From 8e2fc7100e6fb7e5aa99fb8b578af02d42e26560 Mon Sep 17 00:00:00 2001 From: Leonid Bugaev Date: Tue, 31 Dec 2024 08:15:01 +0300 Subject: [PATCH] [TT-13742] Update documentation for master (#5840) --- tyk-docs/assets/others/dashboard-swagger.yml | 2 +- tyk-docs/assets/others/gateway-swagger.yml | 4 ++-- tyk-docs/content/shared/dashboard-config.md | 12 ++++++++++++ tyk-docs/content/shared/gateway-config.md | 3 +++ 4 files changed, 18 insertions(+), 3 deletions(-) diff --git a/tyk-docs/assets/others/dashboard-swagger.yml b/tyk-docs/assets/others/dashboard-swagger.yml index dce27bdedd..c22f925ae8 100644 --- a/tyk-docs/assets/others/dashboard-swagger.yml +++ b/tyk-docs/assets/others/dashboard-swagger.yml @@ -38,7 +38,7 @@ info: name: Mozilla Public License Version 2.0 url: https://github.com/TykTechnologies/tyk/blob/master/LICENSE.md title: Tyk Dashboard API - version: 5.7.0 + version: 5.7.1 servers: - url: https://{tenant} variables: diff --git a/tyk-docs/assets/others/gateway-swagger.yml b/tyk-docs/assets/others/gateway-swagger.yml index bd1c184851..40fd7e5621 100644 --- a/tyk-docs/assets/others/gateway-swagger.yml +++ b/tyk-docs/assets/others/gateway-swagger.yml @@ -30,7 +30,7 @@ info: name: Mozilla Public License Version 2.0 url: https://github.com/TykTechnologies/tyk/blob/master/LICENSE.md title: Tyk Gateway API - version: 5.7.0 + version: 5.7.1 servers: - url: https://{tenant} variables: @@ -8142,4 +8142,4 @@ components: description: Api key in: header name: X-Tyk-Authorization - type: apiKey \ No newline at end of file + type: apiKey diff --git a/tyk-docs/content/shared/dashboard-config.md b/tyk-docs/content/shared/dashboard-config.md index 8db3efc627..2e538e3032 100644 --- a/tyk-docs/content/shared/dashboard-config.md +++ b/tyk-docs/content/shared/dashboard-config.md @@ -838,6 +838,18 @@ Type: `string`
When using SAML with embedded identity broker, is required to upload a certificate that is encoded by the gateway to store it safely, TIB needs the private key as well, hence it needs the same encoding secret so the information is decoded successfully. This value should match with the encoding secret set in the gateway config file, if not set then it will use by default tyk_api_config.secret to attempt to decode the certificate. +### security.forbid_admin_view_access_token +ENV: TYK_DB_SECURITY_FORBIDADMINVIEWACCESSTOKEN
+Type: `bool`
+ +ForbidAdminViewAccessToken is a security feature that allows you to prevent the admin user from viewing the access token of a user. The default is false. + +### security.forbid_admin_reset_access_token +ENV: TYK_DB_SECURITY_FORBIDADMINRESETACCESSTOKEN
+Type: `bool`
+ +ForbidAdminResetAccessToken is a security feature that allows you to prevent the admin user from resetting the access token of a user. The default is false. + ### ui This section controls various settings for the look and feel of the Dashboard UI. diff --git a/tyk-docs/content/shared/gateway-config.md b/tyk-docs/content/shared/gateway-config.md index b96f338338..63f15aef80 100644 --- a/tyk-docs/content/shared/gateway-config.md +++ b/tyk-docs/content/shared/gateway-config.md @@ -725,6 +725,9 @@ If set to `true`, distributed rate limiter will be disabled for this node, and i If you set `db_app_conf_options.node_is_segmented` to `true` for multiple Gateway nodes, you should ensure that `management_node` is set to `false`. This is to ensure visibility for the management node across all APIs. {{< /note >}} +For pro installations, `management_node` is not a valid configuration option. +Always set `management_node` to `false` in pro environments. + ### auth_override This is used as part of the RPC / Hybrid back-end configuration in a Tyk Enterprise installation and isn’t used anywhere else.