Friday Night Wiki
TopicsAbout
Buy me a coffee
WSO2 Complete Guide

Chapter 1: Introduction to WSO2

What is WSO2?

WSO2 is an open-source technology provider that offers a platform for API management, integration, and identity and access management (IAM). Founded in 2005, WSO2 has become a leader in helping organizations digitally transform by connecting applications, services, data, and devices.

Key Characteristics

  • 100% Open Source: All products are released under Apache License 2.0
  • Cloud-Native: Designed for modern cloud and microservices architectures
  • Standards-Based: Built on open standards and specifications
  • Production-ready: Used in production with commercial support options
  • Vendor-Neutral: Avoids vendor lock-in

History and Evolution

Timeline

  • 2005: WSO2 founded by Dr. Sanjiva Weerawarana and Dr. Paul Fremantle
  • 2007: Released first major product - WSO2 ESB (Enterprise Service Bus)
  • 2010: Introduced WSO2 Carbon platform for unified component architecture
  • 2012: Launched WSO2 API Manager
  • 2015: Expanded into identity and access management
  • 2019: Introduced Micro Integrator for cloud-native integration
  • 2020+: Focus on Kubernetes, Docker, and cloud-native deployments

Core WSO2 Products

1. WSO2 API Manager (APIM)

Purpose: Full lifecycle API management

Key Features:

  • API gateway for routing and security
  • Publisher portal for API creation
  • Developer portal for API discovery
  • Analytics and monitoring
  • Monetization support
  • Rate limiting and throttling

Use Cases:

  • Expose backend services as secure APIs
  • Manage third-party API access
  • Create API marketplaces
  • Implement microservices gateway

2. WSO2 Enterprise Integrator (EI)

Purpose: Integration of applications, services, and data

Key Features:

  • Message mediation and transformation
  • Protocol conversion
  • Enterprise Integration Patterns (EIP)
  • Connectors for SaaS and enterprise systems
  • Business process orchestration
  • Message broker capabilities

Use Cases:

  • Connect legacy systems with modern applications
  • Build integration flows
  • Transform message formats
  • Route messages based on content

3. WSO2 Micro Integrator (MI)

Purpose: Lightweight, cloud-native integration runtime

Key Features:

  • Microservices-friendly
  • Low memory footprint
  • Fast startup time
  • Container-ready
  • No management console overhead

Use Cases:

  • Microservices integration
  • Cloud-native deployments
  • Docker and Kubernetes environments
  • Serverless integration

4. WSO2 Identity Server (IS)

Purpose: Identity and access management

Key Features:

  • Single Sign-On (SSO)
  • Multi-factor authentication (MFA)
  • OAuth 2.0 and OpenID Connect
  • SAML 2.0 support
  • Fine-grained authorization
  • Identity federation
  • User provisioning

Use Cases:

  • Centralized authentication
  • API security
  • Customer identity management
  • B2B and B2C identity needs

5. WSO2 Streaming Integrator (SI)

Purpose: Real-time data processing and integration

Key Features:

  • Stream processing
  • Complex event processing (CEP)
  • Real-time ETL
  • Alerts and notifications

Use Cases:

  • IoT data processing
  • Real-time analytics
  • Fraud detection
  • Log aggregation

Why Choose WSO2?

Advantages

  1. Cost-Effective

    • No licensing fees (open source)
    • Lower total cost of ownership
    • Commercial support available when needed

  2. Flexibility

    • Customizable and extensible
    • Choose only the components you need
    • Deploy on-premises, cloud, or hybrid

  3. Standards-Based

    • Interoperable with other systems
    • Future-proof architecture
    • Industry best practices

  4. Active Community

    • Large open-source community
    • Regular updates and improvements
    • Extensive documentation

  5. Cloud-Ready

    • Kubernetes native
    • Docker support
    • Microservices architecture

Challenges

  1. Learning Curve

    • Complex platform with many features
    • Requires understanding of integration patterns
    • XML-heavy configuration in some areas

  2. Resource Requirements

    • Can be memory-intensive
    • Requires proper infrastructure planning

  3. Documentation

    • Sometimes scattered across different sources
    • Version-specific differences

WSO2 vs Competitors

WSO2 vs MuleSoft

FeatureWSO2MuleSoft
LicensingOpen source (free)Proprietary (expensive)
DeploymentFlexibleCloud-focused
Learning CurveModerateModerate
CommunityLargeLarge
Enterprise SupportOptionalIncluded

WSO2 vs Kong

FeatureWSO2Kong
ScopeFull platformPrimarily API gateway
IntegrationBuilt-in ESBRequires additional tools
IdentityBuilt-inPlugin-based
UIFull management consoleAdmin API focused

WSO2 vs Apigee

FeatureWSO2Apigee
LicensingOpen sourceProprietary (Google)
DeploymentSelf-hosted or cloudGoogle Cloud
CustomizationHighly customizableLimited
CostLowHigh

Common Use Cases

1. API Gateway

Expose internal services as secure, managed APIs for external consumption.

Mobile Apps → API Gateway → Backend Services
             ↓
        Rate Limiting
        Authentication
        Analytics

2. Enterprise Integration

Connect disparate systems within an organization.

CRM System → Integration Layer → ERP System
                    ↓
            Database, Cloud Services

3. Identity Federation

Enable single sign-on across multiple applications.

User → Identity Server → App1, App2, App3
              ↓
       Social Login, LDAP, Active Directory

4. Microservices Management

Manage and secure microservices architecture.

Services → Service Mesh → API Gateway → Clients
              ↓
    Discovery, Load Balancing, Security

WSO2 Architecture Philosophy

The Carbon Platform

WSO2 products are built on top of WSO2 Carbon, a modular, composable architecture:

  • OSGi-Based: Modular component system
  • Pluggable: Add/remove features as needed
  • Lightweight: Use only what you need
  • Unified: Consistent experience across products

Key Principles

  1. Componentization: Everything is a component that can be added or removed
  2. Configuration over Code: Most functionality configured through files
  3. Standards Compliance: Follows industry standards (JAX-RS, JAX-WS, etc.)
  4. Extensibility: Custom components and extensions supported

Getting Started Checklist

Before diving into the technical chapters, ensure you have:

  • [ ] Basic understanding of APIs and web services
  • [ ] Familiarity with REST and HTTP
  • [ ] Java installed (JDK 11 or later recommended)
  • [ ] At least 4GB RAM available
  • [ ] Text editor or IDE
  • [ ] Basic Linux/terminal skills

What You'll Learn

By completing this course, you will be able to:

  1. Install and configure WSO2 products
  2. Create and publish APIs
  3. Build integration flows
  4. Implement security policies
  5. Deploy WSO2 in production
  6. Monitor and troubleshoot WSO2 systems
  7. Design scalable WSO2 architectures

Next Steps

Proceed to Chapter 2: WSO2 Architecture to understand the core architectural concepts that power the WSO2 platform.

Key Takeaways

  • WSO2 is an open-source platform for API management, integration, and identity management
  • It's built on the modular Carbon platform
  • Main products include API Manager, Enterprise Integrator, Micro Integrator, and Identity Server
  • Cost-effective alternative to proprietary solutions
  • Suitable for enterprises looking for flexible, standards-based solutions