[TT-14171] Update documentation for master Dashboard

[buger]

User description

Triggered by: lghiur

Included:

Tyk Gateway: false
Tyk Dashboard: true
Tyk MDCB false
Tyk Pump false

Intended for: master
Changes sourced from: release-5.8.0
Config info generator branch: main

Note: Docs updates for dashboard 5.8.0 (branch suffix: docs)

JIRA: https://tyktech.atlassian.net/browse/TT-14171

---

PR Type

• Enhancement
• Documentation

---

Description

• Enhanced dashboard swagger with proxy and migration endpoints.

• Updated examples, headers, and response content in API spec.

• Extended dashboard configuration docs with new env variables.

• Added comprehensive OPA rules documentation for dashboard.

---

Changes walkthrough 📝

	Relevant files
Enhancement	dashboard-swagger.yml Update Swagger endpoints and add migration features.          tyk-docs/assets/others/dashboard-swagger.yml Change listen_path values for test endpoints. Add a new /api/proxy endpoint with detailed examples. Introduce /api/apis/migrate endpoint for API migrations. Update header requirements and response examples. +450/-60
Documentation	dashboard-config.md Extend dashboard configuration documentation.                        tyk-docs/content/shared/dashboard-config.md Document new database type and connection parameters. Add configuration for table sharding in storage settings. Update Redis cluster and TLS documentation links. +163/-4  opa-rules.md Add comprehensive OPA rules documentation.                              tyk-docs/content/tyk-dashboard/opa-rules.md Introduce new OPA rules for dashboard user permissions. Provide default, demo, and advanced OPA rule examples. +223/-0

---

Need help?

Type /help how to ... in the comments thread for any questions about PR-Agent usage.

Check out the documentation for more information.

[github-actions]

PR Reviewer Guide 🔍

Here are some key observations to aid the review process:

⏱️ Estimated effort to review: 4 🔵🔵🔵🔵⚪

🧪 No relevant tests

🔒 No security concerns identified

⚡ Recommended focus areas for review Migration Endpoint The newly introduced /api/apis/migrate endpoint should be reviewed for comprehensive error handling and detailed response behaviors in various migration scenarios. /api/apis/migrate: post: description: Migrate APIs between Classic and OAS formats. The endpoint supports different migration modes including dry run, staging, promotion and direct migration. operationId: migrateAPI requestBody: content: application/json: schema: $ref: '#/components/schemas/MigrateAPIRequest' example: mode: "dryRun" apiIDs: [ "api123", "api456" ] abortOnFailure: true responses: "200": description: Migration completed content: application/json: schema: $ref: '#/components/schemas/MigrateAPIResponse' "400": description: Bad request - validation failed content: application/json: schema: $ref: '#/components/schemas/ApiResponse' "401": description: Unauthorized content: application/json: schema: $ref: '#/components/schemas/ApiResponse' summary: Migrate APIs between Classic and OAS formats tags: - MigrateOAS Schema Definitions The additions of new schema definitions (e.g., ProxyRequest, ProxyResponse, ErrorResponse, MigrateAPIRequest, and MigrateAPIResponse) should be validated to ensure they align with the intended API contract and include necessary validations. in: query name: start_day schema: format: date type: string schemas: ProxyRequest: type: object required: - method - url properties: method: type: string description: HTTP method for the proxy request (GET, POST, PUT, DELETE, etc.) url: type: string description: Full URL for the proxy request (valid Gateway url), including scheme, host, and path headers: type: object additionalProperties: type: string description: Headers to be sent with the proxy request body: type: object description: Body of the proxy request, typically used for POST or PUT requests ProxyResponse: type: object properties: status_code: type: integer description: HTTP status code of the proxied response headers: type: object additionalProperties: type: string description: Headers received from the proxied response body: type: object description: Body of the proxied response, parsed as JSON if possible ErrorResponse: type: object properties: Status: type: string description: Error status, typically "Error" Message: type: string description: Detailed error message explaining what went wrong Meta: type: object nullable: true description: Additional metadata about the error, if available APICertificateStatusMessage: Documentation Consistency The newly added configuration sections for various database parameters need to be checked for consistency with existing docs and ensure that all ENV variable examples and descriptions are accurate and easy to follow. ### storage.main Main database where the dashboard resources are stored (users, orgs, policies, etc) ### storage.main.type ENV: <b>TYK_DB_STORAGE_MAIN_TYPE</b><br /> Type: `DBType`<br /> Type is the type of the database. Possible values are: - "mongo": Use MongoDB. - "postgres": Use PostgreSQL. - "mysql": Use MySQL. ### storage.main.connection_string ENV: <b>TYK_DB_STORAGE_MAIN_CONNECTIONSTRING</b><br /> Type: `string`<br /> ConnectionString is the connection string for the database. Overrides ReadConnectionString and WriteConnectionString. ### storage.main.read_connection_string ENV: <b>TYK_DB_STORAGE_MAIN_READCONNECTIONSTRING</b><br /> Type: `string`<br /> ReadConnectionString is the connection string for read operations. Only used if ConnectionString is not set. ### storage.main.write_connection_string ENV: <b>TYK_DB_STORAGE_MAIN_WRITECONNECTIONSTRING</b><br /> Type: `string`<br /> WriteConnectionString is the connection string for write operations. Only used if ConnectionString is not set. ### storage.main.mongo

[github-actions]

PR Code Suggestions ✨

Explore these optional code suggestions:

Category	Suggestion	Impact
Possible issue	Fix sprintf argument mismatch Update the sprintf format string in the deny rules so that the number of format specifiers matches the provided arguments. tyk-docs/content/tyk-dashboard/opa-rules.md [128] -x := sprintf("You do not have permission to carry out '%v' operation.", [request_intent, input.request.path]) +x := sprintf("You do not have permission to carry out '%v' operation on '%v'.", [request_intent, input.request.path]) Suggestion importance[1-10]: 8 __ Why: The suggestion correctly identifies the sprintf format mismatch, ensuring that the format string includes two placeholders to match the two arguments provided. This change improves the correctness of the rule and avoids potential runtime errors.	Medium

[netlify]

✅ PS. Pls add /docs/nightly to the end of url

Name	Link
🔨 Latest commit	5054ff1
🔍 Latest deploy log	https://app.netlify.com/sites/tyk-docs/deploys/67c6e20afd05200008c0ee19
😎 Deploy Preview	https://deploy-preview-6062--tyk-docs.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify site configuration.

[netlify]

✅ PS. Pls add /docs/nightly to the end of url

Name	Link
🔨 Latest commit	5054ff1
🔍 Latest deploy log	https://app.netlify.com/sites/tyk-docs/deploys/67c6e20afd05200008c0ee19
😎 Deploy Preview	https://deploy-preview-6062--tyk-docs.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify site configuration.

[andyo-tyk]

Suggested improvements to wording. We shouldn't use the term "OAS API" when referring to a Tyk OAS API.

[andyo-tyk]

Suggested change

	description: Migrate APIs between Classic and OAS formats. The endpoint supports different migration modes including dry run, staging, promotion and direct migration.
	description: Migrate APIs from Tyk Classic to Tyk OAS format. The endpoint supports different migration modes including dry run, staging, promotion and direct migration.

[andyo-tyk]

Suggested change

	summary: Migrate APIs between Classic and OAS formats
	summary: Migrate APIs from Tyk Classic to Tyk OAS format

[andyo-tyk]

Suggested change

	description: This is a sample OAS.
	description: This is a sample OpenAPI description.

[andyo-tyk]

Suggested change

	title: OAS Sample
	title: Sample OpenAPI description

[andyo-tyk]

Suggested change

	summary: Patch Tyk Oas Example
	summary: Patch Tyk OAS Example

[andyo-tyk]

Suggested change

	description: This is a sample OAS.
	description: This is a sample OpenAPI description.

[andyo-tyk]

Suggested change

	title: OAS Sample
	title: Sample OpenAPI description

[andyo-tyk]

Suggested change

	Onboarding section defines the information about the onboarding UI wizzard flow.
	Onboarding section controls the onboarding quick start wizard.

[andyo-tyk]

Suggested change

	Enabled is a boolean flag that enables the onboarding UI wizzard flow.
	Enabled is a boolean flag that enables the onboarding quick start wizard.

[sharadregoti]

Hey, @lghiur

Could you check why the streaming configuration isn't available here? I'm specifically looking for this variable, TYK_DB_STREAMING_ENABLED. There's also a Jira ticket open for the same issue.

[sharadregoti]

@lghiur, were you able to check the issue?

[sharadregoti]

During docs consolidation, this page was removed, and the content was moved to this page.

I'll fix this part.

[lghiur]

@sharadregoti you need to update the script the moves the files over to docs. is this how you're planning to fix it?

[sharadregoti]

Hey, Can you point me to the Github Action /Script that generates opa-rules file? I cannot find it in the tyk-config-generator repo

[lghiur]

TykTechnologies/exp@6d6dbe9

[sharadregoti]

Should we use personal github URLs like this?

[lghiur]

the previous one was also on private gist, would say to revise this at a later point

[sharadregoti]

Ok, can you create a Jira ticket for the same? in the product board

[sharadregoti]

@lghiur ?

[sharadregoti]

Closing this in favor of #6084