Releases: TykTechnologies/tyk
Tyk Gateway v5.5.1, Tyk Dashboard v5.5.1
Tyk Gateway 5.5.1
Fixed
- We have introduced two new options in the Gateway configuration that will enforce prefix and/or suffix matching when Tyk performs checks on whether middleware or other logic should be applied to a request.
enable_path_prefix_matchingensures that the start of the request path must match the path defined in the API definition
enable_path_suffix_matchingensures that the end of the request path must match the path defined in the API definition
combiningenable_path_prefix_matchingandenable_path_suffix_matchingwill ensure an exact (explicit) match is performed
These configuration options provide control to avoid unintended matching of paths from Tyk's default wildcard match. Use of regex special characters when declaring the endpoint path in the API definition will automatically override these settings for that endpoint.
Tyk recommends that exact matching is employed, but both options default tofalseto avoid introducing a breaking change for existing users. - Fixed an issue when using granular Path-Based Permissions in access policies and keys that led to authorization incorrectly being granted to endpoints if an invalid regular expression was configured in the key/policy. Also fixed an issue where path-based parameters were not correctly handled by Path-Based Permissions. Now Tyk's authorization check correctly handles both of these scenarios granting access only to the expected resources.
- Fixed an issue where a parameterized endpoint URL (e.g. /user/{id}) would be invoked if a request is made that omits the parameter. For example, a request to /user/ will now be interpreted as a request to /user and not to /user/{id}.
- Enhanced Tyk Gateway synchronization with MDCB to ensure reliable policy and API loading. Implemented synchronous initialization process to prevent startup failures and potential service disruptions.
Tyk Dashboard 5.5.1
- Version alignment (no code changes)
Tyk Gateway v5.0.14, Tyk Dashboard v5.0.14
Tyk Gateway 5.0.14
Fixed
- We have introduced two new options in the Gateway configuration that will enforce prefix and/or suffix matching when Tyk performs checks on whether middleware or other logic should be applied to a request.
enable_path_prefix_matchingensures that the start of the request path must match the path defined in the API definition
enable_path_suffix_matchingensures that the end of the request path must match the path defined in the API definition
combiningenable_path_prefix_matchingandenable_path_suffix_matchingwill ensure an exact (explicit) match is performed
These configuration options provide control to avoid unintended matching of paths from Tyk's default wildcard match. Use of regex special characters when declaring the endpoint path in the API definition will automatically override these settings for that endpoint.
Tyk recommends that exact matching is employed, but both options default tofalseto avoid introducing a breaking change for existing users. - Fixed an issue when using granular Path-Based Permissions in access policies and keys that led to authorization incorrectly being granted to endpoints if an invalid regular expression was configured in the key/policy. Also fixed an issue where path-based parameters were not correctly handled by Path-Based Permissions. Now Tyk's authorization check correctly handles both of these scenarios granting access only to the expected resources.
- Fixed an issue where a parameterized endpoint URL (e.g. /user/{id}) would be invoked if a request is made that omits the parameter. For example, a request to /user/ will now be interpreted as a request to /user and not to /user/{id}.
- Enhanced Tyk Gateway synchronization with MDCB to ensure reliable policy and API loading. Implemented synchronous initialization process to prevent startup failures and potential service disruptions.
Tyk Dashboard 5.0.14
Fixed
- We fixed the issue with 429 status codes not being shown on the
Activity Overview page - We fixed the portal graphs when using Postgres This was done by adding
a default resolution to the query (grouping by “day” by default) - The Error Breakdown was having some issues regarding dates, it's been fixed by adjusting date parameters
v5.7.0-alpha4
More unused constants
Tyk Gateway 5.5.0 and Tyk Dashboard 5.5.0
Tyk Gateway v5.3.2, Tyk Dashboard v5.3.2
Fixed
-
Fixed Dashboard Analytics for PostgreSQL
Resolved an issue in the
api/usageendpoint where the Dashboard with PostgreSQL integration returned unfiltered results when one valid tag was used. Corrected the need for duplicating the same parameter as a workaround for filtering by multiple tags. Results are now properly filtered as expected, improving the accuracy and reliability of analytics data. -
Enhanced Password Reset security
Modified default OPA rules to prevent unauthorized admins from modifying other admins' passwords, mitigating potential 'rogue admin' behavior. Tyk Dashboard clients using custom OPA rules should update their rule set accordingly. Contact your assigned Tyk representative for assistance.
-
Fixed Universal Data Graph Schema Editor Import Issue
Resolved an issue in the GQL schema editor for Data Graphs, where users couldn't utilize the 'Import Schema' button. Now, it's possible to import files containing GQL schemas into the Dashboard.
-
Enhanced Dashboard UI language
Adjusted wording in Tyk's Dashboard UI to ensure inclusivity and clarity, removing any potentially oppressive language.
-
API Template not associated with Tyk Organization
Fixed an issue where API Templates were not correctly assigned to Tyk Organizations allowing the potential for accidental sharing of secret data between Organizations through use of the incorrect template.
-
Added control over access to context variables from middleware when using Tyk OAS APIs
Addressed a potential issue when working with Tyk OAS APIs where request context variables are automatically made available to relevant Tyk and custom middleware. We have introduced a control in the Tyk OAS API definition to disable this access if required.
-
Resolved PostgreSQL Dashboard Analytics issue
Fixed an issue in the api/usage endpoint where Dashboard+Postgres returned unfiltered results with one valid tag, requiring duplication of the parameter as a workaround for multiple tags. Analytics now correctly filter results as expected.
Tyk Gateway v5.3.4, Tyk Dashboard v5.3.4
Tyk Dashboard 5.3.4
Fixed
- Resolved an issue where Dashboard running on PostgreSQL setup didn't displayed logs for EDP users.
Tyk Gateway 5.3.4
No changes
Tyk Gateway v5.3.3, Tyk Dashboard v5.3.3
Tyk Gateway 5.3.3
Fixed
- Resolved an issue encountered in MDCB environments where changes to custom keys made via the Dashboard were not properly replicated to dataplanes.
- Resolved an issue, when a key was created or reset, the key creation sequence was erroneously repeated for every API in the access list.
- Resolved an issue where a Server Side Event (SSE) streaming response would be considered for caching. As caching needs to buffer the response, this also prevented SSE from correctly being proxied.
- Resolved an issue where Host and Latency fields (Total and Upstream) were not correctly reported for edge gateways in MDCB setups. The fix ensures accurate Host values and Latency measurements are now captured and displayed in analytics data.
Tyk Dashboard 5.3.3
Fixed
- Fixed bug where Dashboard UI would display blank page while creating Key with certificate
- Addressed an issue where the Dashboard displayed an empty page when accessing Activity by Endpoint information after upgrading to Tyk 5.3.1. Users can now see all necessary information.
- Fixed issue in SSO where user permissions were not applied, ensuring visibility of Save API button in Dashboard UI
Tyk Gateway 5.4.0 and Tyk Dashboard 5.4.0
Add RSA-PSS Support
v5.5.0-rc1 Add support for RSAPSS signed JWTs
Tyk Gateway 5.0.13 and Tyk Dashboard 5.0.13
Tyk Gateway 5.0.13
Fixed
- Resolved an issue encountered in MDCB environments where changes to custom keys made via the Dashboard were not properly replicated to dataplanes.
Tyk Dashboard 5.0.13
- No changes only version bump