PI 29 is now under way. Below you will find the list of items that are included in this PI and a summary of the releases completed in the previous PI. As always, we invite you to provide feedback by commenting on this post below. We would love feedback on both the current and future PI items in order to help us prioritize the items that will have the most benefit for our customers.
Recent Releases:
The following product versions were released during PI28:
PI29 Key Capabilities
The sections below provide a listing of the key capabilities being worked on across the Layer7 family of products. Note that some capabilities will span multiple PIs.
API Gateway:
- Log4J Updates
- Allow Private Keys & Certs to be selected Dynamically
- Common Criteria Certification (CAVP)
- Release of Gateway 10.0 CR5 (JDK 8 update and Critical bugs)
- Debian Appliance base for Gateway 11.0
- GraphQL Assertion
- Enhanced Websocket assertion (Tomcat Based)
- Update CORS Assertion to allow dynamic Origins
OAuth Toolkit:
- FAPI 1.0 Advanced Profile - Authz Request via JWT
- FAPI 1.0 Advanced Profile - Authz Response as JARM
- Token Revocation List API
- RFC 7591 Software Statement Support
- Support native client redirects over any port for localhost
- Support dynamic origins for CORS
Mobile SDK:
- Log Management Improvements
- Exception Handling Improvements
- Android Nimbus Upgrade
API Portal:
- Rate Limits & Quotas for API per Organization
- PAPI improvements for Applications and API groups endpoints
- TSSG/Gateway Enrollment improvements
- Audit Logs maintenance
- Legacy SAML SSO sync redesign
- Portal certification on Amazon EKS
Layer7 Infrastructure Manager (L7iM):
- Continued Design Workshops
- Initial Prototyping
- New RESTMAN 2.0 API for viewing Gateway entities & certificates
- L7iM communication with Gateways, managing state and configs
Note that some larger capabilities may span multiple PIs and, as always, plans are subject to change based on a number of different factors.
Candidates for PI30
While the capabilities to be included in the next PI are not yet set, please see below for a list of candidates being considered. Of course, not all of these will fit and we will select a subset of these based on your feedback. We'd love to know if there is a capability in the list you are eagerly awaiting and/or plan to use. We also would love to know if there is something missing from the list that is important to you. Please comment in the comments section below with your feedback.
API Gateway:
- Headless Install Updates for Siteminder and Precision API Monitoring
- Websockets support for HTTP using same port
- Common Criteria Certification
- Javascript Assertion Update to replace deprecated Nashorn implementation
- Remote cache assertion productization
- gRPC protocol support
OAuth Toolkit:
- Device authorization grant based on RFC8628
- FAPI 1.0 CIBA Profile Support - Poll Mode
- Token Exchange Grant based on RFC 8693
- FAPI 1.0 PAR Support
Mobile SDK:
- SSL Pinning Updates to allow for flexibility
- Documentation Improvements
- Exception Handling Improvements (cont.)
- iOS 16
- Android 13
API Portal:
- Rate Limits & Quotas for API per Application API Key
- SAML SSO: support for onboarding multi-org users
- MySQL HA: Support for Read Replica
- Integration with external Identity Providers
Layer7 Manager:
- RESTMAN Enhancements for Policy Migration
- Certificate Management
- Policy Dependency Management
- Gateway Health