Integration


This is an IBM Automation portal for Integration products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.


ADD A NEW IDEA

API Connect

Showing 88

In APIC 10.0.8.1, the Analytics Discover page displays logs in local time, but the Dashboard summary (API Call hourly heatmap) shows data in UTC with no option to switch to local time.

In the Analytics Discover page, We have pointed to the 'local-time' for the time-zone. And the logs on the discover page are showing local time. Whereas on the dashboard summary page for the 'API Call hourly heatmap', it is showing time in UTC tim...
3 months ago in API Connect 0 Not under consideration

Have more than 1 owner of an organization

Being single threaded in anything is a risk. There should be opportunity to specify multiple owners for an Cloud Manager organization.
4 months ago in API Connect 2 Not under consideration

Implementation of First-Login Password Change & Periodic for Developer Portal

Dear Team, To improve the security of the Developer Portal login, we propose implementing the following password policies: First Login Password Reset: Require users to change their password upon their initial login. Periodic Password Rotation: Enf...
5 months ago in API Connect 1 Not under consideration

Improper Input Validation

We have identified that API Manager is not validating anything when the user is trying to create any API or Product with the special characters. API Manager should validate the request and should reject if anything found with some extra special ch...
6 months ago in API Connect 1 Not under consideration

Reflect changes done in a Catalog Property defined within a Catalog and being used in APIs without need to Republish Products containing those APIs

It would be useful as customers can modify the catalog property value at runtime without need to republish all the products containing the APIs referring the particular catalog property everytime there is change in the catalog property.
7 months ago in API Connect 0 Not under consideration

Provide Enhanced Pre-Delete Hook Functionality in APIC to Ensure Data Consistency Across Systems

Currently, when an application is deleted in the APIC Developer Portal, any pre-delete hooks are executed after the relevant application data has already been removed from the APIC database. This creates a significant problem for developers who ne...
7 months ago in API Connect 1 Not under consideration

Request that MaaS360 Support API Get/Fetch data for "Users" Employee ID, Department, and Division user information. This will facilitate a more robust API reporting for asset and comprehensive inventory management.

This is useful because we have a 3rd party application that would like like to fetch that data along with other important device related information.
7 months ago in API Connect 1 Not under consideration

No Logout on Password Reset

We have observed that the application is vulnerable to No logout on Password reset. In the current scenario, the team observed that a user is not forced to logout after resetting the password, leading to several security risks. The vulnerabilit...
7 months ago in API Connect 2 Not under consideration

Cookie Path set to Root

We have identified a vulnerability in the Developer Portal subsystem where the cookie “Path” attribute is set to the root directory (“/”). This configuration may allow an attacker to gain unauthorized access to cookies from other applications on t...
7 months ago in API Connect 2 Not under consideration

Automatic logout upon password change

VAPT Point for IBM Developer Portal: Bank security has recommended immediately invalidating all active sessions when a password is changed to prevent unauthorized access. This includes destroying session tokens server-side to ensure that any exist...
11 months ago in API Connect 2 Not under consideration

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.