Skip to content

2.1.37

Compare
Choose a tag to compare
@stevehu stevehu released this 20 Sep 21:06
· 38 commits to master since this release

2.1.37 (2024-09-20)

Merged pull requests:

  • fixes #2345 Fix the transformer matching with encoding #2346 (stevehu)
  • fixes #2343 Trim the encoding for req res tranformer interceptors #2344 (stevehu)
  • fixes #2341 Dynamic loading jwk with kid is not working if multiple s… #2342 (stevehu)
  • fixes #2339 allow the req or res body encoding to be customized per p… #2340 (stevehu)
  • fixes #2337 update req/res transformer interceptor to handle the erro… #2338 (stevehu)
  • fixes #2334 make convertEnvVars configurable to work with lower case … #2335 (stevehu)

Upgrade Guide

For this release, we have deprecated openapi-security.yml, graphql-security.yml, and hybrid-security.yml. Going forward, all JWT and SWT-related configurations should be centralized in a single security.yml file.

Important Changes for Users with Framework-Specific Security Configurations

If you have framework-specific security properties defined in values.yml, you’ll need to update these properties by removing the framework prefix (openapi-, graphql-, or hybrid-) and using only security as the prefix.

For example, if you previously had the following property in your values.yml file:

openapi-security.enableVerifyJwt: false

You should update it to:

security.enableVerifyJwt: false

This update simplifies configuration management by unifying security settings under a single security.yml file.