Release 11.0.0
Explore the release highlights, usage notes, for webMethods API Gateway 11.0.0.
Note
Self service upgrade to webMethods API Gateway 11.0.0 is not supported. For more information, see Upgrading to a new version.
Highlights
What’s NewWhat’s New
| New Item | Description |
|---|---|
| Continuous value delivery model | Starting from 11.0.0 release, webMethods API will consistently introduce new features and improvements in its periodic updates. This allows you to swiftly tap into added value rather than waiting for the next major version release. |
| Next-generation architecture for running workloads anywhere | Before the 11.0.0 release, API calls to backend services within a private cloud or on-premises infrastructure were routed through the public internet, impacting response times and posing security concerns. With the 11.0.0 release, Software AG’s webMethods API enables linking to a customer’s cloud while preserving network isolation through a hub-and-spoke architecture. This approach, such as dedicated egress, enhances security and reduces latency. Customers can set up individual spokes, enabling their API traffic to leverage hyper-scaler backbones, effectively bypassing the public internet if desired. |
| EDR implementation for Azure | Disaster recovery (DR) for cloud-based systems is critical to an overall business continuity strategy. In rare instances, complete unavailability of a hyper scaler’s facilities within an availability zone or region might occur, potentially due to network failures or complete loss owing to natural disasters. Such occurrences can profoundly impact enterprises heavily reliant on the webMethods API Management solution hosted in a hyperscaler region. Irrespective of the cause, the most effective solution for such a disaster scenario involves a well-defined and tested DR process encompassing Failover and Failback procedures. Failover enables automatic and seamless switching of production to a dependable secondary region, while Failback restores production to the original or a new primary region post-resolution of the disaster or a scheduled event. Enhanced Disaster Recovery (EDR) is now accessible to webMethods API customers upon request, subject to an additional cost. |
| Faster provisioning and smaller deployment footprint | Several architectural improvements have been implemented in webMethods API Management. These encompass the deployment of Ignite-based clustering for SaaS cloud users. Additionally, the policy enforcement runtime engine now, resides on the Microservice Runtime (MSR) instead of the Integration Server (IS). |
| API Control Plane agent configuration using API Gateway UI | webMethods API offers the functionality to manage API Control Plane agent configuration via both the API Gateway UI and REST APIs. Setting up API Control Plane as a Destination establishes the communication link between the API Gateway and API Control Plane. Data synchronization from the API Gateway to API Control Plane occurs only when the API Control Plane agent is configured and communication channels are successfully established. Upon successful connection, the API Control Plane agent initiates the transmission of Health check statuses, Asset information, and Runtime Metrics from the API Gateway to API Control Plane. This enables informed business decision-making through metrics’ analysis. |
| Decouple API Gateway and Developer Portal provisioning | Before the 11.0.0 release, the Free-For-Ever edition (FFE) provisioned both the Developer Portal and the API Gateway. However, starting from the 11.1 release, customers can now explicitly select which product they want to explore. Additionally, if they later wish to test the other product, they can independently launch it from the landing page after logging into the Software AG cloud. |
| Elasticsearch bulk updates for transaction and monitoring data | Amidst peak API traffic, a substantial volume of API Analytics data needs to be transmitted to Elasticsearch. The mechanism for dispatching this data has been enhanced to bolster performance. |
| JWT Time Tolerance Clock Skew support | This enhancement focus on validating JWT tokens considering clock skew. When verifying the JWT tokens’ expiration and not-before claims, a minor time variance might exist between the API Gateway and the external authorization server. In such instances, the API Gateway might not authorize JWT tokens. A clock skew value can be established at the global level using the pg_JWT_clock_skew_seconds extended setting to address this. This clock skew value can be configured within the external authorization settings. |
| External authorization server enhancements | Prior to the 11.0.0 release, when you input a discovery URL while configuring an external authorization server, the URL is not retained for future reference. Consequently, upon revisiting the page, the discovery URL was not displayed, hindering the re-discovery process. However, with the 11.0.0 release, the discovery URL is now stored and visible on the page, enhancing the user experience by facilitating easy re-discovery when needed. |
| Traffic Optimization policy performance improvements | The algorithm has been altered to enhance performance during periods of high API traffic. |
| Registered Applications Tab | Improvements have been made to the Applications screen, now featuring pagination to enhance the user experience. |
| Documentation improvements | A newly introduced Getting Started section comprises user-friendly introductory articles accompanied by reference assets. |
Usage Notes
No subtopics in thissection
This section provides any additional information that you need, to work with webMethods API Gateway.
Software AG Cloud products are available in several geographical regions, operated by different infrastructure providers. Click here for information on the available products and also the underlying infrastructure provider in each region. For details about the IP addresses for webMethods API Gateway in all regions, see Software AG Cloud page.
Information on major releases, hotfixes, and patch releases including the latest statistics on cloud environments availability, incident history, and planned maintenance events are available on the webMethods iPaaS Service Status page.
Starting 10.15, do not provide values starting with a dot (.), in any of the fields in API Gateway UI and in key values when making API calls from a REST client.
The link provided in the Documentation section of the API details tab can be accessed using API gateway internal users credentials and cannot be accessed using SSO user credentials.
Note
Software AG recommends not to use the XFF header for application identification.
The following functionalities have certain restrictions in webMethods API Gateway instance on cloud:
API support
webSocket API is not supported.Policy support
Custom filter is not supported for a rule configuration under Threat Protection policy
The following policies are not supported in a cloud instance as they are relevant only for an on premise deployment:
- Enable JMS/AMQP
- JMS/AMQP Routing
- JMS/AMQP Properties
- Authorize User
- Invoke webMethods IS
Policy Properties support
The following policy properties are not supported in API Cloud API Gateway instance:Audit Log, JDBC, Digital Events, and SNMP destinations are not available in the following policies:
- Log Invocation
- Monitor Performance
- Monitor SLA
- Traffic Optimization
Kerberos Token Authentication property is not available in the Inbound Authentication - Transport policy
The following properties are not available in the Inbound Authentication - Message policy:
- Validate SAML Audience URL
- Require SAML Token under Token Assertions
The Run as user property is not available in the following policies:
- IS Service alias
- Request Transformation
- Response Transformation
- Conditional Error Processing
Administration support
- Access URLs
Tenants can access the API Cloud API Gateway instance (both the UI and runtime invocation) only using the URL provided by Software AG. This implies the following restrictions for the tenant:
- Ports section is not available since they cannot be manipulated.
- Load Balancer URLs section is not available since they cannot be manipulated.
- Access URLs
Tenants can access the API Cloud API Gateway instance (both the UI and runtime invocation) only using the URL provided by Software AG. This implies the following restrictions for the tenant:
Cache configuration support is not available.
Licensing support is not available
Clustering configuration support is not available.
Messaging is not available.
Web services is not available.
Master password management is not supported.
Application logs section that contains configuring aggregation of logs is not supported.
Destinations
The following destinations have restrictions in API Cloud API Gateway instance:- Audit Log, Database, Digital Event Services (DES) and third party SNMP server are not available since they are relevant only for on premise cases.
- Developer Portal settings are auto populated and disabled when Developer Portal is provisioned as part of the API Cloud.
- For an Email destination, only templates can be configured since API Gateway Cloud instance has a predefined email server that cannot be changed.
Settings
- Outbound Proxy section is not available under General configuration as it is relevant only for an on premise deployment.
- Kibana port cannot be updated as it is predefined and SAML SSO section is not available under the system settings section.
Few Extended settings are not available.
System Information in the About page is not included.
The Send Digital Events notification setting under Quota management is not available.
Analytics support
- Runtime event data cannot be archived or restored in API Cloud API Gateway instance.
- Cache statistics is not available.
- Application logs are not available.
Custom Import - JMS settings and JNDI settings is not available as they are not applicable for Cloud.
Connectivity
- Service development is not possible in API Gateway cloud, that is, Designer cannot be connected in API Cloud API Gateway instance.
- Integration Server console cannot be accessed. This means that all the configurations including logging is not available
- Reverse Invoke from an on premise instance is not supported.
- Paired gateway setup is not supported in a cloud instance. Advanced Edition is the default hosted solution.
Payload - The maximum payload size limit for API Gateway calls is 30MB by default for paid tenants and 20MB for free forever tenants.
Searching payload content - You must define custom fields for transactional events to search request and response payloads. Searching payload content without custom fields is not supported.