Azure/api-management-self-hosted-gateway Container-v2.6.0

Container Image - v2.6.0

on GitHub

Getting started

You can easily install the self-hosted gateway with Docker:

docker run -d -p 8080:8080 -p 8081:8081 --name <gateway-name> --envconfig.service.endpoint=<instance-name>.configuration.azure-api.net
config.service.auth=<auth-token> mcr.microsoft.com/azure-api-management/gateway:2.6.0

Learn how you can install it on other container platforms:

• Deploy self-hosted gateway on Kubernetes with Helm
• Deploy self-hosted gateway on Kubernetes with Azure Arc (Preview)
• Deploy self-hosted gateway on Kubernetes with YAML

Here are other relevant resources:

• Authenticate self-hosted gateway with Azure AD
• Self-hosted gateway on Microsoft Artifact Registry
• Our image tagging strategy

What is new?

Features

• Support for gRPC APIs is now generally available (GA)
• Support for Load Balancer is now generally available (GA)
• Support for Circuit Breaker is now generally available (GA)
• Introduce Azure OpenAI Token Limit policy and is generally available (GA)
• Introduce Azure OpenAI Emit Token Metric policy and is generally available (GA)
• Introduce Azure OpenAI Semantic Caching policy in public preview
• Provide support for mounting authentication certificate through Azure Key Vault Secrets Store CSI Driver
• Provide insights on HTTP version used when calling backend in API Inspector

Fixes / Changes

• Improve logging related to local logging to better understand what is going on
• Reduce log volume by omitting LoggerCouldNotBeResolved events related to Azure Monitor which is not supported
• Fixed a bug where log lines were spread across multiple lines due to newline characters which causes log processors to fail (#190)
• Fixed a bug where local request logs were no longer showing when loading from snapshot and logging on API was removed
• Fixed a bug where cipher suite filtering was not honoured (#176)
• Fixed a bug where startup was blocked when authentication has expired, which prevented new replicas to no longer start up with local backup
• Fix for CVE-2024-21386 vulnerability in our image (Critical severity | details | #282)
• Fix for CVE-2023-6129 vulnerability in our base image (Medium severity | details)
• Fix for CVE-2024-0727 vulnerability in our base image (Medium severity | details)
• Fix for CVE-2024-29992 vulnerability in our image (Unknown severity | details)
• Fix for CVE-2024-27086 vulnerability in our base image (Low severity | details)
• Fix for CVE-2024-2511 vulnerability in our base image (Low severity | details)
• Fix for CVE-2023-6237 vulnerability in our base image (Low severity | details)
• Various improvements

Breaking Changes

None.

Removal

None.