Tyk Gateway 2.9.4, Tyk Dashboard 1.9.4, Tyk Pump 0.8.5, Tyk MDCB 1.7.3

All products

The keys that we use to sign our RPM packages have changed. This means that those of you who ask rpm to verify these keys will have to update the key. The documentation is at //tyk.io/docs/tyk-on-prem/installation/redhat-rhel-centos/gateway/ and for your reference the new key is
http://keyserver.tyk.io/tyk.io.rpm.signing.key.2020
The old key (http://keyserver.tyk.io/tyk.io.rpm.signing.key) will remain accessible for now but this is not guaranteed.

As part of this, we have started to origin-sign our Debian packages. Please see //tyk.io/docs/tyk-on-premises/debian-ubuntu/gateway/ for more.

Tyk Gateway 2.9.4

  • Added support for ECDSA certificates for JWT and OpenID middleware #2790
  • Added OAuth revocation API endpoints: both single token and all tokens generated by single client. See /tyk/oauth/revoke and /tyk/oauth/revoke_all endpoints Tyk Gateway API
  • Cache plugin now can use HTTP headers as part of the cache key, using new cache.cache_by_headers string array field #2753
  • Whitelist/blacklist ignore option now can be configured on global or API level via ignore_endpoint_case boolean option.
  • Added a way to override Tyk built-in error codes and messages. At the moment this is only for Auth token and oAuth functionality. Added a new Gateway configuration field override messages . See examples here #2927 //tyk.io/docs/tyk-oss-gateway/configuration/
  • Fixed issues with JWKs certificate format #2790
  • Fixed distributed rate limiter, wrongly switching to the Redis algorithm #2928
  • Fixed URL rewrite usage with gRPC/Python plugins #2922
  • JSON validation plugin now can be used with Rich plugins #2913
  • Fix strip authorisation functionality https://github.com/TykTechnologies/tyk-analytics/issues/1683
  • Fixed memory leak when using Python plugins #2894
  • Fixed stripping listen path when using request singing functionality #2779
  • Fixed OAuth flow when generating a token using custom key rules with metadata #2724
  • Fixed issues with Gateway registration during Dashboard license upgrade https://github.com/TykTechnologies/tyk-analytics/issues/1706
  • Plugin bundle download URL now respect query string #2874
  • Fixed issue caching Cache plugin to duplicated responses when upstream is down #2832
  • Fixed memory reload happening during API reload #2831
  • Fixed storage expiration time, not working correctly on high traffic #2805
  • Fixed uptime tests issues when in some cases traffic is still get proxied when the host is down https://github.com/TykTechnologies/tyk/issues/2839

Tyk Dashboard 1.9.4

  • Now Portal developers can modify keys, if “multi subscription” mode is supported. Newly requested APIs will go through the standard key request process. https://tyk.io/docs/tyk-developer-portal/portal-concepts/#edit-apis-associated-with-a–single-key-request
  • Certificate and OAuth client listing are way faster in the environments with high Redis usage
  • Added AWS DocumentDB support, and additional related options to control TLS configuration. More here.
  • Added way to revoke tokens via the the portal, developer, and auth client screens //tyk.io/docs/tyk-developer-portal/tyk-portal-classic/portal-oauth-clients/.
  • Added OAuth revocation API endpoints: both single toke and all tokens generated by a single client. See /api/apis/oauth/{clientID}/revoke and /api/apis/oauth/{clientID}/revoke_all endpoints here OAuth Key Management and /portal/developers/oauth-clients/{oauthClientId}/revoke_all here Portal Developers
  • Fix license update flow. Now the user interface for updating the license can be used only if it is not set in the config. Additionally, if the license is set via the file (or environment variable), it never removes the license from the file, and continues to behave the same way as prior to 2.9.3 version.
  • Fix Portal catalogue settings page when API ownership is used.
  • Fixed slow certificate removal
  • Fixed log browser UI issue when detailed request and response data were assigned to wrong requests
  • Fixed MongoDB connection leak
  • Added validation to prevent uploading expired certificates
  • Allow initialise email driver using ENV variables
  • Fixed using custom auth headers in debugging mode

Tyk Pump 0.8.5

  • Improved resilience: now failure or performance issues of the one pump, it should not now affect other pumps. TykTechnologies/tyk-pump#185
  • Added AWS DocumentDB support, and additional related options to control TLS configuration. More here.
  • Increase ElasticSearch pump performance by using batch API TykTechnologies/tyk-pump#204
  • Now you can configure health check endpoint using health_check_endpoint_name and health_check_endpoint_port config options. TykTechnologies/tyk-pump#111. More here

Tyk MDCB 1.7.3

  • Added support for passing OAuth token revocation event to the slave datacenters.