Skip to main content

Release Apache APISIX 2.0

APISIX

This is release candidate.

Core#

  • 🌅 Migrate from etcd v2 to v3 protocol, which is not backward compatible. Apache APISIX only supports etcd 3.4 and above versions. #2036
  • add labels for upstream object.#2279
  • add managed fields in json schema for resources, such as create_time and update_time.#2444
  • use interceptors to protect plugin's route#2416
  • support multiple ports for http and https listen.#2409
  • implement core.sleep.#2397

Plugin#

  • 🌅 add AK/SK(HMAC) auth plugin.#2192
  • 🌅 add referer-restriction plugin.#2352
  • limit-count support to use redis cluster.#2406
  • feat(proxy-cache): store the temporary file under cache directory. #2317
  • feat(http-logger): support for specified the log formats via admin API #2309

Bugfix#

  • 🐛 high priority When the data plane receives an instruction to delete a resource(router or upstream etc.), it does not properly clean up the cache, resulting in the existing resources cannot be found. This problem only occurs in the case of long and frequent deletion operations.#2168
  • fix routing priority does not take effect.#2447
  • set random seed for each worker process at init_worker phase, only init phase is not enough.#2357
  • remove unsupported algorithm in jwt plugin.#2356
  • return correct response code when http_to_https enabled in redirect plugin.#2311

For more changes, please refer to Milestone

CVE#

  • Fixed Admin API default access token vulnerability