CentraSite is a standards-based registry and repository that provides the infrastructure you need for the governance and run-time aspects of SOA and API management.

You can control design-time events such as the acceptance of new assets into the catalog and the modification of existing assets in the service catalog through policies. For example, you could define a policy that new services submitted to the catalog must be approved by specified individuals like SOA architects. You can also use policies to define review and approval processes, perform quality assurance tests, and issue notifications when new services or APIs are added or when existing services or APIs are about to be modified. CentraSite provides full support for versioning of SOAP and REST APIs.

CentraSite enables you to define security, audit logging, service level agreement (SLA) monitoring, and routing policies that control the use of services and APIs in the service catalog or API Gallery, respectively. Policies specify actions the mediation layer is to perform when a client application requests a service or API. For example, actions can prevent unauthorized access to a service or API, route a request to the appropriate service or API, record events to a logging system, or monitor performance attributes and send alerts when specified thresholds are exceeded. The illustration below shows a policy definition for a service in CentraSite.