Part 1: Governance in Developer Hub: Empowering Ad...

Kasturi

Overview

Governance lies at the heart of every well-managed Developer Hub. It ensures that access, visibility, and subscription processes remain secure, compliant, and aligned with organizational policies.

Developer Hub offers integrated governance features that enable administrators to oversee and manage essential developer activities, such as user registration and product subscriptions.

As a Developer Hub administrator (assigned the AuthGroup.API.Admin role collection), you can configure governance levels that best fit your organization’s needs—striking the right balance between openness and control.

Note: This three-part series will guide you through the full spectrum of governance in Developer Hub. In Part 2, we will extend these foundational concepts by setting up an external governance workflow for more advanced approval scenarios. In Part 3, we will take this a step further and demonstrate how to implement external governance using SAP Integration Suite and SAP Build Process Automation, enabling a fully integrated and automated approval experience.

Understanding Governance Levels in Developer Hub

Developer Hub’s governance framework is divided into two main areas: Access Governance and Subscription Governance.

Access Governance: Access governance determines who can see, register for, and access APIs within your Developer Hub.
- Site Visibility Governance: Control how visible your Developer Hub catalog is to users. For detailed steps, see Manage Access.
- User Registration Governance: Require administrator approval for new user registrations to ensure only authorized developers gain access. See Managing the Access Request of the Users.
- Product Visibility Governance: Define which users can access specific API products using custom role collections. See Restricting Access to API Products Using Custom Role Attribute.
Subscription Governance: Subscription governance defines how API product subscriptions are managed. Administrators can choose to let external systems handle approval workflows by enabling external governance, ensuring that subscription decisions align with enterprise workflows and approval processes. See Manage Product Subscriptions.

Manage Product Subscriptions

Subscriptions are how developers gain access to API products in Developer Hub. Administrators can configure how these subscriptions are approved—either automatically within the Developer Hub or through an external approval process—to ensure proper governance, control, and secure API access.

Managing Governance for Internal and External API Products

Governance works differently depending on whether your APIs are managed inside or outside the SAP ecosystem.

SAP Managed Products are products that contain APIs managed within SAP Integration Suite. All APIs inside these products are created, published, and governed using SAP’s native capabilities—including automated or manual subscription approvals, user registration controls, and end-to-end lifecycle management.

Externally Managed Products are products that contain APIs managed outside SAP Integration Suite, even though the product itself is published through the platform. These APIs originate from external systems or services, and therefore require external governance mechanisms, to handle subscription requests and validations that cannot be governed directly within the platform.

Governance for SAP-Managed Products

For APIs managed within SAP API Management, subscription approvals occur through Developer Hub based on the configured settings. The credentials to access these APIs are generated by SAP API Management.

Governance for Externally Managed Products

For APIs managed outside SAP:

The content administrator (AuthGroup.Content.Admin) can import external APIs, package them into products, and publish them in Developer Hub.
The product must be marked as subscribable by selecting the Allow Subscription checkbox.

Depending on your setup, you can choose between:

Governance Only: To track developer-product relationships.
Governance + Credential Distribution: To also share API credentials automatically upon approval.

Note: Developers cannot subscribe directly to these products within SAP.
External administrators can manually share API keys from their external gateways after approval.

Configuration Requirements Summary

To ensure smooth external governance:

Governance option set to Manage Approval Outside Developer Hub
Product marked as Allow Subscription (applicable only for externally managed products.)
All SPI and destination configurations completed
External system properly integrated with Developer Hub API

Note: You cannot remove or modify products with pending or approved subscriptions.
To apply configuration updates, bring the product into draft mode, make changes, and republish it.

Conclusion

Developer Hub’s governance capabilities provide the flexibility and control modern enterprises need to manage their API ecosystems effectively.

Whether your organization prefers internal governance through SAP systems or external workflows via custom integrations, Developer Hub empowers administrators to tailor governance processes that align with their business policies—ensuring secure, compliant, and well-managed API access across your developer community.

Related Topics:

Part 2: Setting Up an External Governance Workflow

Part 3 Configuring External Governance

By Category

Related Content

Activity Groups

Industry Groups

Influence and Feedback Groups

Interest Groups

Location Groups

Customer Only Groups

Forums

Related Resources

Products

Learning and Support

About

My Account

My Account

Part 1: Governance in Developer Hub: Empowering Administrators with Control and Flexibility