Skip to main content
Feedback

API Management October 2025 Release Notes

October 25 2025

API Control Plane

New
We added these features
  • MCP in API Control Plane is now generally available. This release features the following MCP enhancements:
    • Streamable HTTP is now supported as a Transport Type for the MCP Source. (ACP-1764)
    • APIs that are MCP-enabled can now have specification files larger than 256KB. (ACP-1996)

Known Issues: The following are known issues and will be fixed in an upcoming release:

  • If an OpenAPI specification file is invalid, MCP tools within an API product will not be available.

  • If a OpenAPI specification file v3.0.0+ contains the type basic within the security section, you will receive an error.

    Refer to MCP in API Control Plane for more information.

Fix
We fixed this issue
  • The Cloud API Management link now displays correctly in API Control Plane when a user has the correct role. (ACP-854)
note

Upcoming Retirement Notice: In the November 2025 release, all entities in API Control Plane will consume and return UUIDs instead of integer IDs. Integer IDs will be accepted for incoming requests, but all responses will only contain the UUID. Integer IDs will be fully retired in early 2026.

October 14 2025

Cloud API Management

Fix
We fixed these issues

  • Creating a new endpoint with deleted endpoint details on the Endpoint Create: New Endpoint Definition page (Design > API > New API Definition > New Endpoint) would fail due to a duplicate endpoint error. This issue has been fixed now. (WA-16810)

  • Previously, the Cloud API Management User privilege in the Boomi Platform was mapped with the Support User role in Cloud API Management (Control Center). This role provides read access to all pages in Control Center, which could lead to potential security risks.

    To fix this issue, we removed the Support User role and added the Organization User role to the Cloud API Management User privilege. The Organization User role allows you to log in to Control Center, but does not provide access to view any pages within Control Center. To access any page, you need to request the Area Administrator to provide write access. (WA-16824)

October 07 2025

Cloud API Management

New
We added these features

  • Added GraphQL support in Boomi Cloud API Management to easily manage and secure GraphQL API requests via Traffic Manager. The GraphQL API performs schema validation and enforces fine-grained access control over sensitive data. You can configure the GraphQL endpoint on the API Definitions and Key & Method Detection page. (WA-14473)

    Refer to Creating API Definitions and Configuring API Endpoint Key and Method Detection Settings for more information on configuring GraphQL endpoints.

    Known Issue: The following item is a known issue with the GraphQL endpoint and will be addressed in a future release.

    • Call logs are not being captured when the call logging settings are enabled on the Call Inspector page for the GraphQL endpoint. (EIN-22680)

  • You can now configure Custom Headers on the Boomi Cloud API Management Portal Setup page. Navigate to Manage > Portal > Portal Setup to set up custom headers. (WA-16460)

    Refer to Configuring General and Portal Setup Settings for more information.

  • Added OAuth support in Boomi Cloud API Management to enable OAuth 2.0 authentication for handling authorization requests against the client’s hosted OAuth server, ensuring secure access to client-backend endpoints. (EIN-10966)

    Refer to Configuring Endpoint Call Processing for more information on configuring the OAuth endpoint on the Call Transformations page.

On this Page