Prior to this release, Tyk already provides OAuth 2.0 and a few other authentication methods.
With OpenID Connect, the solution looks more complete now as OpenID Connect is picking up.
Support for health checks! Kong can now short-circuit some of your upstream Targets (replicas) from its load balancer when it encounters too many TCP or HTTP errors.
You can configure the number of failures, or the HTTP status codes that should be considered invalid, and Kong will monitor the failures and successes of proxied requests to each upstream Target. We call this feature passive health checks.
Additionally, you can configure active health checks, which will make Kong perform periodic HTTP test requests to actively monitor the health of your upstream services, and pre-emptively short-circuit them.
Upstream Targets can be manually taken up or down via two new Admin API endpoints: /healthy and /unhealthy.
The Apply Circuit Breaker assertion defines thresholds for failure conditions which, when exceeded, prevent blocks of your policy from executing for a configurable period.
This is ideal for avoiding bottlenecks that arise due to request processing slowdowns that are caused by sluggish or malfunctioning back-end systems.
Once the Apply Circuit Breaker assertion detects a circuit has exceeded a threshold, the assertion fails and none of its child assertions execute. Depending on the surrounding policy logic, a failed Apply Circuit Breaker assertion could cause further branching or it could fail the entire policy.
After a predetermined timeout period, the circuit resets and the bypassed portion is once again live.