Latest Content

Building a CI/CD Pipeline for APIs


APIs play a key role in digitally-driven organizations. They enable connecting applications and services and drive enterprises towards digital transformation. A typical organization may have a large number of APIs that are used internally and externally. When API numbers become large, it is vital to manage them in an elegant way.

Privacy By Design as a System Design Strategy: Part 2


In the first part of this article series, we discussed opportunities and challenges that are common for any enterprise when dealing with privacy. We also discussed applying Privacy by Design (PbD) principle as a best practice instead of considering support for each privacy regulation as an orthogonal effort. In this article, we further discuss some other important practical aspects related to PbD principles.

WSO2 API Microgateway: A Developer-Oriented Gateway for Microservices

WSO2 API Microgateway is a cloud-native, decentralized, highly scalable, immutable API gateway designed for microservice architecture (MSA). It provides security, authorization, routing, service discovery, and many more API management-related functionality while collecting information for rate limiting and analytics as well.

Deploying WSO2 API Manager in Production-Grade Kubernetes

Kubernetes is a leading open source container orchestration solution for managing containerized applications across multiple hosts. It allows users to easily deploy, maintain, and scale applications in containers. WSO2 API Manager is a fully open source solution for managing all aspects of the API lifecycle and is designed for massively scalable deployments.

In this article we will explore

Data-Driven Microservices


Data is a precious asset, and the ability to collect, manage, and use it gives a competitive advantage to any digital business. Within microservices architecture, there are multiple practices and patterns to deal with data. This article discusses the patterns, limitations, and pitfalls around data integration in microservices and then moves on to a sample implementation.

Integrating Office 365 with WSO2 Identity Server

This article discusses the challenges of deploying Microsoft’s Office's cloud solution into existing enterprise infrastructure and how to overcome these hurdles by using WSO2 Identity Server.

Open Banking: Creating a System of Inclusion, Openness, and Trust for Mexico

Open banking is reaching global adoption. Regions like Singapore and Japan were strong advocates for open banking even before the Second Payment Services Directive (PSD2) regulation and they experienced tremendous success in doing so. Post PSD2, other countries like Mexico, Brazil, Hong Kong, Australia, and countries in the Middle East are coming up with open banking regulations. They are opening up their APIs in an effort to create a more open, competitive and customer-driven financial ecosystem.

Strong Customer Authentication and Dynamic Linking for PSD2

The Payment Services Directive 2 (PSD2) policy aims to open payment ecosystems to simplify online payments and reduce fraud by mandating strong customer authentication (SCA) for third-party providers (TPPs). SCA enforces the use of two-factor authentication (2FA), which requires users to verify their identities in two unique ways before giving access.

Fraud Detection: Making Open Banking a Safer Place


The Regulatory Technical Standards(RTS) specification, published by the European Banking Authority (EBA), takes into consideration the requirements of PSD2 article 98 to define when and how SCA needs to be applied. The final report of the draft RTS document[1] was released on February 23, 2017.

Artificial Intelligence Based API Security with WSO2 and PingIntelligence for APIs

APIs power digital transformation. They are invaluable for any organization’s employees, partners, customers, and other stakeholders to gain access to applications, data, and business functionality across the enterprise. As it’s a critical component in any large enterprise, many of them have built internal and external API strategies within their organizations. This includes ensuring security throughout the API ecosystem.