Release WSO2 API Manager 1.9.0 Released · wso2/product-apim

The WSO2 API Manager team is pleased to announce the release of version 1.9.0 of the Open Source API Manager.

For more information on WSO2 API Manager and to download the product please visit http://wso2.com/products/api-manager. Also take a look at the online product documentation.

API Manager 1.9.0 includes following new features, improvements and bug fixes.

New Features

[APIMANAGER-3286] - Enable using an external Authorization Server for Key Validation/ Creation
[APIMANAGER-3498] - Create a corresponding SP when creating OAuth Application from Store UI
[APIMANAGER-3398] - Sharing capabilities for Applications (subscriptions)
[APIMANAGER-3397] - Pluggable Versioning Strategy
[APIMANAGER-3388] - Update API Manager to the latest Swagger version (2.0)
[APIMANAGER-3334] - Custom URLs support for APIPublisher/APIStore
[APIMANAGER-3339] - Add missing event attributes in publishing data to BAM/CEP
[APIMANAGER-3344] - Scope specific access token generation from API Store
[APIMANAGER-3415] - Providing a way to add event receiver and analyser configurations through UI in APIM
[APIMANAGER-3456] - User password change feature for API Store
[APIMANAGER-3487] - API Migration Client to migrate APIM 1.8.0 to 1.9.0
[APIMANAGER-2238] - [UI improvement] Ability to specify the token scope in Store when generating Application Token

Improvements

[APIMANAGER-772] - Add integration tests for the new feature Make JWT generation configurable
[APIMANAGER-1335] - Create Script to Test Visibility in Public, Private Restricted APIs
[APIMANAGER-1603] - Same configuration and description for Thrift Key Validation server host name is mentioned twice in api-manager.xml
[APIMANAGER-1704] - Do we need to expose OPTIONS request in the UI?
[APIMANAGER-1740] - Documentatoin links added should be visible as links in store.
[APIMANAGER-1765] - [Store-APIs] Tier availability for an API is not returned in the set of apis returned when called the store/site/blocks/api/listing/ajax/list.jag
[APIMANAGER-1948] - These junit test cases testUpdateRefreshedApplicationAccessToken and testIsAccessTokenExists need to added back to apimgt.impl module
[APIMANAGER-2010] - For non-subscribed APIs, need to have “Default” application pre-selected in subscribe UI
[APIMANAGER-2270] - Upgrade wso2's jQuery version to 1.9.0 or greater
[APIMANAGER-2543] - velosity log file should move to repository logs directory
[APIMANAGER-2787] - Mis-spellings in the code for 'tenant' as 'tennat'
[APIMANAGER-2854] - Remove message logging from APIManagerExtensionHandler
[APIMANAGER-2880] - API Store: Need indication on the API page that I am already subscribed to the API
[APIMANAGER-2910] - helpful troubleshooting message?
[APIMANAGER-2954] - Publishing an api to an external store
[APIMANAGER-3069] - There is no option displayed to delete added Swagger API definition parameters
[APIMANAGER-3092] - Issue in the API doc visibility - 'Private'
[APIMANAGER-3143] - Need to remove author info from API Cloud
[APIMANAGER-3198] - Change gateway response messages on failures to more descriptive descriptions
[APIMANAGER-3199] - Change log level on gateway call rejection from ERROR to INFO when there is no actual failure
[APIMANAGER-3203] - Moving API Usage Publisher stream names and versions to read from config file.
[APIMANAGER-3231] - Debugs logs not wrapped by isDebugEnabled check
[APIMANAGER-3235] - OPTIONS method is shown in the API Console
[APIMANAGER-3255] - Introduce a Publisher API to import swagger definition using a file or a URL
[APIMANAGER-3292] - Publisher "Edit Swagger Definition" : Add grammar check
[APIMANAGER-3293] - Publisher "Edit Swagger Definition" : Resizable popup
[APIMANAGER-3311] - There is no API to retrieve an API Document by File
[APIMANAGER-3319] - There is no API to retrieve the endpoints of an API Store Item
[APIMANAGER-3324] - Presentation of Sandbox/Production URL not clear
[APIMANAGER-3328] - Remove 'Visible to my domain' visibility when in single tenant mode
[APIMANAGER-3329] - Modify hostname/port to be taken from variables in Token API and Revoke API xmls
[APIMANAGER-3330] - Modify hostname/port to be taken from variables in Token API,Revoke API and Authorize xmls
[APIMANAGER-3333] - Fixing hardcoded username and password issue in api-manager.xml and make them resolved by user-mgt.xml
[APIMANAGER-3336] - Improve the SAML2BearerGrantHandler with role based scope validation by extracting roles from SAML2 Assertion
[APIMANAGER-3351] - Improving Statistics graphs
[APIMANAGER-3366] - Improve publishing to multiple Gateways feature
[APIMANAGER-3392] - New API - Get list of tags for a API
[APIMANAGER-3393] - New API - Get list of tiers available for API
[APIMANAGER-3394] - New API - List of all available tiers in API-M deployment
[APIMANAGER-3395] - Need to provide proper instructions when adding tags to apis
[APIMANAGER-3396] - HTTP Head method Support with APIM
[APIMANAGER-3399] - Pre-populate API Manager with one API which can be used OOTB
[APIMANAGER-3400] - Add pagination to 'My Subscriptions' page
[APIMANAGER-3401] - UI imrpovements to APIPublisher Stats page
[APIMANAGER-3402] - Improve the message prompted when deleting applications to state whether that app has active subscriptions or not
[APIMANAGER-3420] - Swagger v2.0 support for APIM
[APIMANAGER-3421] - Swagger v1.2 to v2.0 migration
[APIMANAGER-3424] - No Tier Availability warning if change to Available to specific tenants Subscriptions
[APIMANAGER-3431] - Override IP address with end user IP address for GA
[APIMANAGER-3465] - Allow changing user password in API store.
[APIMANAGER-3466] - Adding loading Indicators to buttons in API Design wizard
[APIMANAGER-3467] - CORS Improvements
[APIMANAGER-3488] - Access-control-allow-headers wildcard
[APIMANAGER-3514] - Provide adequate information in exceptions throwing in key manager
[APIMANAGER-3522] - Add link to store after publishing an API
[APIMANAGER-3524] - Expose API for deleting a subscription by the applicationName
[APIMANAGER-3539] - Need to add Tiers/Tags details to getAllPaginatedPublishedAPIs() payload
[APIMANAGER-3582] - Need an option to delete Parameters that we add for 'Resource Methods'
[APIMANAGER-3600] - It is better to disable the checkbox of the scope which are not entitled to the particular role
[APIMANAGER-3603] - API store applications key generation curl requests should be displayed separately
[APIMANAGER-3604] - When scopes are not defined, pls include a proper message
[APIMANAGER-3626] - Grammar issue in the UI
[APIMANAGER-3682] - Add breadcrumbs or back button in “edit content view” In API Documentation
[APIMANAGER-3710] - Improve API Store load time when dealing with large number of APIs over low bandwidth connection
[APIMANAGER-3782] - In API Store it shows status as “ inactive” for both approval pending and rejected ones in Application Creation Workflow
[APIMANAGER-3784] - Update the API with swagger resource definition through Publisher REST API.
[APIMANAGER-3793] - Publisher API should support to add parameters for HTTP verbs when adding apis
[APIMANAGER-3813] - Add API flow - UI/UX Improvements
[APIMANAGER-3819] - Provide ability to skip certain scopes being validated
[APIMANAGER-3885] - Pls give a proper error message or something when the external store is not functioning

Bug Fixes

[APIMANAGER-44] - Life-Cycle History needs to capture if the changes were propagated to API Gateway or not
[APIMANAGER-175] - UI is frozen when entering API context if there are large number of APIs present in publisher
[APIMANAGER-932] - Integration tests for TokenParser should add to api configuration by default.
[APIMANAGER-961] - Provider1 and Subscriber1 users are created as admin
[APIMANAGER-966] - RESTClient 'Response Headers' section doesn't show additional Header fields (Eg: 'Allow:' Header field that is returned for OPTIONS).
[APIMANAGER-1271] - Com.mysql.jdbc.exceptions.jdbc4.MySQLSyntaxErrorException: Specified key was too long; max key length is 767 bytes
[APIMANAGER-1305] - Issues when AD is secondary user store
[APIMANAGER-1306] - [MT mode] Once the Jmeter script run with 100,000 requests, got following error in the Gateway
[APIMANAGER-1313] - Creating API fails if WSDL can't be reached..
[APIMANAGER-1336] - Billing Sample data is not accurate and java.lang.ClassCastException thrown when refreshing the page or when no data is available
[APIMANAGER-1337] - [MT mode] Continuous error when deployment synchronizer is enabled
[APIMANAGER-1382] - UI glitches : typos and resizing issues
[APIMANAGER-1387] - Issues with billing sample
[APIMANAGER-1585] - [Statistics][BAM] Even when BAM is configured but if there is no data in Statistics db; still the Publisher's statistics page shows "Sample; Configure BAM to see yours" page
[APIMANAGER-1608] - Cloud Identity (identity server) profile is loaded when logged in with a tenant to API Manager
[APIMANAGER-1668] - Instead of saying no data found, it says "Refer our wiki to configure BAM correctly" in API Usage By User in publisher statistics.
[APIMANAGER-1695] - Publishing an API using a secondary userstore user in tenant mode throwing exception
[APIMANAGER-1697] - "APPLICATION TOKEN" is provided as the "APPLICATION_USER TOKEN for the same username password, even after APPLICATION_TOKEN is expired.
[APIMANAGER-1730] - Error when login as a tenant after installing APIM features on an ESB
[APIMANAGER-1742] - API image will not be copy,when publishing an API to an external wso2 APIStore
[APIMANAGER-1787] - [GREG-APIM] StringIndexOutOfBoundsException occurs when launch Endpoint URL of "resource" in API list
[APIMANAGER-1821] - Add complete logs to authentication API request. This should contain token validation time as well
[APIMANAGER-1902] - Display name not shown in API resources wise tier throtling
[APIMANAGER-1940] - Even if the API fails to get published the state is mentioned as 'Published'
[APIMANAGER-1958] - ResourceNotFoundException observed in key manager nodes
[APIMANAGER-1974] - Application Access Token Regenerate fails beyond second attempt when Token Partitioning enabled
[APIMANAGER-1977] - UTF-8 application names not working correctly in API Manager
[APIMANAGER-1982] - APIIPublisher tier permissions left menu,showing login popup when session timeout while SSO enabled.
[APIMANAGER-1983] - Change the exclamation mark to period in the failed login text shown in Store/publisher apps
[APIMANAGER-1987] - Provide a link to traverse between the store and publisher apps
[APIMANAGER-1993] - API Store CSS does not render in IE 8
[APIMANAGER-2008] - Make the created subscriber role during APIM startup as internal role
[APIMANAGER-2012] - Existing custom error pages are not working for 401,403,404,500 error codes
[APIMANAGER-2013] - Issues in CORS headers management
[APIMANAGER-2014] - Tryit now feature sends null key, later causes insert error in BAM
[APIMANAGER-2015] - Statistics in API Manager gives an error when EnableBillingAndUsage is set to true
[APIMANAGER-2017] - API resources order adding from APIPublisher don't preserve during their validation phase
[APIMANAGER-2019] - Input after double quote in the description of an application gets lost
[APIMANAGER-2032] - API Manager 1.6.0 error on BAM with not autenticated users
[APIMANAGER-2037] - When adding an API, and when the API name contains special characters, the API addition fails, but the appeared UI message is not descriptive enough for the user to identify what went wrong.
[APIMANAGER-2046] - Not able to view subscriptions in the Store of the WSO2 API Manager after registry curruption
[APIMANAGER-2049] - Task not updated/removed when user is deleted
[APIMANAGER-2052] - API gray-scaling for unapproved subscriptions does not work on firefox
[APIMANAGER-2054] - Tenant user sign up through store is not restricted when sign up work flow is enabled
[APIMANAGER-2055] - Http client calls should not thrown an exception when they got responses with 500, 503 response code
[APIMANAGER-2064] - Statistics update issue in API invocations with load balanced endpoints ( when an endpoint is not available)
[APIMANAGER-2066] - Issues with faulty invocation statistics update
[APIMANAGER-2069] - Cannot generate access tokens for the users who have capital letters in their username in h2 database
[APIMANAGER-2087] - 'Test Endpoint button' says valid for some invalid endpoints
[APIMANAGER-2089] - Secured Endpoints does not work
[APIMANAGER-2106] - API Manager doesn't work when /_system/governance is mounted to different path
[APIMANAGER-2130] - NotSerializableException error throws , when try to login to replication enabled cluster
[APIMANAGER-2132] - Tenant wise theme uploading gets failed
[APIMANAGER-2138] - API Docs - Issues with updating /adding new documents
[APIMANAGER-2145] - Main logo is not getting changed when upload a customized theme pack
[APIMANAGER-2146] - Some images are not getting changed when upload a customized theme pack
[APIMANAGER-2195] - API Manager regenerate the same old token which is already time-out in the gateway
[APIMANAGER-2210] - Can't display statistics with Stats DB in MSSQL
[APIMANAGER-2214] - [Usability] After subscribing to an API, page re-direction does not go to the exact subscribed application
[APIMANAGER-2233] - Tenant user name format in publisher statistics pages
[APIMANAGER-2242] - Gateway message tracing - EndPointURL=null
[APIMANAGER-2269] - API detail page (api-info)'s "API Console" tab sometimes shows empty, fills on reload: Swagger's jQuery library conflict?
[APIMANAGER-2274] - Error message printed when statistics datasource is not properly configured
[APIMANAGER-2275] - Cannot publish API statistics when BAM server is changed
[APIMANAGER-2279] - Generic error message on publisher UI for several scenarios
[APIMANAGER-2296] - If you try to two documents with the same name for the same API there is no error/ warning message for the user
[APIMANAGER-2318] - Create an API with the context / unusable and canot be invoked
[APIMANAGER-2349] - Need more descriptive error messages for API Store
[APIMANAGER-2382] - Sandbox Application-user token scope is stored as PRODUCTION in IDN_OAUTH2_ACCESS_TOKEN
[APIMANAGER-2385] - Throttling setting is not reset
[APIMANAGER-2387] - Tenant API store loading when SSO is enabled
[APIMANAGER-2392] - Issue with NTLM grant type [When checked with 2 windows machines connect to same AD and windows domain]
[APIMANAGER-2398] - Cannot publish to gateway while a mild load test happening (Connection timed out)
[APIMANAGER-2443] - When visibility is set to "Visible to Domain", it does not make sense to have "Available to all the tenants" subscription level
[APIMANAGER-2497] - Adding a document to API does not work if application name is changed
[APIMANAGER-2523] - Google Analytics activation block
[APIMANAGER-2539] - Statistics on Store - Number of API calls should be right aligned
[APIMANAGER-2563] - Entries are fetched from the GatewayResourceCache only when GatewayKeyCache is enabled
[APIMANAGER-2569] - Composite primary keys mismatch in mysql tables and hive tables in stats script
[APIMANAGER-2572] - Resource path can't exceed 100 chars
[APIMANAGER-2579] - Error in monthly_summery_gen hive script in Billing sample
[APIMANAGER-2653] - [AM stats] API_REQUEST_SUMMARY stat event ,apiPublisher has to be include username of API publisher
[APIMANAGER-2689] - Forum reply table spans out of the page border [Browser issue].
[APIMANAGER-2695] - APIs(once published) in any status can be published to external stores
[APIMANAGER-2697] - Cannot publish APIs when the external store is referred to by the host name
[APIMANAGER-2703] - Blank drop down menu and wrong caption in the absence of tier permission for the logged in user
[APIMANAGER-2704] - Blocked subscriptions can be unblocked by re-subscribing to an API
[APIMANAGER-2718] - API displayed on the super tenant's store when visiting the publisher store of a tenant (External stores)
[APIMANAGER-2722] - getting registry exception during document upload in some browsers
[APIMANAGER-2724] - Error when requesting userinfo for password based token
[APIMANAGER-2725] - OAuth2TokenValidationService can't process valid request
[APIMANAGER-2743] - Application throttling tier changes are not immediately applied when gateway cache is enabled
[APIMANAGER-2750] - Multiple subscription entries for an API for the same user and application observed intermittently
[APIMANAGER-2756] - "Type a tag and Enter" label is missing
[APIMANAGER-2777] - Pagination doesn't work properly when you have an API with several versions
[APIMANAGER-2780] - APIM Test URI functionality in the API implementation section and the Google Analytics Publishing are not proxy aware
[APIMANAGER-2815] - startup of the APIM does not show the link for admin dashboard
[APIMANAGER-2818] - Error when logging out of publisher/store on an SSO enabled setup [Intermittent]
[APIMANAGER-2841] - APIM 1.7.0 with BAM 2.4.1 on Windows 7, cannot view statistics. Error related to "Table "API_REQUEST_SUMMARY" not found;"
[APIMANAGER-2848] - Error during SSO from a Tenant
[APIMANAGER-2867] - COALESCE missing for consumerKey in am_stats_analyzer
[APIMANAGER-2884] - Cannot use a newly created role as the parameter for "Visible to Roles" when the visibility is set as "Restricted by roles""
[APIMANAGER-2889] - the module that creates API scopes need to show mandatory fields and validate for data when creating
[APIMANAGER-2890] - API Manager- setting defaultAutoCommit property when using postgresql
[APIMANAGER-2892] - Page Headers disappeared when navigated to next page on "My Applications"
[APIMANAGER-2895] - publisher module does not validate if the user role given within the scope is existent within the user store
[APIMANAGER-2922] - JWT TokenGeneration Certificate Header Parameter x5t encoding.
[APIMANAGER-2946] - API provider inconsistent in external store
[APIMANAGER-2960] - API "default version" does not work with unauthenticated APIs
[APIMANAGER-2965] - Application Name showed as null in all store statistics pages when token encryption enabled
[APIMANAGER-3002] - Issue in the Documentation Content search in the Publisher and Store
[APIMANAGER-3009] - Improve the request parameters on publisher API (addAPI)
[APIMANAGER-3010] - Issue in displaying the number of APIs displayed in the API Store
[APIMANAGER-3019] - Publisher login attempt will give a hazelcast exception in the key manager node
[APIMANAGER-3040] - Duplicate configuration entry in Identity.xml
[APIMANAGER-3053] - If A Tenant user doesn't have any APIs created a Error is shown in the back-end when accessing the store.
[APIMANAGER-3061] - Available to current Tenant only API also showing in other tanents store subscribe section
[APIMANAGER-3081] - Issue in the 'body' parameters of the 'Value' field in the API Store
[APIMANAGER-3087] - Cannot publish API in the second attempt; If the user try to publish the API with no tier is selected in the manage section at the first attempt
[APIMANAGER-3099] - Single Signout fails intermittently for tenants
[APIMANAGER-3102] - [API cloud] 'Scope' restrictions fails for some comnbinations
[APIMANAGER-3111] - API Invocation faills when parameters are in the middle of the resource path
[APIMANAGER-3112] - Creating new API using Swagger-first strategy generates import error
[APIMANAGER-3117] - When AM - Greg integrating, Given the user credentials of a user created my a tenant to Lifecycle Source in Greg doesn't push the service to API manager publisher.
[APIMANAGER-3119] - Intermittent: Throws an error when updating store after publishing APIs from publisher
[APIMANAGER-3123] - Samples: Deploying and testing Youtube API and Wikipedia API
[APIMANAGER-3129] - API Store view by tag issue
[APIMANAGER-3138] - WSDL url validation failure stated in debug logs for http URLs
[APIMANAGER-3139] - Exception when logging into admin-dashboard when BPS is not configured
[APIMANAGER-3146] - Issue in the Thumbnail Image Dimension validation
[APIMANAGER-3153] - Cannot read properties "apis" when implementing API
[APIMANAGER-3155] - Issues with API grouping based on tags
[APIMANAGER-3159] - API unsubscription issue (Tenant specific)
[APIMANAGER-3161] - Endpoints are not shown on the UI when an API is created by invoking the REST API
[APIMANAGER-3164] - When changing endpoint from 'WSDL Endpoint' to 'HTTP Endpoint' WSDL resource not getting removed
[APIMANAGER-3165] - API Manager 1.8.0 (29-11-2014 pack) (intermittent)Get request fails for some of the copied APIs
[APIMANAGER-3171] - API Manager 1.8.0 (RC1) - gateway cashing false doesn't work for resource level throttling tire changes
[APIMANAGER-3173] - [Publisher] WADL link validation always shows invalid
[APIMANAGER-3178] - Resource level scope is not deleting properly.
[APIMANAGER-3180] - [Intermittent] Sometimes existing APIs are not visible in publisher in tenant mode
[APIMANAGER-3184] - API Manager180RC1 - intermittent issue in displaying login details of logged in tenant user.
[APIMANAGER-3185] - Hazelcast depsync error in publisher
[APIMANAGER-3188] - Issue in editing the Response Content Type under Resources in Publisher
[APIMANAGER-3190] - API Manager 180RC1 - when there is no apis published by user and trying to see particular user's subscription data keep loading
[APIMANAGER-3191] - API Manager 180RC1 - irrelevant data is shown under my apis > statistics > api usage by user
[APIMANAGER-3200] - Issue in Document content updates take a lot of time to get updated
[APIMANAGER-3204] - AM1.7-BAM2.4.1 Metering & Billing page always shows the rate 0.00 as cost
[APIMANAGER-3205] - [Tenant Mode] When the throttling level of an App changes, it does not reflect when APIs are invoked
[APIMANAGER-3206] - Issue in the Document Summary field
[APIMANAGER-3207] - Issue in the Doc content search results in the Publisher
[APIMANAGER-3208] - Issue in the Doc content search Summary section in the Publisher
[APIMANAGER-3209] - [Store] Access Token copy icon copies the asterisks when you have unticked 'show key'
[APIMANAGER-3211] - Error in adding new subscriber: Data truncation: Data too long for column 'USER_ID' at row 1 {org.wso2.carbon.apimgt.impl.dao.ApiMgtDAO}
[APIMANAGER-3212] - API Manager chunk14 -RC5 Error occurs when adding a document having a special character for document name
[APIMANAGER-3214] - Issue in the Access Token after Subscribing to an API after the first time onwards
[APIMANAGER-3218] - fixing stats showing in borwser even when APIUsageTracking is disabled
[APIMANAGER-3219] - Issue in the API creation Design page Context field
[APIMANAGER-3220] - In APIM Publisher faulty invocation graph Y-axis do not start with 0
[APIMANAGER-3222] - Issue in the Sign-up password field in the Store
[APIMANAGER-3225] - The Popup error message doesn't showing up in the second time when uploading a file name exceeds a certain length
[APIMANAGER-3226] - Issue in letting an API to create with the same name
[APIMANAGER-3227] - COALESCE(consumerKey,'') should add to all places where we have consumer key in insert queries
[APIMANAGER-3228] - First request in tenant erroneously sent to HTTP proxy
[APIMANAGER-3229] - Error when uploading files with empty content in API documentation.
[APIMANAGER-3232] - API Publisher Statistics Page Show Continuous Loading like view
[APIMANAGER-3236] - Access token generated through API-Store UI, different from the one retrieved through token API for super tenant admin
[APIMANAGER-3239] - Gramatical error in the Implement panel in publisher
[APIMANAGER-3240] - mc.setJsonPayload in inline JS implementation wraps the response in "jsonObject"
[APIMANAGER-3241] - mc.setJsonPayload in inline JS implementation returns boolean values as strings
[APIMANAGER-3243] - Workflows: admin-dashboard does not display the Approval Tasks sometimes even without login out
[APIMANAGER-3247] - Request body dropped for delete requests with JSON body
[APIMANAGER-3250] - My subscriptions load issue when there are cross tenant subscriptions
[APIMANAGER-3252] - Doc Summary doesn't get updating till the server restart
[APIMANAGER-3253] - Cannot browse APIs
[APIMANAGER-3254] - Cannot create APIs
[APIMANAGER-3256] - Duplicated Life-Cycle History information when LC state is updated in publisher
[APIMANAGER-3257] - In APIM Store get all subscription API do not show subscribed APIs properly.
[APIMANAGER-3258] - Tenant admin cannot authenticate to oauth2/token endpoint
[APIMANAGER-3259] - Change needs to be done to the README.txt in business-processes folder
[APIMANAGER-3260] - Import Swagger Definition fails with exception in logs
[APIMANAGER-3261] - Wrong Auth type set in Spanish UI
[APIMANAGER-3262] - Popup error message doesn't showing up when uploading (non image) different file format to thumbnail
[APIMANAGER-3263] - Startup Publisher fails to create API configured to be published at startup
[APIMANAGER-3265] - Typo at label "Environment"
[APIMANAGER-3267] - tag pagination dosn't work
[APIMANAGER-3269] - Cannot add a new theme
[APIMANAGER-3270] - Make the OAuthAuthenticator extensible
[APIMANAGER-3271] - access token scope will not update when trigger token API with difference scope
[APIMANAGER-3272] - "Session already invalidated" error when an externalLogoutPage is specified in site.json
[APIMANAGER-3273] - Tag pagination doesn't work.
[APIMANAGER-3274] - UI Issue when the username is too long in API store
[APIMANAGER-3275] - Delete api with api identifier give null pointer exception when accessing api context in APIProviderImpl
[APIMANAGER-3276] - Admin dashboard fails on OS X
[APIMANAGER-3277] - Cannot login to API publisher with a Super Tenant user with Internal/developer role
[APIMANAGER-3278] - Request parameter deletion issue
[APIMANAGER-3280] - Per API forum has dissappeared in 1.8.0
[APIMANAGER-3281] - APIM Store get all subscription API list returns null values for Keys in the nested subscriptions array
[APIMANAGER-3282] - NPE occcured while trying to invoke API when using an email address as a user name.
[APIMANAGER-3283] - URL pattern as an uri-template is not working in API Publisher
[APIMANAGER-3284] - API Manager sets default tiers randomly when "unlimited" is not available
[APIMANAGER-3288] - If a resource methods are not defined consecutively it is not posible to invoke later added methos
[APIMANAGER-3289] - Issues when using Publisher REST API to Publish API
[APIMANAGER-3295] - Error when accessing Statistics when statistics DB is MSSQL
[APIMANAGER-3296] - Swagger window size is too small to use
[APIMANAGER-3298] - Tokens created with client_credentials do not take the proper validity period.
[APIMANAGER-3300] - Cannot add replies to forum topics in the Store
[APIMANAGER-3303] - Cannot see swagger definition in publisher
[APIMANAGER-3304] - Gateway sets Host header to hostname:80 for default http port which breaks some popular APIs
[APIMANAGER-3305] - wso2am-1.8.0/dbscripts/migration-1.7.0_to_1.8.0/README.txt contains two syntax errors
[APIMANAGER-3306] - Backend URL Test button displays "Invalid" for URLs that user considers valid
[APIMANAGER-3307] - [REST]Error updating existing App .
[APIMANAGER-3310] - Password fields in Store signup requires length validation
[APIMANAGER-3312] - Unable to reply to forum topics
[APIMANAGER-3315] - Unable to mark resource parameters not required in publisher api-design.
[APIMANAGER-3316] - In localize mode Authentication type is not set properly in publisher manager section.
[APIMANAGER-3317] - Unable to add users & roles
[APIMANAGER-3320] - Endpoint Url without the version doesn't validate scopes
[APIMANAGER-3321] - Cannot invoke a SOAP service using the API console
[APIMANAGER-3322] - pizzashack images hardcoded to localhost
[APIMANAGER-3323] - pizzashack - fail to parse menu JSON
[APIMANAGER-3325] - Error showing information month billing Calculation. Billing month calculated by hive script is wrong
[APIMANAGER-3326] - Getting NPE when we do not pass the Authorisation header in the request when we have enabled debug for the class "OAuthAuthenticator.java".
[APIMANAGER-3327] - Permissions granted in Identity Server not respected in APIM
[APIMANAGER-3332] - Can't Publish APIs to WSO2 External API Stores when API's implementation is "Specify Inline"
[APIMANAGER-3335] - [Publisher API] Issue creating API without visibility
[APIMANAGER-3337] - Cannot encrypt the passwords in configuration files using ciphertool
[APIMANAGER-3338] - WikipediaAPI sample throws ResourceNotFoundException
[APIMANAGER-3341] - Location Header URL contains additional "/" sign
[APIMANAGER-3342] - [Publisher API] Re-publish to gateway doesn't work
[APIMANAGER-3343] - Add following synapse property to api manager synapse.properties file to handle tenant aware logging issues
[APIMANAGER-3345] - Significant performance impact of running deployment sync
[APIMANAGER-3347] - Cannot create APIs with context with multiple "/"
[APIMANAGER-3352] - Fail to issue an access token with scope openId
[APIMANAGER-3353] - Add test case for API scopes test.
[APIMANAGER-3357] - Problems uploading file multipart/form-data
[APIMANAGER-3359] - Remove body parameter from GET, DELETE and OPTIONS
[APIMANAGER-3361] - APIs can invoke 15 minutes after we unsubscribe APIs due to cache issue.
[APIMANAGER-3362] - [IS500 with APIM180 KM & SSO] SSO login to APIM180 Publisher/Store gives NPE in IS500 fresh pack with APIM180 KM feature
[APIMANAGER-3363] - Exception occurs in API store when trying to access an API published by a tenant user (Reverse-proxy enabled)
[APIMANAGER-3367] - API Store doesn't show logged in tenant in SSO configured setup
[APIMANAGER-3369] - DeploymentSynchronizer doesn't work with SVN 1.7 servers
[APIMANAGER-3370] - APIM retrieval of BAM data does not support DB2
[APIMANAGER-3371] - Business Information is cleared when when already published api saved in desgn page
[APIMANAGER-3379] - API publisher manage step doesnt show environment details and business information
[APIMANAGER-3380] - Couldn't add new document to the api
[APIMANAGER-3381] - No warning message if a user try to edit subscribed API
[APIMANAGER-3382] - UI Break in Publisher app
[APIMANAGER-3383] - User cannot edit and save document content with name having special characters such as "&"
[APIMANAGER-3387] - When replying for a forum topic soon after added a reply text disappearing
[APIMANAGER-3389] - API Store Stats not showing No Data Available message
[APIMANAGER-3390] - OSGIServerBundleStatusTestCase Failure - Unsatisfied components detected at 1.9.0-SNAPSHOT server starup
[APIMANAGER-3391] - APIScopeTestCase Failure
[APIMANAGER-3406] - Throttle Policy Enforcement with new Tokens
[APIMANAGER-3407] - API version is showed twice in API edit mode of Implement and Manage pages
[APIMANAGER-3408] - API console sends an incorrect request to the backend
[APIMANAGER-3413] - Please make HTTP transport unchecked by default - in API Publisher - Manage step
[APIMANAGER-3414] - 'None' auth type is set for newly added resources
[APIMANAGER-3416] - Certificate error verifying Thrift connection
[APIMANAGER-3419] - SSO not working for Publisher when reverse proxy enabled
[APIMANAGER-3423] - API Publisher - API document remains on the screen after deleted when document name contains special characters
[APIMANAGER-3425] - Make error messages more descriptive.
[APIMANAGER-3427] - API Manager - Design API page takes more then 10 sec to switch between entry fields
[APIMANAGER-3428] - Repeat subscriptions APIM
[APIMANAGER-3430] - PageView Count in GA reporting is not accurate.
[APIMANAGER-3432] - [MSSQL] Collation defined only for one AM_DB table and that fails token generation
[APIMANAGER-3434] - Errors are displayed when browsing API Console in Store
[APIMANAGER-3435] - Incorrect POST methods in throttling tab in API Store
[APIMANAGER-3436] - Failing to specify a throttling tier causes the api to not publish correctly
[APIMANAGER-3437] - error when addding an API
[APIMANAGER-3438] - Swagger Definition haven't included correct tiers which are added to a API
[APIMANAGER-3439] - sign-up-config.xml should be under the config registry.
[APIMANAGER-3452] - Incorrect POST methods in throttling tab in API Store
[APIMANAGER-3453] - mc.setJsonPayload in inline JS implementation removes brackets of json list if it contains only one element
[APIMANAGER-3454] - Include kernel patch0010 into the product
[APIMANAGER-3457] - Destination Based usage tracking is not working for auth-none APIs
[APIMANAGER-3458] - BAM Profile is wrongly configured if we have more than one BAM receiver URLs in api-manager.xml
[APIMANAGER-3460] - API subscription statistics doesn't get updated until user invokes the particular API for the for the first time.
[APIMANAGER-3462] - tokens gets regenerated to default scope if same scopes are not selected.
[APIMANAGER-3468] - Caching Issue when Tenant is Unloaded
[APIMANAGER-3469] - Deploy sample API Button is not available for user who has only publisher privileges.
[APIMANAGER-3470] - 'Deploy sample API' button is available for users with only creator and login permission.
[APIMANAGER-3472] - Useless 'scope' label can be seen in keys section of API store > My subscriptions page.
[APIMANAGER-3473] - UI issue In API store > My Application page
[APIMANAGER-3474] - API delete doesn't remove Synapse API
[APIMANAGER-3475] - Cannot remove added resources
[APIMANAGER-3476] - API documentation summary doesn't get updated.
[APIMANAGER-3477] - When viewing document content of weatherAPI 2.0.0 right after it is edited an exception can be seen.
[APIMANAGER-3478] - API docs given source type as 'File', cannot be successfully downloaded from API store.
[APIMANAGER-3479] - Documentation update feature doesn't work for update file types and source.
[APIMANAGER-3485] - Unable to publish new API versions through edit view.
[APIMANAGER-3486] - When user clicks on newly created and published version of the sample API exception occurred.
[APIMANAGER-3489] - API store applications doesn't save the changes make by editing.
[APIMANAGER-3490] - In API store creator's name link on each API listed under 'Recently added' is not working.
[APIMANAGER-3491] - Wrong API URL prefix is shown in the API store.
[APIMANAGER-3492] - No. of subscriptions keep increasing when subscribing to the same API by the user using Store APIs
[APIMANAGER-3494] - Please validate roles specified by user when adding a Oauth Scope
[APIMANAGER-3495] - Cannot create API given tags with special characters.
[APIMANAGER-3496] - Error 500 status code can be seen when user saving a new version of an API having tags with special characters.
[APIMANAGER-3497] - unable to edit the APIs after doing the migration 1.6 to 1.7
[APIMANAGER-3500] - Billing sample throws NPE when billing-conf.xml doesn't have entries for the relevant API
[APIMANAGER-3501] - Error while login to the API store using mysql
[APIMANAGER-3503] - OAuth2 JWT Header contains alg: "SHA256withRSA", expect alg: "RS256"
[APIMANAGER-3505] - Endpoint Test button shows always as invalid
[APIMANAGER-3506] - Assigned scopes are not being saved.
[APIMANAGER-3507] - API subscription ON_HOLD state is not handled in store
[APIMANAGER-3508] - "INFO - CarbonAuthenticationUtil 'admin@carbon.super [-1234]' logged in at " Log is printed twice whenever you click on My Aplication or My Subscription pages in store and in publisher
[APIMANAGER-3509] - Cannot invoke an API through UI where URL pattern has Upper case letters
[APIMANAGER-3511] - Point the documentations to the latest 1.9.0 documentation. Currently its being pointed to 1.7.0 and 1.8.0
[APIMANAGER-3513] - getSubscriptionCount doesn't return correct values when Application and Subscription grouping enabled
[APIMANAGER-3515] - Abnormal behaviour when using the password of api end point url with some characters " ' < % & + in 1.9.0 SNAPSHOT
[APIMANAGER-3516] - Tenant owner cannot delete a forum topic created by her/him self
[APIMANAGER-3517] - Forum rating is not visible in the star rating
[APIMANAGER-3518] - API manager publisher profile throws a java.lang.ClassNotFoundException exception.
[APIMANAGER-3519] - API Console is not loading when an API is created with HTTPs transport only
[APIMANAGER-3523] - It should provide a tool tip that it allows {version} or it should suport {Version} as well
[APIMANAGER-3525] - OpenID scope should pass through scope validator
[APIMANAGER-3526] - [Samples: NTLMGrantClient ] Although the sample readme indicates a jna subdirectory, its not there in the pack
[APIMANAGER-3527] - Error 500 when trying to access API Publisher using URL given by console
[APIMANAGER-3528] - Cannot view Configure Analytics page on second time. (API-M dashboard) (oracle)
[APIMANAGER-3530] - Error when update the resource throttling of a API which was created using curl command in APIM 1.9.0 SNAPSHOT
[APIMANAGER-3532] - "AUTO_SERVER=TRUE" should be added on datasource URL to publish API runtime statistics on H2
[APIMANAGER-3533] - When new API version created, API Definition from previous version is missing .
[APIMANAGER-3535] - Deadlock detected when creating an API with tags (while moving to 'Implementation' state)
[APIMANAGER-3537] - Can't update the Auth type using publisher API
[APIMANAGER-3538] - Need to fix the warning given in API Edit mode
[APIMANAGER-3540] - WSDL Test URI button is not working
[APIMANAGER-3541] - [Samples: NTLMGrantClient ]: The sample does not work; throws an exception when built
[APIMANAGER-3544] - Remove APIKeyManager block from api-manager.xml
[APIMANAGER-3545] - org.apache.catalina.LifecycleException is thrown when shutting down the server when pointed to MySQL
[APIMANAGER-3546] - Cannot reupload the same document file
[APIMANAGER-3547] - A syntax error thrown when logout :enabling Single Sign On in API Manager
[APIMANAGER-3548] - Add migration scripts for 1.8.0 to 1.9.0 migration
[APIMANAGER-3550] - REJECTD/ON_HOLD Subscriptions listed under subscription page in API Publisher.
[APIMANAGER-3551] - Swagger file import button isn't working
[APIMANAGER-3552] - Only 37 tables are created in AM DB (MySQL script) when you run IS with -Dsetup first when configured as IS as Key Manager
[APIMANAGER-3553] - Check box to select HTTP transport get automatically uncheck in "API Manage" phase in APIM 1.9.0 SNAPSHOT
[APIMANAGER-3554] - When subscribing to an api right after starting store node "java.io.NotSerializableException" occurs.
[APIMANAGER-3555] - Tenants cannot create applications when IS is configured as Key Manager
[APIMANAGER-3556] - Warning Message is not displayed if visibility is changed from "Public" to "Visible to my domain"
[APIMANAGER-3557] - It takes time to load the error code icon in API Console in Store
[APIMANAGER-3558] - API Version is wrong in API Console for a copied API in Store
[APIMANAGER-3559] - URL pattern is shown without a "/" when you give 2 words for the context
[APIMANAGER-3560] - When updating Public Forum,Support Forum document it allows to click inline option on the first time
[APIMANAGER-3561] - Unable to update document in 3rd time
[APIMANAGER-3563] - Issue in Document visibility
[APIMANAGER-3564] - Cache Mediator is not work for the CDATA elements in a soap envelope
[APIMANAGER-3565] - Store Statistics on API Usage from Resource Path API name and app name only showing in first row.
[APIMANAGER-3567] - Error while changing the theme on API store
[APIMANAGER-3568] - Transport http option is not being selected in an API when you try to edit it
[APIMANAGER-3569] - When you press enter on Authorization : Bearer text box in store it goes to a broken page
[APIMANAGER-3570] - There is no way to invoke HTTP endpoint via API Console.
[APIMANAGER-3571] - For tenants, 'Parameters' added for 'API Resource Methods' are lost in edit mode
[APIMANAGER-3573] - Cannot Publish APIs to External Stores When http transport is disabled.
[APIMANAGER-3574] - API Store breaks when listing Prototyped APIs
[APIMANAGER-3575] - Incorrect page redirecting once session invalidated - Publisher
[APIMANAGER-3576] - ApiUsageFromUserAgents not working (publishing API Runtime Statistics)
[APIMANAGER-3577] - Authentication failed! error log on BAM logs (Publishing API Runtime Statistics)
[APIMANAGER-3578] - Wrong error code is returned when the access token is inactive and expired
[APIMANAGER-3579] - Issues in store with http url
[APIMANAGER-3580] - Pls do validations to the Access Token input field in API Console
[APIMANAGER-3581] - WARN "LandingPageWebappDeployer Product landing page not found" when starting Beta pack
[APIMANAGER-3583] - A validation should be fired when a user tries to add the same resource to an api with a / at the end and without / in the first step
[APIMANAGER-3584] - If OPTIONS method is used in an API with the resource path similar to what's given in POST/PUT methods, the API invocation for those methods fails with Swagger
[APIMANAGER-3585] - There is no option to Try out the OPTIONS method through the API-Console
[APIMANAGER-3586] - Inconsistency in Access-Control-Allow-Methods returned with the response with and without the OPTIONS method
[APIMANAGER-3587] - Can create multiple API with same context and same version but only allow to publish one at a time in 1.9.0 SNAPSHOT
[APIMANAGER-3588] - API context is not validated for duplicates
[APIMANAGER-3589] - Eventhough I have selected the response content type as application/xml, it returns application/json response always in api console
[APIMANAGER-3590] - User is allowed to add 2 payloads to the same resource and no way to delete if added by mistake
[APIMANAGER-3593] - 'path' parameter type should be there in the drop down as an option when you define API methods
[APIMANAGER-3594] - Selected scopes are being unselected in store eventhough you regenerate keys
[APIMANAGER-3595] - When a user regenerates the key for a subscribed app and then select the scope and try to regenerate keys, it will not save the scope and still it will generate the keys for the default scope
[APIMANAGER-3596] - When you delete a scope and publish the api, in store it will repeat the other scope name if the app is subscribed to multiple scopes
[APIMANAGER-3597] - "java.util.EmptyStackException" occurs for the first API created by tenant user.
[APIMANAGER-3598] - In store > my subscription page generated keys cannot copy using copy icon.
[APIMANAGER-3599] - Error thrown when searching for a forum topic
[APIMANAGER-3601] - Gateway does not return PUT as an allowed method when a OPTIONS call is done to an API (even when OPTIONS method is not selected for the API)
[APIMANAGER-3602] - "org.wso2.carbon.registry.core.exceptions" occurs when and logged in subscriber click on an API in the api store.
[APIMANAGER-3606] - Cannot invoke APIs from the "Default API URL" when APIs are created with a pluggable version context
[APIMANAGER-3607] - API Deprecation does not work - Context does not set
[APIMANAGER-3608] - Issues in Privacy page in Store
[APIMANAGER-3609] - Scopes validation should be done for the all APIs not for a particular API
[APIMANAGER-3610] - API Console fails for PROTOTYPED APIs with CORS issues
[APIMANAGER-3611] - Tenant getting unuseful when the server in idle after BAM configure
[APIMANAGER-3612] - Headers went missing in the API Store that load when clicking on 'Go to API Store' button which you get while publishing APIs
[APIMANAGER-3613] - APIM migration 1.8.0 to 1.9.0 not working on H2 database
[APIMANAGER-3616] - API resources cannot edit once API is created/published - tenant mood only
[APIMANAGER-3619] - In API store when user keep validity time empty and click on regenerate validity time field gets disappeared
[APIMANAGER-3620] - When user creates a application token given validity period -1, validity time in the database doesn't get updated with the correct value.
[APIMANAGER-3621] - In application store application token generation doesn't work properly when user keep clicking on re-generation button
[APIMANAGER-3622] - (Migration 1.8.0 to 1.9.0) server startup error after creating tenants
[APIMANAGER-3623] - WSDL File not saved in the registry
[APIMANAGER-3624] - Some options don't show when trying to publish a prototyped API
[APIMANAGER-3627] - New Swagger console shows errors
[APIMANAGER-3630] - (Migration 1.8.0 to 1.9.0) Context version isn't copying
[APIMANAGER-3631] - Changes done to API with related to scopes are being affected after sometimes
[APIMANAGER-3632] - In the cluster setup throttling tier limits are not behaving the expected way.
[APIMANAGER-3633] - Error message not descriptive when doing re subscription of a blocked API subscription
[APIMANAGER-3634] - When you publish API in tenant mode, if you select Go To API Store, the redirected page missing the header
[APIMANAGER-3635] - Parameter Type is not being saved in tenant mode when you edit the API. It takes the value being set at first place
[APIMANAGER-3636] - When Blocked API invoke using swagger response from server is not returning
[APIMANAGER-3637] - Token generation for scopes in tenant mode is broken through UI
[APIMANAGER-3639] - Access failure due to Token expiry before elapsing validity time
[APIMANAGER-3641] - Secured APIs can't be made back as Unsecured.
[APIMANAGER-3642] - Broken page if you access manage API page after session expiration
[APIMANAGER-3644] - [Intermittent] User directs to a Error 500 : The page cannot be displayed page during subscription
[APIMANAGER-3645] - Subscription for the default application goes missing if you do not click on any option in the popup
[APIMANAGER-3646] - API method (GET) can be invoked via application user token eventhough I have defined to invoke it only via application token.
[APIMANAGER-3651] - Sharing capabilities for Applications feature - when user specifies organization name with a space it is considered as another organisation.
[APIMANAGER-3653] - Sharing capabilities for Applications (subscriptions) feature doesn't work for tenant users
[APIMANAGER-3655] - API Console is not working when API is with URL templates added from Publisher APIS
[APIMANAGER-3657] - Visibility changed warning popup appearing each time Private/restried API is loaded
[APIMANAGER-3658] - Sample API Visibility need to be changed as "public"
[APIMANAGER-3660] - Document update button not working after giving a long description (internet explorer)
[APIMANAGER-3661] - User cannot press implement stage after given a large size of image for icon
[APIMANAGER-3662] - Store missing headers when you click the Go To API store link in publisher when you configure an external API store
[APIMANAGER-3663] - New Application page not appearing after selecting that from applications on store
[APIMANAGER-3664] - Cannot download WSDL files from store and publisher that are uploaded in publisher if the API is created with visibility set to my domain or restricted by role
[APIMANAGER-3665] - In windows environment APIM-1.9.0 latest build pack - 26-05-2015 is unable to start
[APIMANAGER-3666] - User cannot generate keys at any time if tries to generate keys for the first time by a different user
[APIMANAGER-3667] - java.io.FileNotFoundException noticed when installing KM features
[APIMANAGER-3668] - (Migration 1.8.0 to 1.9.0) Cannot view published API's on store home page.
[APIMANAGER-3669] - Duplicate values for primary key of APIResourcePathUsageSummaryData when two invocations happen for one API with same HTTP method and different URL patterns in the same time
[APIMANAGER-3670] - IS as a Key Manager with 1.9.0 fails with an NPE while generating keys
[APIMANAGER-3671] - ERROR printed continuously on IS side while restarting the server after installing KM features and copying AM related configuration
[APIMANAGER-3673] - (Migration 1.8.0 to 1.9.0 Mysql) Start-up error while migrate
[APIMANAGER-3676] - Tab view for API is not working in IE 11
[APIMANAGER-3677] - (Migration 1.8.0 to 1.9.0 oracle) Start-up error while migrate
[APIMANAGER-3680] - [UI Issues] - Observed with Safari
[APIMANAGER-3683] - When you try to delete with a payload, APIM drops the payload
[APIMANAGER-3684] - (Migration 1.8.0 to 1.9.0 oracle) Error while token generation
[APIMANAGER-3685] - When adding an Application Registration Workflow production keys are not generated
[APIMANAGER-3687] - Destination based usage tracking is not working
[APIMANAGER-3688] - java.lang.NullPointerException observed when restarting the gateway worker nodes while requests are being served
[APIMANAGER-3689] - Responsive theme image missing
[APIMANAGER-3690] - Go to API Store link in publisher alignment issue
[APIMANAGER-3691] - API Manager Analytics Fault data Stream Definition(org.wso2.apimgt.statistics.fault) has payload_requestTime as STRING
[APIMANAGER-3692] - Selecting scopes from the Store UI doesn't work for tenant users
[APIMANAGER-3693] - When Mapping Existing clients, use clientId passed as a request parameter
[APIMANAGER-3694] - Published APIs not listed in API Store for a particular tenant
[APIMANAGER-3695] - [IS as a KM scenario] - Requests fail for a token where the token validity period is=(-1) [For tenants]
[APIMANAGER-3696] - API Console doesn't work when apim nodes are separated
[APIMANAGER-3699] - API console doesn't get updated accurately Authorization bear token until user manually refresh the page, when user regenerate application token.
[APIMANAGER-3700] - "Hazelcast instance is not active!" noticed in one of the gatway worker nodes while gracefully shutting down the servers
[APIMANAGER-3701] - Sample API (weather) doesn't contain sandbox url.
[APIMANAGER-3702] - Error "A duplicate application already exists by the name" occurs for tenant user when adding an application
[APIMANAGER-3703] - Wrong tip shows near 'update domains' button on my subscriptions page.
[APIMANAGER-3704] - Can't remove Endpoint Security Scheme
[APIMANAGER-3706] - When you update an application in store and regenerate keys, still the application changes will not be replicated in IS side
[APIMANAGER-3707] - Multiple versions of org.wso2.carbon.webapp.mgt.stub in wso2am-1.9.0-SNAPSHOT
[APIMANAGER-3709] - External stores feature is broken in beta2
[APIMANAGER-3711] - When we define multiple resources, with same url pattern with different verbs in different order, last resources are not working.
[APIMANAGER-3712] - Store API addSubscription with 'applicationName' does not work in tenant mode
[APIMANAGER-3714] - (Migration 1.8.0 to 1.9.0 mssql) Start-up error while migrate
[APIMANAGER-3715] - Modification in NTML sample readme document
[APIMANAGER-3716] - Callbackurl does not get saved on OAuth Client
[APIMANAGER-3717] - API visibility can not be controlled by the roles which are defined in 2ndry userstore.
[APIMANAGER-3718] - Tokens obtained using Authorization Code have 0 validity period
[APIMANAGER-3719] - The default json message builder fails on messages with no leading element
[APIMANAGER-3720] - User should not be allowed to create an API with the context includes {}
[APIMANAGER-3721] - Short cut keys are not working in API Console Authorization : Bearer field
[APIMANAGER-3722] - When you import a swagger doc, it changes the API name to the imported swagger doc
[APIMANAGER-3723] - Swagger error is thrown when you click on edit source
[APIMANAGER-3724] - When click the Generate button and successfully submitted the request no message displaying , in Application Registration Workflow
[APIMANAGER-3725] - For tenant users in secondary user store cannot subscribe to APIs.
[APIMANAGER-3727] - API Console error when using a email user name to publish an API
[APIMANAGER-3728] - Swagger Import button in publisher should be validated
[APIMANAGER-3729] - API Console adds "*" to the request URL when "*" is used in the URL template
[APIMANAGER-3730] - Tenant user who are in secondary user tore cannot login to store after sometime.
[APIMANAGER-3731] - When you try to add an API in tenant mode uploading a swagger doc which has scopes, exception will be thrown in the backend
[APIMANAGER-3732] - When you create an API using a swagger doc and try to invoke once its published, the header values will be dropped via api console
[APIMANAGER-3733] - Token generation on an APP created without group throws a NPE after assigning group
[APIMANAGER-3734] - Issues in Store API
[APIMANAGER-3736] - Secondary user store tenant users (jdbc) cannot generate application keys after the error encountered when subscription.
[APIMANAGER-3737] - When you update an application tiers and callback url via Store API command, it will not be updated
[APIMANAGER-3739] - Deadlock detected when trying to log in to the Publisher node while a load test for API creation was running
[APIMANAGER-3741] - APIs published to external WSO2 store shows version twice in the external publisher
[APIMANAGER-3742] - [Intermittent] An exception thrown when publishing API by uploading a swagger doc
[APIMANAGER-3744] - Unclassified Authentication Error given when the Key doesn't have a subscription
[APIMANAGER-3745] - Tab view alignment issue in carbon console for IE 11
[APIMANAGER-3747] - Get the Contents of a File Document via store api is broken
[APIMANAGER-3748] - Publisher becomes unusable in my cluster setup complaining that an API is missing in the database
[APIMANAGER-3749] - (Migration 1.8.0 to 1.9.0 postgre) Start-up error while migrate
[APIMANAGER-3751] - "java.sql.SQLIntegrityConstraintViolationException: ORA-00001: unique constraint" observed when adding APIs with >15 tenants concurrently
[APIMANAGER-3752] - Cannot generate token for scopes via Store API
[APIMANAGER-3753] - [Intermittent Issue] - java.util.EmptyStackException observed on Gateway manager node while loading tenants
[APIMANAGER-3755] - [IS as KM] Cannot generate application tokes after deleting service provider
[APIMANAGER-3757] - [Secure Vault] - Issues of cipher-text.properties & cipher-tool.properties files
[APIMANAGER-3758] - [IS as KM] Assign grant types selectively for applications doesn't work
[APIMANAGER-3759] - [API Console] - Functionality broken
[APIMANAGER-3760] - [Publisher] - NPE returned when searching for APIs with wildcards
[APIMANAGER-3763] - (Migration 1.8.0 to 1.9.0) Readme should be updated
[APIMANAGER-3764] - For API Resource methods, parameters added with "Parameter Type"=form is always set to "value" once the API is published
[APIMANAGER-3765] - Enabling statistics through admin-dashboard fails when default admin role/username/password are changed
[APIMANAGER-3767] - [Intermittent] One of the gateway worker nodes fails to load tenant while requests are being served
[APIMANAGER-3768] - [Intermittent] - Single Logout fails for publisher when the page timesout
[APIMANAGER-3769] - The first time the tenant store is accessed, the created APIs don't appear under 'Recently Added' section or under 'APIs'
[APIMANAGER-3770] - Null Pointer exception is thrown when you try to unselect the external store and save an API and cannot unselect
[APIMANAGER-3771] - Other tenants' super tenant's tags are visible for all tenants in External API store and publisher store when Ext store is configured
[APIMANAGER-3773] - When user creates an API given an invalid wsdl endpoint, user needs to correct the name of the api in order to proceed with the corrected endpoint.
[APIMANAGER-3774] - When user enters sandbox / production endpoint at the implementation stage of API creation system doesn't validate for spaces.
[APIMANAGER-3776] - "Resource does not exist at path <<API path>>" returned when adding & publishing APIs continuously
[APIMANAGER-3778] - Generating Keys for Applications having lengthy names will fail
[APIMANAGER-3780] - Validation should be fired when you try to get subscription for a non existing application
[APIMANAGER-3781] - There is no 'Cancel' or 'Go Back' button if someone wants to go back after deploying API as a prototype
[APIMANAGER-3785] - API invocation fails after adding workflows
[APIMANAGER-3786] - Fix for 'claim mapping attribute getting null' issue is not updated in api manager side
[APIMANAGER-3787] - When user is connected to mysql database, exception throws when generating access tokens
[APIMANAGER-3788] - Application token doesn't get expired.
[APIMANAGER-3791] - Publisher api should support a method to add scopes and assign it when adding an api
[APIMANAGER-3795] - Invalid user information is shown in JWT claims for tenant users
[APIMANAGER-3796] - Check Older Version in Publisher rest api is broken
[APIMANAGER-3797] - When adding and updating existing documents via Publisher Rest api, proper message should be returned to the client and the backend exception should be handled
[APIMANAGER-3798] - "Timeout trying to lock table "REG_RESOURCE" while listing the API Store
[APIMANAGER-3799] - When you try to remove a non existing document it returns the whole excetipn to the client
[APIMANAGER-3800] - [IS as a KM scenario] - Cannot generate keys for the Default Application when username contains upper case characters
[APIMANAGER-3801] - Token encryption functionality is broken
[APIMANAGER-3802] - Email as username users cannot publish APIs when {version} strategy is given in the context
[APIMANAGER-3803] - Validation should be fired when a user tries to edit the api and try to save it without resources.
[APIMANAGER-3804] - signed certifciate in JWT token is similar for carbon super user as well as for a tenant.
[APIMANAGER-3805] - JavaScript API using default sample not working in API Console
[APIMANAGER-3806] - When the username is email address and try to direct to publisher's store from external store, it will mislead the email domain as tenant
[APIMANAGER-3807] - Null Pointer is thrown when invoking API when the user name is an email address
[APIMANAGER-3808] - API invocation fails with Token Encryption
[APIMANAGER-3817] - When invoking a service which returns an xml response body with response caching response body doesn't show with proper xml tags.
[APIMANAGER-3818] - This fix not updated in WSO2 AM https://wso2.org/jira/browse/ESBJAVA-3461
[APIMANAGER-3821] - Issues when grant type is client credential
[APIMANAGER-3822] - API invocation always fails with access token retrieved with client credential grant type[When default validity period is changed]
[APIMANAGER-3823] - Issue in API console after migration (1.8.0 to 1.90)
[APIMANAGER-3825] - Invalid Swagger Field when "Edit Source" at "Design API" page
[APIMANAGER-3827] - Swagger Editor: Bottom part is clipped due to header
[APIMANAGER-3828] - When you click on the Help button (?) next to the Update Domains button, it opens the token expiration help
[APIMANAGER-3831] - Go to Public Store link in super tenant mode
[APIMANAGER-3833] - Swagger: Import API Definition with Spaces in title produces error
[APIMANAGER-3837] - Swagger error in store when username contian a domain
[APIMANAGER-3839] - Error generating tokens when email addresses/domain names are used as the user name
[APIMANAGER-3840] - [External-KeyManager]- Subscription get added to APIM DB even app registration fails in the key-manager server
[APIMANAGER-3841] - (APIM Statistics) No data on API Response Times
[APIMANAGER-3842] - [Intermittent] - ServiceContext in OperationContext does not match observed on one of the gateway worker nodes
[APIMANAGER-3844] - Unable to edit swagger source from API Publisher. Hence, API Console feature is unusable
[APIMANAGER-3845] - java.lang.ArrayIndexOutOfBoundsException observed during long running test
[APIMANAGER-3847] - [IS as KM]When you edit app name in APIM side and create another app from previous name and generate keys, that app wil not be created in IS side
[APIMANAGER-3848] - [SAML2 SSO support] Validating SAML assertion signature and sending signed SAML authentication request/logout request are not configurable
[APIMANAGER-3849] - [SAML2 SSO support] It's not possible to send tenant domain in authentication request (in order to get signature of authentication request validated @ IdP side)
[APIMANAGER-3850] - When the conection to Oracle DB is dropped, PooledConnection has already been closed is printed consistently and doesnt even stop until restart eventhough connected again
[APIMANAGER-3851] - [Store] When http is disabled, it's better to remvoe it completely from API overview
[APIMANAGER-3854] - (Migration 1.8.0 to 1.9.0 MYSQL)Invocation fails after migrate with new migration Client
[APIMANAGER-3855] - (Migration 1.8.0 to 1.9.0 oracle) API invocation fail
[APIMANAGER-3856] - A user can subscribe to an API for a denied tier via Store API
[APIMANAGER-3857] - "org.wso2.carbon.registry.core.exceptions.ResourceNotFoundException: Resource does not exist at path /_system/config" while loading tenant on API Store
[APIMANAGER-3858] - java.util.ConcurrentModificationException observed on a gatway worker node while the load test was running
[APIMANAGER-3859] - 500 Internal Server Error page returned intermittently when accessing API store when reverse proxy is configured
[APIMANAGER-3862] - While publishing to external API Stores, if the external store is non responsive, it won't prompt an error and will show the loading icon forever
[APIMANAGER-3863] - When you configure 2 external stores and publish api 2 both and when one external store is down or not accessible, user will not be able to publish that api to any store
[APIMANAGER-3864] - [Intermittent] One gateway gives exception when other gateway is shutting down
[APIMANAGER-3865] - [Tenant mode] With reverse proxy enabled, publishing and API (with thumbnail) to an external user store fails
[APIMANAGER-3866] - Context field doesn't allow user to define pluggable version context due to a UI validation
[APIMANAGER-3870] - Assigning a scope to a resource doesn't immediately take effect
[APIMANAGER-3871] - When you enable email address still you can add username without an email address
[APIMANAGER-3873] - Email address filed go missing for creating tenants when you enable email address as username
[APIMANAGER-3875] - When application sharing feature is enabled default application is marked shared for all users.
[APIMANAGER-3878] - "LDAP connection created successfully in read-write mode" being printed on gateway worker nodes continuously during the load test
[APIMANAGER-3879] - [Intermittent UI issue] - appStyleFix section of an API disappears suddenly in API Store even when you are logged in
[APIMANAGER-3881] - Some Store/Publisher URLs are incorrect when a custom context is used with reverse proxy
[APIMANAGER-3882] - DB shows TOKEN_STATE of expired tokens as 'ACTIVE' or 'REVOKED'
[APIMANAGER-3883] - WARN printed when invoking APIs
[APIMANAGER-3884] - When a user create a new version of an exiting API and try to publish it to an external api store it will not publish if the ext store is down in the first time
[APIMANAGER-3886] - "Subscribed APIs" list shows only 10 APIs. Pagination is missing
[APIMANAGER-3887] - [IS as KM cluster setup] - After regenerating tokens, it still shows revoked tokens instead of the new one
[APIMANAGER-3891] - [Tenant mode] Updated callback url is not correctly retrieved if the app is udated after generating consumer key/secret.
[APIMANAGER-3893] - [Reverse proxy setup][Tenant]Default sample API is not created (It keeps going on and on)
[APIMANAGER-3895] - Toolbox deployment fails when server is started with a profile
[APIMANAGER-3896] - Scenarios where the backend is returning HTTP 304 is not handled properly in tenant mode
[APIMANAGER-3902] - custom configured throttling tier doesn't apply for application level for tenants
[APIMANAGER-3904] - When configure secure vault for log4j.properties for a custom keystore, password verification error comes
[APIMANAGER-3907] - "java.sql.SQLException: ORA-03115: unsupported network datatype or representation" thrown when viewing stats for tenants from API Store for Oracle
[APIMANAGER-3909] - "java.lang.NumberFormatException: null" returned when tenant was loaded while requests were being served when statistics are configured
[APIMANAGER-3910] - When I configure primary and secondary login and try to login via email, it considers it as a tenant
[APIMANAGER-3915] - NPE returned when accessing Tenant Stores when connected to an LDAP
[APIMANAGER-3287] - Change validateKey operation in APIKeyValidationService to validate token obtained from an external AS
[APIMANAGER-3331] - Create a custom Grant Handler to generate Application Access Tokens
[APIMANAGER-3480] - Call Authorization Server from API Store through an extensible interface
[APIMANAGER-3482] - Provide capability to map existing OAuth clients with Applications
[APIMANAGER-3790] - Prototyped APIs lists in old fashion
[APIMANAGER-3238] - Move APIConstants.isRecentlyAddedAPICacheEnabled into configuration file
[APIMANAGER-3308] - Remove REST Client and Tools menu
[APIMANAGER-3309] - Remove the dependancy of BAM Presentation Service Stub from APIM Analytics Usage component
[APIMANAGER-3429] - Test case for API SCOPE to test access with different roles
[APIMANAGER-3445] - Rename API Copy button as "Create Version"
[APIMANAGER-3531] - Deprecating WSDL Endpoints
[APIMANAGER-3697] - Build p2-repo with released identity components
[APIMANAGER-3740] - Provide a method in KeyManager interface to obtain Active tokens by Consumer Key
[APIMANAGER-3877] - Remove YouTube sample from APIM product
[APIMANAGER-3481] - How to set default validity period of application access token by changing identity.xml
[APIMANAGER-3442] - XSS vulnerability in the API Manager
[APIMANAGER-3443] - Reflected XSS vulnerability in the API Manager
[APIMANAGER-3444] - Cross-Site Request Forgery vulnerability in the API Manager
[APIMANAGER-1970] - Identify unsatisfied components in server startup - APIM
[APIMANAGER-2241] - ConcurrentModificationException at server startup
[APIMANAGER-3088] - Fixing stats error page when no stats in database.
[APIMANAGER-3318] - Invalid breadcrumb in theme upload page in admin dashborad
[APIMANAGER-3412] - Ability to use deferent context path for registry in reverse proxy environments

Known Issues

All the open issues pertaining to WSO2 API Manager are reported at the following location:

Known Issues

How You Can Contribute

Mailing Lists

Join our mailing list and correspond with the developers directly.

Developer List : dev@wso2.org| Subscribe | Mail Archive
User List : user@wso2.org | Subscribe | Mail Archive

Reporting Issues

We encourage you to report issues, documentation faults and feature requests regarding WSO2 API Manager through the public API Manager JIRA. You can use the Carbon JIRA to report any issues related to the Carbon base framework or associated Carbon components.

Support

We are committed to ensuring that your enterprise middleware deployment is completely supported from evaluation to production. Our unique approach ensures that all support leverages our open development methodology and is provided by the very same engineers who build the technology.

For more details and to take advantage of this unique opportunity please visit http://wso2.com/support.

To learn more about WSO2 API Manager and WSO2 support offerings please visit http://wso2.com/products/api-manager.

-- The WSO2 API Manager Team --

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

WSO2 API Manager 1.9.0 Released