Integration


This is an IBM Automation portal for Integration products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.


ADD A NEW IDEA

API Connect

Showing 213

Threat Protection for SQL Injection and Code Injection

For APIs created in API Connect, Customer did a security check which tested SQL Injection and Code Injection. Apparently all of the attacks successfully reached back end for code injection both xml and json, and for sql injection all attacks reach...
over 4 years ago in API Connect 0 Future consideration

OAuth token revocation url should be updatable

This is related to the case number TS003806971. My customer is using DataPower as API Gateway and using external oauth token revocation management. We can change the OAuth revocation URL in OAuth Provider API. However the revocation url is not upd...
almost 4 years ago in API Connect 0 Future consideration

Need to send email notifications to multiple email id's of a consumer team when their app nears/exceeds rate threshold

Need to send email notifications to multiple email id's/Distribution list of a consumer team when their app nears/exceeds the plan rate limit . Current State - Only the app creator gets the email notification that the app is nearing/exceeded thres...
almost 6 years ago in API Connect 0 Future consideration

Catalog support for control of custom host names for API gateways - need v5 flexibiliity in current product version

Issue is with what has changed over time, between what was possible with APIc v5 and what is possible with APIc v2018. In v5, we had control over how host names were associated with catalogs, and the resulting path to published APIs; it was reason...
about 4 years ago in API Connect 0 Future consideration

API Connect: Add support for custom parameters in product plans

Currently, only the transaction rate can be set up in an API product plan. We have a use case where a consumer is allowed to submit attachments up to a certain size, based on a subscribed (and approved) plan. Since there is no way to do this today...
about 4 years ago in API Connect 0 Future consideration

RFC 7591 Dynamic Registration

There is a requirement from Open Banking/PSD2 regulation to support a dynamic registration mechanism for APIs exposed by the bank. API Connect doesn't currently support OAuth2 based Dynamic Client Registration (RFC7591) in order to achieve real ti...
over 6 years ago in API Connect 0 Future consideration

Add certificate subject validation option to Crypto Validation Credentials

When setting up communication over insecure channels (i.e. over Internet) it is required to narrow down list of clients that might connect to DataPower. Selection based on validation against CA is too broad. It sohuld be narrowed down to be based ...
over 2 years ago in API Connect 0 Future consideration

Official support for ILMT disconnected scanner mode on API Connect

https://www.ibm.com/docs/en/api-connect/10.0.x?topic=vmware-installing-license-metric-tool documents how to install and setup BigFix agent for automated license reporting. However, we do not have a BigFix installation and would rather avoid having...
about 1 year ago in API Connect 0 Future consideration

Ability to customize HTTP response code and response body

We have enabled the additional scope check in the IBM API Connect. This functionality is called “Advanced Scope check” in the documentation. We have defined an external custom scope check in the ‘x-scopeValidate' attribute in our swagger definitio...
almost 4 years ago in API Connect 0 Future consideration

Proactive notification of consumers reaching % of usage allowance defined in API plan

We require the ability for the API Connect platform to be able to proactively notify the API Consumer, API Provider and Central Management team when an API Consumer is reaching a set % of their throttling allowance as defined in the API plan. This...
over 6 years ago in API Connect 0 Future consideration

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.