1.0
• OAuth 2.0
• OpenID Connect
• Role-Based Access Control
• SSO

Extensions

• HTTP Callout
• HTTP integrations
• Kubernetes
• CI/CD
• Containers

API Resources

No API Resources

(Product) (Docs)

---

{"class":["gateway"],"properties":{"name":"Tibco","provider":"Tibco","slug":"tibco","rating":3,"license":"Proprietary","status":"Pending Review","researchDate":"2022-11","description":"Employ a wide range of policies to gain control over how, when, and from where your user community can access your APIs. The API Management Control Center lets you fully control your APIs. The traffic manager polices your servers to safeguard them against unauthorized access and overloading. The gateway is available across on-premises and cloud environments, allowing for a single view of all gateways.\n","platformCapabilities":["Gateway","Analytics","Portal","Documentation","Monetization","Performance","SDK"],"gatewayCapabilities":["Mediation","Traffic Management","Versioning"],"customCodeSupport":["None"],"upstreamProtocols":["HTTP/1.1"],"downstreamProtocols":["HTTP/1.1"],"deliveryModels":["Customer Managed (Cloud)","Customer Managed (On-Premises)","Hybrid"],"policies":[{"category":"Traffic Management","capabilities":["Cache Eviction","Cache Invalidation","Cache Lookup","Cache Population","Cache Storage","Cache Target Response","Cache Validation","Concurrent Rate Limit","Concurrent Rate Limiting","Conditional Routing","Content-Based Routing","Load Balancer Routing","Quota","Quota Reset","Rate Limiting","Request Size Limiting","Throttling","Traffic Optimization"]},{"category":"Mediation","capabilities":["CORS","Request Size Limit","Request Termination","Request Transformation","Response Transformation"]},{"category":"Security","capabilities":["API Key","API Key Authentication","Access Control Lists (ACL)","Audit Logs","Basic Authentication","CORS","IP Access Rules","JWS","JWT Validation","JWT authorizers","Message Inspection","Mutual TLS","OAuth 1.0","OAuth 2.0","OpenID Connect"]},{"category":"Extensions","capabilities":["HTTP Callout","HTTP integrations","Serverless","Containers","Docker","Kubernetes","Amazon Web Services","Azure","Google"]}]},"links":[{"rel":["urn:gateway:product"],"title":"Product","href":"https://www.tibco.com/products/api-management/gateway"},{"rel":["urn:gateway:docs"],"title":"Documentation","href":"https://www.tibco.com/products/api-management/gateway"},{"rel":["urn:gateway:logo"],"title":"Logo","href":"/images/gateways/name.svg"},{"rel":["urn:gateway:screenshot"],"title":"Screenshot","href":"https://kinlane-productions2.s3.amazonaws.com/api-gateways/tibco.png"}]}

Tibco

Employ a wide range of policies to gain control over how, when, and from where your user community can access your APIs. The API Management Control Center lets you fully control your APIs. The traffic manager polices your servers to safeguard them against unauthorized access and overloading. The gateway is available across on-premises and cloud environments, allowing for a single view of all gateways.

Platform Capabilities

These are the wider capabilities beyond the gateway they offer.

• Gateway
• Analytics
• Portal
• Documentation
• Monetization
• Performance
• SDK

Gateway Capabilities

These are the capabilities the gateway supports.

• Mediation
• Traffic Management
• Versioning

Upstream Protocols

The different protocols they support upstream.

• HTTP/1.1

Downtream Protocols

The different protocols they support downstream.

• HTTP/1.1

Custom Code

If they offer plugin, extension, and custom coding options.

• None

Delivery Models

These are they ways you can deliver this solution.

• Customer Managed (Cloud)
• Customer Managed (On-Premises)
• Hybrid

Policies

These are the policies available across the gateway capabilities.

Traffic Management

• Cache Eviction
• Cache Invalidation
• Cache Lookup
• Cache Population
• Cache Storage
• Cache Target Response
• Cache Validation
• Concurrent Rate Limit
• Concurrent Rate Limiting
• Conditional Routing
• Content-Based Routing
• Load Balancer Routing
• Quota
• Quota Reset
• Rate Limiting
• Request Size Limiting
• Throttling
• Traffic Optimization

Mediation

• CORS
• Request Size Limit
• Request Termination
• Request Transformation
• Response Transformation

Security

• API Key
• API Key Authentication
• Access Control Lists (ACL)
• Audit Logs
• Basic Authentication
• CORS
• IP Access Rules
• JWS
• JWT Validation
• JWT authorizers
• Message Inspection
• Mutual TLS
• OAuth 1.0
• OAuth 2.0
• OpenID Connect

Extensions

• HTTP Callout
• HTTP integrations
• Serverless
• Containers
• Docker
• Kubernetes
• Amazon Web Services
• Azure
• Google

API Resources

No API Resources

(Product) (Docs)

---

{"class":["gateway"],"properties":{"name":"WSO2","provider":"WSO2","slug":"wso2","rating":3,"license":"Open Source (Apache-2.0)","status":"Pending Review","researchDate":"2022-11","description":"WSO2 Gateway provides a runtime and a backend component (an API proxy) for API calls. It secures, protects, manages, and scales API calls by intercepting API requests and applying policies, such as throttling and security, using handlers and managing API statistics. Upon validation of a policy, the Gateway passes Web service calls to the actual backend. If the service call is a token request, the Gateway passes it directly to the Key Manager.\n","platformCapabilities":["Gateway","Analytics","Portal","Documentation","Monetization","Monitoring","SDK"],"gatewayCapabilities":["Custom Code Execution","Mediation","Mocking","OpenAPI Integration","OpenAPI Enforcement","Traffic Management","Versioning"],"customCodeSupport":["None"],"upstreamProtocols":["HTTP/1.1","GraphQL"],"downstreamProtocols":["HTTP/1.1","GraphQL"],"deliveryModels":["SaaS"],"policies":[{"category":"Traffic Management","capabilities":["Cache Eviction","Cache Invalidation","Cache Lookup","Cache Population","Cache Storage","Cache Target Response","Cache Validation","Canary Release","Circuit Breaker","Conditional Routing","Content-Based Routing","Load Balancer Routing","Mocking","Quota","Quota Reset","Rate Limiting","Request Size Limiting","Throttling"]},{"category":"Mediation","capabilities":["CORS","Cache Eviction","Cache Lookup","Cache Store","GraphQL","GraphQL to REST","JSON Validation","OpenAPI Validation","Request Size Limit","Request Termination","Request Transformation","Response Transformation","SOAP Validation","URL Rewriting","XML to JSON"]},{"category":"Security","capabilities":["Auth0","API Key","API Key Authentication","Access Control Lists (ACL)","Audit Logs","Basic Authentication","Bot Detection","Bot Detector","CORS","IP Access Rules","JWT","JWT Validation","JWT authorizers","LDAP","LDAP Authentication","Message Inspection","Mutual TLS","OAuth 1.0","OAuth 2.0","Okta","OpenID Connect","SAML Assertion"]},{"category":"Extensions","capabilities":["HTTP Callout","HTTP integrations"]}]},"links":[{"rel":["urn:gateway:product"],"title":"Product","href":"https://apim.docs.wso2.com/en/latest/deploy-and-publish/deploy-on-gateway/api-gateway/overview-of-the-api-gateway/"},{"rel":["urn:gateway:docs"],"title":"Documentation","href":"https://apim.docs.wso2.com/en/latest/deploy-and-publish/deploy-on-gateway/api-gateway/overview-of-the-api-gateway/"},{"rel":["urn:gateway:logo"],"title":"Logo","href":"/images/gateways/name.svg"},{"rel":["urn:gateway:screenshot"],"title":"Screenshot","href":"https://kinlane-productions2.s3.amazonaws.com/api-gateways/wso2.png"}]}

WSO2

WSO2 Gateway provides a runtime and a backend component (an API proxy) for API calls. It secures, protects, manages, and scales API calls by intercepting API requests and applying policies, such as throttling and security, using handlers and managing API statistics. Upon validation of a policy, the Gateway passes Web service calls to the actual backend. If the service call is a token request, the Gateway passes it directly to the Key Manager.

Platform Capabilities

These are the wider capabilities beyond the gateway they offer.

• Gateway
• Analytics
• Portal
• Documentation
• Monetization
• Monitoring
• SDK

Gateway Capabilities

These are the capabilities the gateway supports.

• Custom Code Execution
• Mediation
• Mocking
• OpenAPI Integration
• OpenAPI Enforcement
• Traffic Management
• Versioning

Upstream Protocols

The different protocols they support upstream.

• HTTP/1.1
• GraphQL

Downtream Protocols

The different protocols they support downstream.

• HTTP/1.1
• GraphQL

Custom Code

If they offer plugin, extension, and custom coding options.

• None

Delivery Models

These are they ways you can deliver this solution.

• SaaS

Policies

These are the policies available across the gateway capabilities.

Traffic Management

• Cache Eviction
• Cache Invalidation
• Cache Lookup
• Cache Population
• Cache Storage
• Cache Target Response
• Cache Validation
• Canary Release
• Circuit Breaker
• Conditional Routing
• Content-Based Routing
• Load Balancer Routing
• Mocking
• Quota
• Quota Reset
• Rate Limiting
• Request Size Limiting
• Throttling

Mediation

• CORS
• Cache Eviction
• Cache Lookup
• Cache Store
• GraphQL
• GraphQL to REST
• JSON Validation
• OpenAPI Validation
• Request Size Limit
• Request Termination
• Request Transformation
• Response Transformation
• SOAP Validation
• URL Rewriting
• XML to JSON

Security

• Auth0
• API Key
• API Key Authentication
• Access Control Lists (ACL)
• Audit Logs
• Basic Authentication
• Bot Detection
• Bot Detector
• CORS
• IP Access Rules
• JWT
• JWT Validation
• JWT authorizers
• LDAP
• LDAP Authentication
• Message Inspection
• Mutual TLS
• OAuth 1.0
• OAuth 2.0
• Okta
• OpenID Connect
• SAML Assertion

Extensions

• HTTP Callout
• HTTP integrations

API Resources

No API Resources

(Product) (Docs)

---