Express Gateway Documentation

Project Roadmap

The Express Gateway roadmap consists of three parts:

  1. features request and feedback in Express Gateway Feathub
  2. this document that captures all features under considered at the epic level
  3. the task board that the Express Gateway contributors use to prioritize feature for the next release


The timeframes for consideration to implement new features

Timeframe Description
Backlog immediately being considered or worked on for next release
Short Term a few minor releases out
Medium Term several minor releases out
Long Term not until the next major release

New Features

Backlog (Next Few Minors)

  • OpenAPI Support
    • ingest OpenAPI spec and scaffold EG configuration
    • federate OpenAPI over EG instances
    • create spec
    • spike
    • story prefix “OpenAPI:” in task board
  • OpenID 1.0 Policy
    • create spec
    • spike
    • story prefix “OpenID:” in task board
  • Plugin Framework - Iteration 2
    • spec
    • development plan
    • new credential types
    • new services
    • new models
    • CLI (additional Yeoman generators)
    • decouple CLI from config files (use Admin API only)
    • story prefix “Plugin Framework:” in task board
  • Microservice/Service discovery and orchestration
    • spec
    • spike
    • story prefix “Service Discovery:” in task board
  • High Availability through Clustering
    • create spec
    • spike
    • story prefix “Clustering:” in task board

Short Term (Several Minors Out)

  • Core: Response object interceptor
  • Refactor OAuth2 out as plugin
  • Refactor JWT out as a plugin
  • Advanced Logging format
  • CLI Interface Enhancements
  • API (group of API endpoints)
  • Microservice (group of service endpoints)
  • (TBD from perf testing)
  • soap2json Policy (outbound)
  • json2soap Policy (inbound)
  • Websocket support

Medium Term (Several Minors Out)

  • Datastore - Postgres
  • Serverless Integration (Lambda)
  • Serverless Integration (OpenWhisk)
  • Express Middleware to EG Policy transformer/converter
  • Caching Policy
  • Quota Policy
  • OAuth2 Introspection (Resource server only)
  • RBACL Plugin
  • Bot Detection Policy
  • Logging - statsd Policy
  • Logging - syslog Policy

Long Term (Next Major)

  • GraphQL
  • SAML Policy (see Auth Integration)
  • LDAP Policy (see Auth Integration)
  • HMAC Policy

Completed Features

See our Changelog