Sonoa provides the following capabilities for APIs, feeds, and cloud services. Technology is available as either an on-demand service or on-premise software or hardware appliances.
Quick Links:
- Analytics
- Logging
- Security & Access Control
- Data Protection
- Rate-limiting, SLA enforcement, Traffic management
- Mediation and Transformations
- Load Balancing
- Content Feed Syndication
- Pre-built policies and policy templates
- Performance and scale
- Platform and Tool
- Developer management
- Delivery models
| Analytics | |||
|---|---|---|---|
| Business-level API metrics and analytics | Yes | ||
| Usage by customer, client, service, or method | Yes | ||
| Advanced charting and pattern analysis | Yes | ||
| Payload-aware - analysis by content or data value | Yes | ||
| API performance and uptime | Yes | ||
| Message logs for troubleshooting and debugging | Yes | ||
| Export data or access via API | Yes | ||
| Logging | |||
| Log by payload, header, or custom fragment | Yes | ||
| Log to multiple destinations - NFS, Local disk | Yes | ||
| Mask or encrypt sensitive data | Yes | ||
| Logging in any user defined format | Yes | ||
| Log to JMS | |||
| Security and Access Control | |||
| HTTP Basic auth, WS-Security/, SAML, and Custom | Yes | ||
| Integrate LDAP, Active Directory , and SSO providers | Yes | ||
| Credential medation, caching | Yes | ||
| Single-sign on across multiple services | Yes | ||
| Built-in authorization provider | Yes | ||
| Pluggable authorization framework for 3rd-party security provider | Yes | ||
| Pluggable authentication framework for 3rd-party security provider | Yes | ||
| Data Protection | |||
| XML schema validation and Denial-of-service protection | Yes | ||
| Blacklist /whitelist on usage and message rules | Yes | ||
| Encryption and screening of sensitive data | Yes | ||
| XML threat detection (detection of mal-formed XML content) | Yes | ||
| SQL injection detection (based on regular expressions) | Yes | ||
| Rate-limiting, SLA enforcement, and Traffic management | |||
| Throttling, metering, and SLA monitoring and enforcement | Yes | ||
| Client, organization, service, method, or global policies | Yes | ||
| Measure or set limits by payload or content value | Yes | ||
| Segment customers and discriminate service levels | Yes | ||
| Throttle on messages-per- time, quotas, or concurrent requests | Yes | ||
| Mediation and Transformations | |||
| Protocol mediation: SOAP to REST, JSON, POX and vice versa | Yes | ||
| Transport mediation: JMS to HTTP | Yes | ||
| Version mediation for change manaagement | Yes | ||
| Message transformation with data and expressions | Yes | ||
| XML to binary formats | Yes | ||
| Web service callouts for integration or data enrichment | Yes | ||
| Load Balancing | |||
| URL, IP-based weighted, round-robin or intelligent routing | Yes | ||
| Automatic retries with failover | Yes | ||
| Content-based routing based on payload or headers | Yes | ||
| Fault management – rejection of bad requests | Yes | ||
| Content and Feed Syndication and Personalization | |||
| Customize service feeds with LDAP profiles | Yes | ||
| Custom lookup via service callout | Yes | ||
| Enforce policy using profile attributes | Yes | ||
| Cache target service responses per client or across clients | Yes | ||
| Dynamic cache intervals | Yes | ||
| Drive cache credentials from LDAP | Yes | ||
| Pre-built policies and policy templates | |||
| Pre-defined policy library | Yes | ||
| Configure policies - no coding requred | Yes | ||
| Python and Jython scripting support | Yes | ||
| Reusable templates to capture best practices | Yes | ||
| Performance and Scale | |||
| Active-active and active-standby deployments | Yes | ||
| Clustering management server (across data centers) | Yes | ||
| Hardened for DMZ usage | Yes | ||
| Caching of any HTTP result | Yes | ||
| Dynamic cache key based on any part of the request content | Yes | ||
| Customizable cache expiration features | Yes | ||
| Automatic HTTP compression support | Yes | ||
| Platform and Tool | |||
| Web-based console for deployment, configuration, and monitoring | Yes | ||
| API for external deployment, configuration, and monitoring | Yes | ||
| Command Line Interface (CLI) for system configuration | Yes | ||
| Multi-tenant design for multiple business units or SaaS customers | Yes | ||
| Eclipse-based plug-ins for custom transformations | Yes | ||
| Support full lifecycle—development, testing, staging, and production | Yes | ||
| Alerts delivered to console, file, JMS | Yes | ||
| Plug-in model for integration with Enterprise applications | Yes | ||
| XSLT support | Yes | ||
| JMS support | Yes | ||
| Developer management and on-boarding | |||
| Developer portal | Yes | ||
| Developer, API, and app-level access-control | Yes | ||
| Smart key' content-aware key provisioning | Yes | ||
| Integration with analytics platformn | Yes | ||
| CMS/Community Tool integration | Yes | ||
| Delivery and buying models | |||
| On-demand service | Yes | ||
| Software or VMware virtual appliance | Yes | ||
| Hardware appliance | Yes | ||
| Subscription pricing | Yes | ||
| Perpetual pricing | Yes | ||
