Nov 19, 2025 – Caching update
4 months ago
You can now customize independently the following caching settings:
Changelog
June 30th, 2025 – Open API for Bot and Abuse products
9 months ago
Open APIs are crucial for automating processes, integrating tools, and centralizing management in modern IT environments.
Open API support includes viewing, creating, updating, and deleting API resources, and managing security configurations. See the Account Protector and Bot Manager Open API documentation.
Oct 7, 2024 – Account Lifecycle Protection is generally available (GA)
over 1 year ago
Fraudsters are becoming increasingly sophisticated, targeting multiple points of the account lifecycle—from account creation to post-login activities like password resets and payments—to commit malicious activities. To stay ahead of these evolving threats, full lifecycle protection is essential to defend against a wide range of online account abuse.
Jul 23, 2024 – Flexible Workflow Configuration support is generally available (GA)
over 1 year ago
You can now use Account Protector to secure complex multistep application flows.
Jun 5, 2024 – Account protection requires the username parameter for account verification and password reset
almost 2 years ago
To ensure optimal account protection, configure the username parameter for account verification and password reset API operations.
You should update your API definitions if you already have such operations without a username parameter.
Mar 13, 2024 – Response Body Inspection beta is available
about 2 years ago
You can now use the origin HTTP response body for both origin success and failure conditions, and to extract the origin user ID.
June and July 2023 – API PII Learning
almost 3 years ago
The following improvements to API Protections give you better security and greater control over your APIs (for Kona Site Defender and AAP w/ASM only):
Feb 14, 2023 - Term change: Resource Purpose now called Operation
about 3 years ago
To protect a transactional endpoint, like a login or checkout page, you define a resource purpose in API Definitions, then set protections for it in Bot Manager Premier or Account Protector. Perhaps, like us, you never cared for that term. We’re happy to share that we’re changing the term resource purpose to the more apt and appropriate term operation.
Feb 9, 2023 - API Gateway enhancements and bug fixes
about 3 years ago
We've made the following enhancements and bug fixes:
Apr 27, 2022 — New API Definitions documentation experience
almost 4 years ago
We've combined the API Gateway and API Discovery documentation into the API Definitions documentation to make it easier for you to find the guides, API docs, and resources you need to define your APIS across your products. Everything is now in one place. Visit the Welcome page for a toolkit of API Definition resources.