|
Capability
|
WSO2
|
|
Support for full lifecycle API management
|
|
Create and publish APIs
|
Yes
|
|
Developer portal
|
Yes
|
|
Access control and rate limiting
|
Yes
|
|
Lifecycle management
|
Yes
|
|
API analytics
|
Yes
|
|
Security features
|
| Oauth2 token-based authentication for API requests |
Yes |
| Other authentication mechanisms for API requests |
No |
| Mutual TLS support |
Yes |
| Block API requests based on payload |
Yes |
| Secure connections from the cloud to the data center |
Yes. VPN and VPC peering supported |
|
Performance
|
| Does the average response time fall within your expected range? |
|
| Can it handle your spikes? |
|
| Does it provide shared runtimes or private runtimes? |
Shared and private both are available |
|
Analytics
|
| API requests statistics |
Yes |
| Alerting |
Yes |
| View and download logs |
Yes |
| Push logs and stats to your own analytics system |
No. Stats are available via a REST API. Pushing logs is in the roadmap |
|
Pricing
|
| Starting price (per month) |
$500 |
| Is your monthly bill predictable? |
Yes |
| Are there any hidden charges? |
No |
| Is support included in the pricing? |
Yes |
| Are there feature limitations in different tiers? |
No |
|
SLA and Support
|
| What is the minimum availability guaranteed? |
99.90% |
| Are there different SLAs for different tiers? |
No |
| What is the response time for an incident ticket? |
Immediately responded. |
| What is the response time for a query ticket? |
Within one business day. But generally responded within hours |
|
Availability in your region
|
| Are you able to consume the service in a way your data do not leave your geographical region? |
Yes. There are API gateways in 7 geographical regions. Can be extended further |
|
White labeling capabilities
|
| Ability to configure custom URLs |
Yes |
| Ability to theme the SaaS UI to reflect your brand |
Yes |
| Any other white labeling features |
Theming for email templates |
|
User / Identity management capabilities
|
| Does it allow you to store your external users such as external API subscribers? |
Yes |
| Does it allow you to plug your IDP to authenticate SaaS logins? |
Yes |
| Can you plug your end-users to the SaaS offering? |
Yes |
| Does it allow you to store your API end-users in the SaaS offering?
|
Yes |
|
API monetization
|
| Is there an ability to charge the consumers for your API usage |
Yes |
| Can you implement your monetization model with the SaaS offering? |
No |
|
Mediation capabilities
|
| Is the SaaS offering capable of message mediation? |
Yes |
| Is it capable of dynamic routing? |
Yes |
|
Hybrid API management
|
| Is there a hybrid API management capability? |
Yes |
| What components can be run in your infrastructure? |
API gateway |
| Which infrastructure is supported by the on-prem components? |
VMs, Docker, Kubernetes |
|
Support for CI/CD of APIs
|
| Are there APIs to implement a CI/CD pipeline? |
Yes |
| Does it support multiple environments? |
Yes |
| Are there other options to support CI/CD of APIs? |
Yes. Export/Import APIs between environments, CLI tool |
|
Certifications
|
| What certifications does the SaaS offering possess? |
GDPR compliant |