The IBM® SOA
Policy Gateway Pattern is set of
virtual system patterns that provide a policy enforcement point, a policy administration point, and
a policy monitoring point.
You can install the IBM SOA
Policy Gateway Pattern on
an IBM PureApplication® System appliance
on IBM Power® or x86 architectures.
The policy administration point is provided by virtual system patterns that provision WSRR in a
multitier architecture, delivering a production and staging environment. The policy enforcement
point can be provided by a WebSphere®
DataPower® appliance. Alternatively, on x86, your PureApplication System can deploy a virtual DataPower image. In either case, a domain is created during
virtual system pattern deployment. The policy monitoring point is provided by a monitoring add-on to
the PureApplication System monitoring service.
The following diagram illustrates the capabilities that are derived from IBM SOA
Policy Gateway Pattern

There are examples of policy in many, if not all Service Oriented Architecture (SOA)
environments. Service producers and consumers agree the capabilities, performance, and
characteristics of the service during the design phase. To implement these agreements, you can use
Service Level Definitions (SLDs) and Service Level Agreements (SLAs). Use the pattern to define
policies for SLDs and SLAs in an efficiently administered, defined, and governed way. Policy types
that are used in this pattern include the following policies:
- Mediation Policies -
- Rejection - Reject or throttle requests that arrive at a rate greater than defined.
- Logging - Create a log message with the policy enforcement point when a service is called.
- Transformation.
- Validation - Validate the service call against the service definition.
- Routing - Based on the message, route to a specific endpoint.
- Security Policies: The sample demonstrates enforcement of XACML access control security
policies. These policies are not currently governed within the policy administration point.
- Monitoring Polices: You can define monitoring policies on PureApplication System
deployments.
The
IBM SOA
Policy Gateway Pattern contains
the following virtual system patterns:
- SOA Policy Gateway Basic Runtime
Sample (x86 only)
- SOA Policy Gateway Governance
Master
- SOA Policy Gateway Basic Runtime
- SOA Policy Gateway Basic Runtime External
DataPower
- SOA Policy Gateway Advanced Runtime
- SOA Policy Gateway Advanced Runtime External
DataPower
- System Monitoring for SOA Policy Gateway Pattern 2.5 (a shared service)
The virtual system patterns work together to provide a multi-stage services governance
environment. The IBM SOA
Policy Gateway Pattern also
provides the capability to provision multiple DataPower
domains that are configured to the governance environment during the pattern deployment.
For more information about SOA Policy, see SOA Policy overview.