Governance Registry

We are evolving our governance capabilities by adding governance into our other platform products, developing a microservices registry, and to incorporate “governance by surveillance.” Governance by surveillance uses real-time analytics to derive actual behavior of enterprise systems by observing asset information produced at runtime. The governance registry acts as a reference model to compare actual versus presumed behavior, thereby becoming a continuous form of governance.

The WSO2 Governance Registry product is available for installation and is supported with our subscription service. There are no plans to EOL. Investment into “governance by surveillance” is ongoing. Since some WSO2 Governance Registry capabilities will move into other WSO2 products, we will provide migration utilities for those customers that wish to migrate to the future architecture.

For more details about our support & subscription services refer to our price list or contact us for more information.

WSO2 Governance Registry is an enterprise-ready open source product for storing, cataloging, indexing, managing and governing your enterprise metadata related to any kind of asset. It provides the right level of structure straight out of the box to govern any enterprise assets, including services, APIs and projects, and federate the artifacts across distributed systems. It supports SOA governance, configuration governance, development process governance, design and runtime governance, lifecycle management, and team collaboration.

Today you may have ad-hoc processes and use shared spreadsheets to register enterprise services, which is a good start. The WSO2 Governance Registry helps you move to the next level and fully understand the state and scope of your SOA portfolio by communicating and managing the lifecycle of your services, and by identifying and highlighting the dependencies between services and consumers.


The WSO2 Governance Registry provides end-to-end governance for enterprises. IT professionals can streamline application development, testing and deployment processes, as well as manage service lifecycles and assets using the WSO2 Governance Registry. The community and social aspects of WSO2 Governance Registry are an enabler of collaboration between distributed teams, converting traditional human-centric tasks into key assets of the governance process. It also includes business runtime governance requirements through its interoperability with well-known external monitoring and reporting applications.

WSO2 Governance Registry allows you to

  • Store, manage and search any kind of enterprise asset, including services, APIs, policies, projects or applications. You can extend the predefined asset metadata or create your own
  • Navigate through assets using taxonomies
  • Access and manage assets via a REST API, supporting the integration with enterprise initiative such as DevOps
  • Describe relationships between assets such as dependencies, usage or associations and perform impact analysis
  • Attach custom life cycle to assets and engage custom actions when an asset transitions from one state to the next
  • Secure the access to assets via a fine-grained permission model
  • Leverage social tools such as ratings and comments to enable better communication between asset providers and consumers
  • Notify users of any asset changes via email or a notification system of your choice
  • Integrate with mediation engines such as WSO2 Enterprise Service Bus or others via UDDI and REST for dynamic discovery of services and APIs endpoints


Registry & Repository for Anything

  • Store any type of data or metadata as resources including contracts, models, workflows, WSDLs, Word documents, server configurations and more
  • Revisions, versions with checkpointing and rollback for any resource or resource collections
  • Full-text search, metadata search, faceted search, asset search using search history, helper text for search queries and search using phrases
  • Define taxonomies and tags and apply them on to assets
  • Register externally stored resources including via Microsoft Sharepoint
  • Define behaviors that trigger automatically based on resource type
  • Out of the box versioning support for WSDL, WADL and XSD
  • Out of the box support for Swagger imports, with facility to upload via a file or import using a link
  • Ability to specify custom storage paths for any RXT

SOA Governance

  • Flexible service registry for any type of services including REST services, JSON services, SOAP services and Thrift services
  • Govern all aspects of services including service descriptions, service consumption, service usage, service discovery, service lifecycle management and service policies
  • Service and application discovery for third-party servers
  • Dependency management and impact analysis
  • Graphical visualization (dependency graphs) of artifacts with associated resources and dependent artifacts enabling users to perform impact analysis when changes are made to an artifact
  • Policy management for both design-time and run-time
  • Comprehensive lifecycle management
  • Act as a policy store for any Policy Enforcement Point (PEP) including WSO2 Enterprise Service Bus and WSO2 Application Server
  • User notification and alert management supported with the ability to use email templates
  • Role based authentication and authorization leveraging information stored in common user repositories such as LDAP or MS Active Directory
  • Auditing, logging and reporting
  • Level 1 categorization functionality for Generic Artifacts

Configuration Governance

  • Govern any kind of server/system configuration
  • Version and revision management with checkpointing & rollback
  • Full lifecycle management spanning across development, testing, staging and production environments
  • Integrates to any 3rd party product via command-line clients
  • Deeply integrated to all WSO2 Carbon middleware products

Development Process Governance

  • Govern all aspects of the develop-build-test-stage-production process
  • Integration with source code control systems such as SVN
  • Integration with 3rd party continuous integration (CI) systems such as Jenkins or Atlassian Bamboo
  • Integration with popular build systems such as Maven or Ant
  • Comprehensive end-to-end application lifecycle management and governance

Framework for Governing Anything

  • Define any type of governance asset
  • Customizable repository extension points, executable via manual intervention (aspects) and by the framework (handlers) along with relevant evaluation criteria (filters)
  • Integrated with 3rd party products and external systems
  • Repository APIs: JCR
  • Registry APIs: REST, UDDIv3, JAXR
  • Governance APIs: REST, Atom/AtomPP, SOAP
  • Create and manage registry resources, APIs and Swagger instances with the newly introduced Governance Centre UI
  • Installation provision for API-M, enabling API publisher and store functionalities, including API creation, publishing, subscription, token generation and regeneration within WSO2 Governance Registry
  • Graphical differentiation view to compare two inter-related assets
  • New asset association UIs and extension point to perform add/remove associations based activities
  • Improved extension points to write tasks based on registry API and governance API

Lifecycle Management

  • Customizable lifecycle management with built-in best practices
  • Content introspection, validation and verification
  • Human interactions, notifications and checklists
  • Extensible with SCXML, WS-BPEL and Java
  • Monitor time duration of artifacts in specific lifecycle states
  • Ability to set specific lifecycle state checkpoints
  • Manage associations between assets as well as asset lifecycles
  • Set up notifications for subscribed assets at asset lifecycle state changes and for updates to assets

Design-time Governance

  • Discovery and managed reuse of schemas and other shared metadata supporting contract-first service design
  • Lifecycle management and approval for metadata
  • IDE integration with WSO2 Developer Studio, Eclipse plugin, Microsoft Visual Studio and WebDAV
  • Standards enforcement including all WS-I profiles
  • Built-in best practices for common metadata types

Run-Time Governance

  • Acts as Policy Store for any type of runtime policies including security policies, API policies, service contracts, SLAs and XACML authorization policies
  • Integrates with WSO2 Data Analytics Server to provide analytics, monitoring and business intelligence including custom KPIs
  • Service performance metrics management

Change Management

  • Role based separation of actions
  • Approval processes
  • Ability schedule tasks for future execution

Social Collaboration for Enterprise Governance

  • Empower the social enterprise
  • Human interaction with governance via tasks
  • Comments, ratings and tags on any type of resource or artifact
  • Embedded tag cloud feature in Store UI to help users find assets based on tags by simply clicking preferred tags

Lightweight, Developer Friendly and Easy to Deploy

  • Server customization via feature provisioning of any WSO2 middleware capability
  • Deployable standalone or as federated set of servers
  • Choice of deployment to on-premise servers, private cloud, or managed cloud, without configuration changes
  • Integrated with SVN, Maven, Ant and other standard tools for development & deployment
  • Integrated to WSO2 Developer Studio, Eclipse-based IDE for all WSO2 products
  • Ships with a sample data populator which will populate the product with sample data which can be viewed and visualized by users. Users are able to remove sample data using a script

Manage & Monitor

  • Comprehensive management & monitoring Web console with enterprise-level security
  • Built-in collection and monitoring of standard access and performance statistics
  • JMX MBeans for key metrics monitoring and management
  • Integrates with WSO2 Data Analytics Server for operational audit and KPI monitoring and management
  • Flexible logging support with integration to enterprise logging systems
  • Centralized configuration management across different environments with lifecycles and versioning

Integrated Store-front and Publisher Functionalities

  • A revamped Store UI to provide a better user experience for Store users
  • Improved Asset Publisher for asset management