Releases: RaikaSurendra/liteMIDgo
Releases · RaikaSurendra/liteMIDgo
v0.1.0 — Initial Release
LiteMIDgo v0.1.0
Initial release of the lightweight MID server alternative for ServiceNow.
Features
- HTTP/HTTPS web server proxy to ServiceNow instances
- ServiceNow ECC queue integration
- Metrics collection agent with system monitoring
- Docker production deployment with docker-compose
- Interactive CLI configuration wizard
- Built-in health checks and connection testing
- Graceful shutdown with proper signal handling
- YAML-based configuration with environment variable support
- Makefile-driven build and deployment workflow
V1
Release Notes
Version 1.0.0 - November 17, 2025
🎉 Initial Release
LiteMIDgo is a lightweight middleware that acts as a web server proxy to ServiceNow instances, similar to ServiceNow's MID server but simpler and more focused on ECC queue operations.
✨ Key Features
- 🚀 Lightweight: Minimal resource footprint compared to full MID servers
- 🌐 Web Server: HTTP/HTTPS server with REST API endpoints
- 🔗 ServiceNow Integration: Direct communication with ServiceNow ECC Queue
- ⚙️ Configurable: YAML-based configuration with CLI setup
- 🛡️ Secure: Basic authentication and HTTPS support
- 📊 Health Monitoring: Built-in health checks and connection testing
- 🔄 Graceful Shutdown: Proper signal handling for production deployment
🐳 Docker Support
- Full containerized deployment with Docker Compose
- Non-root container security
- Health checks and monitoring
- Production-ready configuration
🔧 Build & Deployment Tools
- Comprehensive Makefile for easy service management
- One-command quick start for local development
- Automated build and deployment processes
- Service health monitoring and logging
🛡️ Security Features
- Basic authentication middleware
- Request size limiting and DoS protection
- Security headers implementation
- Input validation and sanitization
- Secure error handling
- Non-root container execution
📋 API Endpoints
- GET /health - Health check endpoint
- GET / - Server information
- POST /proxy/ecc_queue - Send data to ServiceNow ECC Queue
🚀 Deployment Options
Local Development
make quick-start # Build and start all services
make status # Check service status
make logs # View service logs
make stop # Stop all servicesDocker Deployment
make docker-up # Build and start containers
make docker-status # Check container status
make docker-logs # View container logs
make docker-down # Stop containers🔧 Configuration
- Environment-based configuration management
- YAML configuration files
- Interactive setup CLI
- ServiceNow connection testing
- Flexible deployment options
📊 Technical Specifications
- Language: Go 1.24+
- Architecture: Client-Server with optional agent
- Protocol: HTTP/HTTPS
- Authentication: Basic Auth (configurable)
- Container: Docker with Alpine Linux
- Security: Non-root user, minimal attack surface
🔍 Security Improvements
This release includes comprehensive security enhancements:
- ✅ Authentication: Optional basic authentication for protected endpoints
- ✅ Input Validation: Request size limiting and JSON validation
- ✅ Security Headers: Full OWASP-recommended header set
- ✅ DoS Protection: Request size limits and method validation
- ✅ Infrastructure Security: Non-root containers, minimal base images
- ✅ Information Disclosure: Generic error messages, debug-only details
📚 Documentation
- Comprehensive README with deployment guides
- Security audit and summary documentation
- Configuration examples and best practices
- Troubleshooting guide and common issues
🎯 Use Cases
- Network Isolation: Deploy on internet-accessible machines for isolated networks
- ServiceNow Integration: Send data to ECC Queue without direct access
- Development & Testing: Local development with Docker for testing
🔗 Dependencies
Key Go modules used:
github.com/spf13/cobra- CLI frameworkgithub.com/spf13/viper- Configuration managementgithub.com/joho/godotenv- Environment variable loadinggithub.com/charmbracelet/bubbletea- Interactive CLI components
🚨 Security Rating
Overall Security: 🟡 MEDIUM (87% improvement from initial state)
| Category | Rating |
|---|---|
| Authentication | ✅ Basic Auth |
| Input Validation | ✅ Comprehensive |
| Information Disclosure | ✅ Controlled |
| DoS Protection | ✅ Size Limits |
| Security Headers | ✅ Full Set |
| Infrastructure | ✅ Hardened |
📋 Production Deployment Checklist
Required Security Steps:
- ✅ Set strong authentication credentials
- ✅ Enable authentication (
LITEMIDGO_AUTH_ENABLED=true) - ✅ Use HTTPS in production
- ✅ Monitor logs for unauthorized access
- ✅ Deploy using Docker with non-root user
- ✅ Use environment variables for secrets
🔮 Future Roadmap
Medium Priority:
- Rate limiting implementation
- TLS/HTTPS for agent-server communication
- API key or JWT authentication
- Comprehensive audit logging
Low Priority:
- Advanced payload validation with JSON schema
- Security monitoring dashboard
- Automated security scanning
Getting Started
Prerequisites
- Go 1.24+ (for local development)
- Docker & Docker Compose (for containerized deployment)
- Make command (recommended)
Quick Start
git clone https://github.com/RaikaSurendra/liteMIDgo.git
cd liteMIDgo
cp .env.example .env
# Edit .env with your ServiceNow credentials
make quick-startSupport
- 📖 Documentation: See
README.mdfor detailed setup instructions - 🔒 Security: See
SECURITY_SUMMARY.mdfor security information - 🐳 Docker: See
docker-compose.ymlfor container configuration - 🔧 Configuration: See
config/config.yamlfor configuration options
Release Date: November 17, 2025
Version: 1.0.0
License: Educational and Development Use
Repository: https://github.com/RaikaSurendra/liteMIDgo