2.1.37
2.1.37 (2024-09-20)
Merged pull requests:
- fixes #2345 Fix the transformer matching with encoding #2346 (stevehu)
- fixes #2343 Trim the encoding for req res tranformer interceptors #2344 (stevehu)
- fixes #2341 Dynamic loading jwk with kid is not working if multiple s… #2342 (stevehu)
- fixes #2339 allow the req or res body encoding to be customized per p… #2340 (stevehu)
- fixes #2337 update req/res transformer interceptor to handle the erro… #2338 (stevehu)
- fixes #2334 make convertEnvVars configurable to work with lower case … #2335 (stevehu)
Upgrade Guide
For this release, we have deprecated openapi-security.yml
, graphql-security.yml
, and hybrid-security.yml
. Going forward, all JWT and SWT-related configurations should be centralized in a single security.yml
file.
Important Changes for Users with Framework-Specific Security Configurations
If you have framework-specific security properties defined in values.yml
, you’ll need to update these properties by removing the framework prefix (openapi-
, graphql-
, or hybrid-
) and using only security
as the prefix.
For example, if you previously had the following property in your values.yml
file:
openapi-security.enableVerifyJwt: false
You should update it to:
security.enableVerifyJwt: false
This update simplifies configuration management by unifying security settings under a single security.yml
file.