Integration


This is an IBM Automation portal for Integration products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.


ADD A NEW IDEA

My ideas: API Connect

Showing 84

Reflect changes done in a Catalog Property defined within a Catalog and being used in APIs without need to Republish Products containing those APIs

It would be useful as customers can modify the catalog property value at runtime without need to republish all the products containing the APIs referring the particular catalog property everytime there is change in the catalog property.
11 days ago in API Connect 0 Not under consideration

Provide Enhanced Pre-Delete Hook Functionality in APIC to Ensure Data Consistency Across Systems

Currently, when an application is deleted in the APIC Developer Portal, any pre-delete hooks are executed after the relevant application data has already been removed from the APIC database. This creates a significant problem for developers who ne...
21 days ago in API Connect 1 Not under consideration

Request that MaaS360 Support API Get/Fetch data for "Users" Employee ID, Department, and Division user information. This will facilitate a more robust API reporting for asset and comprehensive inventory management.

This is useful because we have a 3rd party application that would like like to fetch that data along with other important device related information.
21 days ago in API Connect 1 Not under consideration

No Logout on Password Reset

We have observed that the application is vulnerable to No logout on Password reset. In the current scenario, the team observed that a user is not forced to logout after resetting the password, leading to several security risks. The vulnerabilit...
28 days ago in API Connect 1 Not under consideration

Cookie Path set to Root

We have identified a vulnerability in the Developer Portal subsystem where the cookie “Path” attribute is set to the root directory (“/”). This configuration may allow an attacker to gain unauthorized access to cookies from other applications on t...
28 days ago in API Connect 1 Not under consideration

Automatic logout upon password change

VAPT Point for IBM Developer Portal: Bank security has recommended immediately invalidating all active sessions when a password is changed to prevent unauthorized access. This includes destroying session tokens server-side to ensure that any exist...
5 months ago in API Connect 2 Not under consideration

Allowed HTTP methods in IBM API Manager UI

Hi Team... We have a security requirement in our organization and that is unsafe HTTP methods like GET, HEAD, OPTIONS, PATCH, PUT, DELETE should not be allowed in WAF proxy. As per organizations security mandate, we have integrated API Manager Web...
5 months ago in API Connect 1 Not under consideration

Force external users who registered through Developer Portal not to use their last 3 passwords

What we would like to do is to force external users who registered through IBM APIC Developer Portal not to use their last 3 passwords. People who registered through Developer Portal(external users) don't use LDAP, they choose their passwords on t...
5 months ago in API Connect 2 Not under consideration

Allowing the use of OAuth Providers with duplicate basePath of token endpoint without scope parameter

We request further improvements to idea number APICONN-I-350 (https://ideas.ibm.com/ideas/APICONN-I-350).Our problem is the same as with APICONN-I-350, but there was a condition where the scope was different even though the basic pathwas the same ...
5 months ago in API Connect 1 Not under consideration

Map the OAuth provider--> Basic Authentication Username/Password with incoming request values (as ClientId/Secret)

Hi Team, Since we are in process of migration, and while migrating OAuth provider facing one blocker as stated below, need help with enhancement to the APIC product LTS V10. I have attached the PMR case raised for the same, please take reference f...
6 months ago in API Connect 3 Not under consideration

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.