Features

These are some of the things wicked.haufe.io could do for you.


Leverage Kong as API Gateway

Use Mashape Kong to protect and proxy your backend APIs, securing them via API Keys or OAuth 2.0 Client Credentials flow.

Implement Rate Limiting

Using Mashape Kong's rich functionality, implement rate limiting for your APIs, wherever needed.

Full support of Kong's Plugins

Whatever Mashape Kong can do, you may configure it using the wicked Kickstarter application.

Authenticate with email and password

Let your users sign up with their email address and a password. Email addresses will be automatically validated by sending out verification emails.

Authenticate with ADFS

Integrate the login process with your own ADFS 3.0 server. Register the API portal with ADFS and use your local users.

Authentication with GitHub or Google

You may also configure signup and login using OAuth2 with GitHub and/or Google. These identities will be treated as 'verified' automatically.

Group based rights to APIs

Define custom user groups and assign those groups to users in order to limit access to specific APIs to specific groups. The Admin group can also be assigned.

Group based rights to custom content

The content section also supports group based access, e.g. to How-tos or tutorials.

Automatic group assignment

Users with a verified email address can be automatically assigned a user group, and ADFS groups may be mapped automatically to wicked user groups.

Subscription Plans

API definitions can be associated with subscription plans, which can carry additional settings, e.g. different rate limits for different users.

Application Concept

In order to subscribe to an API, a user needs to create an application (which is the client of the API); APIs are coupled with applications, not users.

Application Owner Roles

Applications can be shared among users, using different roles on the application: Admin/Owner, Collaborator and Reader.

Hand over Applications

By assigning Owner rights to an application to a different user, applications can be handed over to different developers/users without recreating them.

Easy API Gateway configuration

wicked makes it easier to configure the API Gateway correctly. The Kickstarter helps configuring e.g. Rate Limiting or CORS.

API Key or OAuth 2

Out of the box, wicked enables fast securing of your API using API Key authentication or OAuth 2 Client Credentials Flow. Other OAuth2.0 flows using custom components.

Swagger UI integration

In order to view the APIs in more detail, wicked has integrated Swagger UI, with configurable direct access to the backend services.

Subscription Approval Workflow

API Plans can be configured to require approval of subscription; you will be sent an email to a predefined email address to the approval request.

Chatbot Integration

wicked can post interesting events (you decide which are interesting) to either a Rocket.Chat or a Slack Chat instance. Just register a Hook URL with Slack, and configure it for wicked.

Docker Deployment

The entire APIm solution is deployed using docker; everything runs in docker, enabling deployments to whatever infrastructure supports it.

Simple scaling of deployment

By using docker-compose, the deployment of your API Management solution can be easily scaled to use multiple instances of Kong, behind a powerful HAproxy. All pre-configured for you to use.

Battle-proven API Gateway

Behind the scenes, wicked uses battle-proven, enterprise grade API Gateway KONG by Mashape. Open Source does not get much better than that.

Kubernetes Deployment

wicked runs very well on the docker orchestration tool Kubernetes; the documentation contains recipes and best practices on running in Kubernetes, using Helm Charts

Pluggable Authorization Servers

Plug in your own authorization server using a simplified OAuth 2.0 interface provided by the Kong Adapter (part of wicked). Enable authentication via any Identity Provider.

Code Samples for Authorization Servers

Sample implementations for Authorization Servers based on SAML or for Google, Github, Facebook and Twitter are provided.



For full documentation, head over to the GitHub repository of wicked.haufe.io.

Back to top

© 2016-2017 Haufe-Lexware GmbH & Co. KG, www.haufe-lexware.com, www.haufe.de, www.lexware.de, www.haufe-akademie.de