tyk

Tyk Open Source API Gateway written in Go, supporting REST, GraphQL, TCP and gRPC protocols

OTHER License

Stars
9.2K
Committers
115
View Code on GitHub
Ecosystems: gRPC, GraphQL, Go, Kubernetes

Bot releases are visible (Hide)

tyk - Tyk Gateway 3.0.9, Tyk Dashboard 3.0.9

Published by buger almost 3 years ago

Tyk Gateway 3.0.9

  • Improved Mutual TLS auth, now it reads full client certificate directly from HTTP request, instead of relying on its fingerprint
  • Fixed removal of keys from workers gateways in MDCB environment, when key gets updated
  • Add support for using query parameters in request signature validation. Signature configuration options now have new options, example: {“use_param”: true, “param”: “foo”}
  • In MDCB environment ensure that certificate removal gets propagated to worker gateways.
  • Fixed uptime checks when threshold is bigger then time_wait values (30s+)
  • Fixed stripping authentication value from cookies
  • Fixed SSE and websockets working together
  • Fixed cache invalidation in MDCB environment
  • Fixed using of uploaded certificates when specifying them in gateway config via http_server_options.ssl_certificates option
  • Make JWT errors lets verbose in order to not expose security configuration
  • Ensure that duplicate analytics tags is removed
  • Fix HTTP version in analytics when using Virtual Endpoints

Tyk Dashboard 3.0.9

  • Fixed CosmosDB 4.0 issues
  • Added support for new request signature configuration options (see above)
  • Fixed adding multiple advanced URL triggers of the same type
  • Fixed SSO SAML vulnerability CVE-2020-29509 CVE-2020-29510 CVE-2020-29511
  • Fixed errors in the dashboard logs during SSO login for temporary users
tyk - Tyk Gateway 3.0.8

Published by lghiur almost 3 years ago

Tyk Gateway 3.0.8

  • Fixed Dynamic Client mTLS for legacy hash algorithms (murmur3, murmur32), trying to access API returns 403: Attempted access with non-existent cert.. Access to an API is now authorised again, by just providing the authorisation header together with the key value, when the token is generated based on a provided certificate. https://github.com/TykTechnologies/tyk/pull/3704.
tyk - Tyk Gateway 3.2.2, Tyk Dashboard 3.2.2

Published by buger about 3 years ago

Important

If you're upgrading from Tyk Gateway/Dashboard 3.2.1, due to packaging bug introduced in those versions, after doing upgrade, you need to run systemctl daemon-reload (this command also mentioned in logs during upgrade as well).

Deprecation notice

enable_health_checks option is deprecated, and going to be disabled by default starting from 4.0.0.
This option enable special API level health check endpoint, with was no longer used, and duplicate information provided by Tyk Pump.
Note that it is not related to Gateway health check endpoint. This option can cause significant performance issues, so ensure that you have it turned off in your installation, if not used.

Tyk Gateway 3.2.2

Tyk Dashboard 3.2.2

  • Fixed package upgrades issue introduce in 3.2.1
  • In Portal, add a way to re-use certificates when subscribing to another API
  • Fixed Dashboard policy behaviour when environment was created using Tyk Sync
  • Fixed when users belonging to user-group, and have user permissions, can't edit users
  • Disallow changing email in portal user profile
  • Fixed double organisation IDs when searching certificates
  • Security vulnerability in SAML identity management
  • Fixed security issue when users with "read" user permissions, were able to access another user API token though Tyk Dashboard API
  • Portal session now stored in mongo instead of cookies, which means that on user logout cookies can't be re-used
  • Fixed uptime tests page UI
  • Fixed “Per api” toggle button on Keys page
  • Fixed propagation of toggling GraphQL field permissions
  • Fixed UDG internal REST data source window endpoint field
  • Fixed performance issues with Uptime test reports
  • Fixed wrong Identity management “login” url
  • Fixed password update functionality for non-admin users
  • Fixed Identity Broker UI when using SAML with user group mapping
  • Fixed Identity Broker UI provider name when using ProxyProvider
  • Fixed Dynamic Client Registration flow when using authorisation code with PKCE flow
tyk - Tyk Gateway 3.0.7, Tyk Dashboard 3.0.7, Tyk MDCB v1.7.10

Published by buger about 3 years ago

Important

If you're upgrading from Tyk Gateway/Dashboard 3.0.5 or 3.0.6, or from Tyk MDCB 1.7.9, due to packaging bug introduced in those versions, after doing upgrade, you need to run systemctl daemon-reload (this command also mentioned in logs during upgrade as well).

Deprecation notice

enable_health_checks option is deprecated, and going to be disabled by default starting from 4.0.0.
This option enable special API level health check endpoint, with was no longer used, and duplicate information provided by Tyk Pump.
Note that it is not related to Gateway health check endpoint. This option can cause significant performance issues, so ensure that you have it turned off in your installation, if not used.

Tyk Gateway 3.0.7

Tyk Dashboard 3.0.7

  • Fixed issue with large number of APIs. Approximately when bigger then 2000, but actually depends on their total bytes size.
  • Fixed package upgrades issue introduce in 3.0.6
  • In Portal, add a way to re-use certificates when subscribing to another API
  • Fixed Dashboard policy behaviour when environment was created using Tyk Sync
  • Fixed when users belonging to user-group, and have user permissions, can't edit users
  • Disallow changing email in portal user profile
  • Fixed double organisation IDs when searching certificates
  • Security vulnerability in SAML identity management
  • Fixed security issue when users with "read" user permissions, were able to access another user API token though Tyk Dashboardd API
  • Portal session now stored in mongo instead of cookies, which means that on user logout cookies can't be re-used
  • Fixed uptime tests page UI

Tyk MDCB 1.7.10

  • Fix memory leaks which can happen on high amount of APIs and Policies
tyk - Tyk Gateway 3.2.1

Published by buger over 3 years ago

Tyk Gateway 3.2.1

  • Fixed issue with loading Python and Go plugins
  • Fixed issue with mounting apps and middleware folders for Docker images
tyk - Tyk Gateway 3.0.6

Published by buger over 3 years ago

Tyk Gateway 3.0.6

  • Fixed issue with loading Python and Go plugins
  • Fixed issue with mounting apps and middleware folders for Docker images
tyk - Tyk Gateway 3.2.0, Tyk Dashboard 3.2.0

Published by github-actions[bot] over 3 years ago

Our new 3.2.0 release is here!

See release notes https://tyk.io/docs/release-notes/version-3.2/

tyk - Tyk Gateway 3.0.5, Tyk Dashboard 3.0.5

Published by github-actions[bot] over 3 years ago

Tyk Gateway 3.0.5

Tyk Dashboard 3.0.5

  • We removed MongoDB and Redis aliveness check, that happens when bootstrapping the Tyk Dashboard. Now bootstrapper CLI can be run outside the dashboard infrastructure, without access to the databases e.g. CI/CD environments.
  • Fixed the issue with SSO Login when Tyk Dashboard is configured to use multiple organisations, and having the same user created in each organisation (one user per organisation, rather than one user with access to all organisations,) it is possible when logging in using generated nonce to lookup a user from the wrong organisation ID, and fail to login with an "attempted access with wrong organisation" error.
  • Oauth2/Oauth protected Tyk APIs (/oauth/* endpoints), have now support for OPTIONS method (preflight requests), which enables usage of these endpoints in browsers (CORS)
  • SMTP driver did not offer text/html multipart as preferred content for MIME enabled email clients https://github.com/TykTechnologies/tyk-email-driver/issues/22
  • We deprecated APIs object list from Organisations API.
  • Fixed not correctly displaying the hash key value in the Tyk Dashboard UI in all the Key pages views
  • Fixed UI issue regarding log browser search
  • Added H2C protocol option in API Designer UI
  • Fixed a bug related to policy validation in catalogue API
  • Portal Catalogue API now not allow entries without a policy ID
  • Updated jQuery version on the developer portal

Changelog

56dd7996 Add test for rate limit status of an API (#3491)
373e67be Call letsencrypt.Manager.Watch once (#3480)
d41103e9 Enhance OAuth error logging (#3451)
a0a56a0f Fix [TT-1311] (#3441)
90eca549 Move CORS handler from chain to middleware to cover oauth2 endpoints (#3462)
836e9b59 Remove idle fields from ChainObject (#3461)
7eab5dc2 TT-968 enabled h2c by default (#3380)
b9c4c46e Update version.go
635be228 Use DefaultSessionManager instead of DefaultAuthorisationManager (#3514)
759840e4 Work with subrouters inside processSpec (#3486)
863bc786 [TT-1388] fixing uptime check err msg (#3503)
79f6b001 [TT-1475] respect ignored paths in CoProcessMiddleware (#3452)
f30b3fe1 [TT-1542] Add fallback hash key functions to catch function changes (#3505)
91c5a1e2 [TT-1574] Multiple analytics keys (#3483)
6333b8af [TT-1606] Separated analytics storage (#3484)
f64d0b8e [TT-1680] [TT-1681] Fix content type detection when charset used (#3501)
e0e4f2e0 adding multiple keys logic in analytics cache purger for slave gateways (#3487)
500c756b cherry pick [TT-1849] GetExp bugfix #3490
74a175fe enabled h2c by default, the handler is h2c (#3470)
0e658dc9 fix parsing GraphQL queries before auth check (TT-1402) (#3469)
b13d9d4e missing files from master

Docker images

  • docker pull tykio/tyk-gateway:slim
  • docker pull tykio/tyk-gateway:s3.0
  • docker pull tykio/tyk-plugin-compiler:v3.0.5
  • docker pull tykio/tyk-plugin-compiler:v3.0
  • docker pull tykio/tyk-gateway:latest
  • docker pull tykio/tyk-gateway:v3.0.5
  • docker pull tykio/tyk-gateway:v3.0
  • docker pull tykio/tyk-hybrid-docker:v3.0.5
  • docker pull tykio/tyk-hybrid-docker:v3.0
tyk - v2.9.5

Published by buger over 3 years ago

Tyk Gateway v2.9.5

tyk - v3.0.4

Published by buger over 3 years ago

Tyk Gateway 3.0.4

Tyk Dashboard 3.0.4

  • Fix dashboard analytics page in Firefox
  • Disable Update/Delete buttons on Keys interface if disabled in config
  • Fix javascript error on developer screen
  • Add user id to the User API create response
  • Fixed Analytics endpoint lastHit format to use RFC-3339
tyk - v2.9.4.8

Published by buger over 3 years ago

Tyk Gateway

tyk - Tyk Gateway v3.0.3, Tyk Dashboard v3.0.3

Published by buger almost 4 years ago

Tyk Gateway

Tyk Dashboard

  • Fixed portal domains with long TLDs like ( dev.docs.services)
  • Fixed memory link happening for trial licenses, in close networks
  • Fixed OrgID validation for when updating APIs, now it should not allow wrong IDs. Should resolve one of the common Tyk Sync issues.
  • Fixed initial screen in Firefox
  • Fixed pagination on certificate listing page
  • Fixed Blank page and console errors when searching basic auth key by keyID or key hash
tyk - Tyk Gateway v3.1.2, Tyk Dashboard v3.1.2

Published by buger almost 4 years ago

Tyk Gateway

Tyk Dashboard

  • Fixed portal domains with long TLDs like ( dev.docs.services)
  • Fixed memory link happening for trial licenses, in close networks
  • Fixed OrgID validation for when updating APIs, now it should not allow wrong IDs. Should resolve one of the common Tyk Sync issues.
  • Fixed initial screen in Firefox
  • Fixed pagination on certificate listing page
  • Display User group name instead of its ID in Identity management screens.
tyk - Tyk Gateway v3.1.1, Tyk Dashboard v3.1.1

Published by buger almost 4 years ago

Upgrade instructions

Important If you used JWTs with non-standard JWKs Tyk (PEM) format, you should update your API to use the default JWKs URL given by your IDP. UPDATE: Fixed in 3.1.2

Tyk Gateway 3.1.1

Tyk Dashboard 3.1.1

  • Fix bug when UDG API not get saved when the user navigates away from schema editor
  • Fixed API URL in GraphQL Documentation in the portal
  • API search now returns results when only part of the word match
  • Fix API listing when you have more than 100 APIs
  • The approve button for key approval was having a theme blank which made it look like the button is missing, this fix makes changes theme to success to display the button
  • Fixed broken navigation to user edit page from the top menu bar of the Dashboard.
  • Fixed issue with Keys and Policy pages, when dashboard hostname is not available from the machine where Dashboard is running.
  • Fixed blank page/console errors on Uptime Targets page
  • Prevented Dashboard panics when Key was created using invalid Policy ids.
  • Fixed missing developer information on Key request details page
  • Fix APIs and Policies synchronization when using Tyk Sync. Should be used together with Tyk Sync 1.2
  • Fix developer portal analytics when hashed keys are used
  • Fixed built-in Dashboard SSO when dashboard has multiple instances behind a load balancer
  • Email used during SSO flow now case insensitive
  • Fixed propagation of basic auth keys on worker gateways in a multi-datacenter environment.
  • Fixed developer token revocation in a multi-datacenter environment.
tyk - Tyk Gateway v3.0.2, Tyk Dashboard v3.0.2

Published by buger almost 4 years ago

Upgrade instructions

Important If you used JWTs with non-standard JWKs Tyk (PEM) format, you should update your API to use the default JWKs URL given by your IDP. UPDATE: Fixed in 3.0.3

Tyk Gateway 3.0.2

Tyk Dashboard 3.0.2

  • API search now returns results when only part of the word match
  • Fix API listing when you have more than 100 APIs
  • The approve button for key approval was having a theme blank which made it look like the button is missing, this fix makes changes theme to success to display the button
  • Fixed broken navigation to user edit page from the top menu bar of the Dashboard.
  • Fixed issue with Keys and Policy pages, when dashboard hostname is not available from the machine where Dashboard is running.
  • Fixed blank page/console errors on Uptime Targets page
  • Prevented Dashboard panics when Key was created using invalid Policy ids.
  • Fixed missing developer information on Key request details page
  • Fix APIs and Policies synchronization when using Tyk Sync. Should be used together with Tyk Sync 1.2
  • Fix developer portal analytics when hashed keys are used
  • Fixed built-in Dashboard SSO when dashboard has multiple instances behind a load balancer
  • Email used during SSO flow now case insensitive
  • Fixed propagation of basic auth keys on worker gateways in a multi-datacenter environment.
  • Fixed developer token revocation in a multi-datacenter environment.
tyk - Tyk 3.1.0

Published by buger almost 4 years ago

SAML support, GraphQL and Universal Data Graph updates, new secure way to request keys via the developer portal, and much more!

See full release notes

tyk - v2.9.4.7

Published by buger about 4 years ago

Tyk Gateway 2.9.4.7

  • Fixed panic happening when using uptime tests poller groups in combination with load balancing #3321 #3357
tyk - Tyk Gateway v2.9.4.6, Tyk Dashboard v1.9.4.4, Tyk MDCB v1.7.6

Published by buger about 4 years ago

Tyk Gateway v2.9.4.6

  • Added alternative Circuit breaker algorithm, which completely disables requests to upstream during cool-down period.
    Can be enabled by setting disable_half_open_state to true on plugin configuration level. https://github.com/TykTechnologies/tyk/pull/3325
  • Fixed uptime check behavior when multiple gateway groups connected to the same Redis but segregated using tags. Added a new gateway configuration option to disable uptime checks on the specific gateway using disable_management_poller boolean option, and uptime_tests.poller_group to have district checkers in each gateway cluster. https://github.com/TykTechnologies/tyk/pull/3321

Tyk Dashboard 1.9.4.4

  • Added support for setting new circuit breaker and uptime checker fields added in Tyk Gateway 2.9.4.6

Tyk MDCB v1.7.6

  • Added support for the new circuit breaker and uptime checker fields added in Tyk Gateway 2.9.4.6
tyk - Tyk v2.9.4.5

Published by matiasinsaurralde about 4 years ago

Tyk Gateway v2.9.4.5

  • Fixed additional concurrent session map access bug (#3307, fix #3309).
tyk - Tyk v2.9.4.4

Published by excieve about 4 years ago

Tyk Gateway v2.9.4.4

Package Rankings
Top 1.05% on Proxy.golang.org
Badges
Extracted from project README
FOSSA Status GitHub Latest Release GitHub Release Date Docker Pulls GitHub Workflow Status (with event) Go Report Card GitHub Repo Stars GitHub Repo Forks
Related Projects
go-api-boilerplate

Go Server/API boilerplate using best practices DDD CQRS ES gRPC

14 Oct 2017 888
arkade

Open Source Marketplace For Developer Tools

26 Feb 2020 4,211
yokai

Simple, modular, and observable Go framework for backend applications.

10 Jan 2024 365
apiclarity

An API security tool to capture and analyze API traffic, test API endpoints, reconstruct Open API...

02 Sep 2021 477
nxplorerjs-microservice-starter

Node JS , Typescript , Express based reactive microservice starter project for REST and GraphQL APIs

23 Jun 2017 233
authelia

The Single Sign-On Multi-Factor portal for web apps

07 Dec 2016 21,292
kyverno

Kubernetes Native Policy Management

04 Feb 2019 5,090
glasskube

🧊 The next generation Package Manager for Kubernetes 📦 Featuring a GUI and a CLI. Glasskube packa...

11 Jan 2024 2,778
tke

Native Kubernetes container management platform supporting multi-tenant and multi-cluster

06 Nov 2019 1,473
coolstore-microservices

A full-stack .NET microservices build on Dapr and Tye

01 Jun 2018 2,475
booking-microservices

Practical microservices, built with .Net 8, DDD, CQRS, Event Sourcing, Vertical Slice Architectur...

07 May 2022 912
dyrectorio

dyrector.io is a self-hosted continuous delivery & deployment platform with version management.

27 Jun 2022 1,122
apisix

The Cloud-Native API Gateway

10 Apr 2019 13,769
typhoon

Minimal and free Kubernetes distribution with Terraform

07 Aug 2017 1,907
kubeclarity

KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...

10 Aug 2024 26