Microgateway 4.4
Airlock Microgateway 4.4 – with Extended Support Lifecycle and Sidecarless Operation
With the release of Microgateway 4.4, we are setting new standards in OpenID Connect (OIDC) support, expanding monitoring and analysis capabilities, and introducing new features through support for the Kubernetes Gateway API. Below are the key enhancements and improvements:
OIDC Relying Party – We Are Production Ready!
OpenID Connect (OIDC) is an open standard that allows clients to verify a user’s identity via an authentication server and obtain profile information in an interoperable manner. With the 4.4 release, our support for the OIDC protocol is now fully production-ready, including several critical improvements for better security and availability:
- Claim-based access: Access to web applications and APIs can now be granted based on specific claims from OIDC ID tokens. This enables more precise access control and permission management.
- Path-based access: In addition to claim-based access, the new version also supports path-based access control, providing greater flexibility in managing and securing access to specific resources.
- Increased security: The state parameter now includes a random value to further minimize the risk of attacks.
- Higher availability: With support for Redis Sentinel and Redis Cluster, the availability and reliability of the session store are significantly improved, ensuring that your applications remain stable even under high load and in distributed environments.
Extended 9-Month Support Lifecycle
Starting with Microgateway 4.4, we are offering 9-month support for each minor release. With our regular 3-month release cycle, this corresponds to an “n-2” support policy.
We are also extending this support retroactively to versions 4.2 and 4.3.
Customers using a supported version will benefit from:
- Bug fixes for critical issues
- Security updates
- Assistance from our support team
Deeper System Insights with Improved Grafana Dashboards
In version 4.4, we’ve expanded our Grafana dashboards to give you even deeper insights into your systems. In addition to the existing features, we now offer additional capabilities for efficient monitoring and analysis:
- Log-Only mode: With Microgateway 4.4, removed headers and blocks can be displayed in log-only mode, allowing for more detailed analysis and monitoring of your microgateways.
- Revamped licensing dashboard: The redesigned dashboard gives you a better overview of your licenses and their usage.
- Seamless integration: As always, deployment is seamless via Helm Chart, ensuring a smooth installation and upgrade process.
Initial Support for Kubernetes Gateway API
The Kubernetes Gateway API is a standard for managing network traffic in Kubernetes clusters. It provides a unified, extensible, and vendor-neutral method for configuring gateways and load balancers.
With Microgateway 4.4, we are introducing initial support for this standard, leveraging a widely adopted Kubernetes project. This offers a key advantage:
Previously, Microgateway could only be used as a sidecar. Now, sidecarless operation is also possible, offering additional flexibility and new use cases. It is now possible to protect web applications and APIs outside of Kubernetes clusters with Airlock Microgateway.
This first step toward Kubernetes Gateway API support marks the beginning of further planned extensions in future versions to provide even more deployment options.
We are committed to continuing to provide innovative solutions and advancing the development of our Microgateway. We welcome your suggestions and feedback to help shape its future.
Airlock Microgateway 4.4 Release Video
Watch our release video to find out about all the new features of Airlock Microgateway 4.4.