Tyk Enterprise Developer Portal v1.7.0
Last updated: 3 minutes read.
Licensed Protected Product
Release Date 6 Oct 2023
Breaking Changes
This release has no breaking changes.
Future breaking changes
This release doesn’t introduce future breaking changes.
Deprecations
There are no deprecations in this release.
Upgrade instructions
If you are on a 1.6.0 or an older version we advise you to upgrade ASAP directly to this release.
Release Highlights
Content blocks validation
We added validation to the content pages. Now when an admin user tries to delete a content block that is necessary to render the page, the portal won’t let them to save the page.
Audit log capability
We added capability to enable audit log for any action that changes state of the portal or queries data from the portal. When the audit log is enabled, every action of admin users or developers performed via the UI or an API (only for admin users) will be noted in the audit log. To enable the audit log, just specify path to the audit log file and enable it.
To configure the audit log with environment variables, use PORTAL_AUDIT_LOG_ENABLE to enable the audit log and PORTAL_AUDIT_LOG_PATH to specify path to the audit log file:
PORTAL_AUDIT_LOG_ENABLE=true
PORTAL_AUDIT_LOG_PATH=./audit.log
To configure the audit log with the config file, use AuditLog.Enable to enable the audit log and AuditLog.Path to specify path to the audit log file:
"AuditLog": {
"Enable": true,
"Path": "./audit"
}
When specifying path ot the audit file make sure it’s mapped to a file on the host machine.
Capability to limit frequency of access requests
Now admin users can specify how often developers can request access to a specific plan. This way the admins can prevent developers from creating too many keys and abusing their free plan.
Download
Changelog
Added
- Added content blocks validation for content pages to avoid changes to content pages that result in page render errors.
- Added the audit log capability to track any action that changes state of the portal or queries data from the portal.
- Added the capability to limit frequency of access requests to block any abuse of free plans.
Changed
- Disable autocomplete for passwords in the default theme to prevent the access credentials from being stored on the local computer. The stored credentials can be captured by an attacker who gains control over the user’s computer.
Fixed
- Fixed the bug where developers could get access to applications of other developers if they know the app ID.
- Fixed the bug where developers and apps of an organisation were not deleted when the organisation was deleted.
- Fixed the bug where it was possible to remove the default organisation with resulted in the portal being non-operational.
Further Information
Upgrading Tyk
Please refer to the upgrading Tyk page for further guidance with respect to the upgrade strategy.
FAQ
Please visit our Developer Support page for further information relating to reporting bugs, upgrading Tyk, technical support and how to contribute.