22. Throttling tiers
22
• To protect your APIs from common types of security attacks such as denial of service (DOS)
• To regulate traffic according to infrastructure availability
• To make an API, application or a resource available to a consumer at different levels of service,
usually for monetisation purpose
24. Security
24
o Support for:
o Enduser Attributes to the Backend Using JWT
o Encrypting Secure Endpoint Passwords
o Saving Access Tokens in Separate Tables
o WSO2 Identity Server as the Key Manager
o Third-Parties Key Managers
o Validating Fine-Grained Policy Decisions using XACML
o Working with Standard OAuth Access Tokens
25. Is a component of a full
connected business platform…
What’s the matter?
38. Summary
o Multi-tenant Support
o Security standards (Oauth,SAML etc)
o Policies
o Throttling
o Plans and Tiers
o Billing and Monetisation
o Extensible
o 100% Opensource
o Cloud, On-Premise, Managed Cloud or Hybrid
o Swagger Editor
o Integrated to Microservices Platform