2.1.37 (2024-09-20)
Merged pull requests:
- fixes #2345 Fix the transformer matching with encoding #2346 (stevehu)
- fixes #2343 Trim the encoding for req res tranformer interceptors #2344 (stevehu)
- fixes #2341 Dynamic loading jwk with kid is not working if multiple s… #2342 (stevehu)
- fixes #2339 allow the req or res body encoding to be customized per p… #2340 (stevehu)
- fixes #2337 update req/res transformer interceptor to handle the erro… #2338 (stevehu)
- fixes #2334 make convertEnvVars configurable to work with lower case … #2335 (stevehu)
Upgrade Guide
For this release, we have deprecated openapi-security.yml, graphql-security.yml, and hybrid-security.yml. Going forward, all JWT and SWT-related configurations should be centralized in a single security.yml file.
Important Changes for Users with Framework-Specific Security Configurations
If you have framework-specific security properties defined in values.yml, you’ll need to update these properties by removing the framework prefix (openapi-, graphql-, or hybrid-) and using only security as the prefix.
For example, if you previously had the following property in your values.yml file:
openapi-security.enableVerifyJwt: falseYou should update it to:
security.enableVerifyJwt: falseThis update simplifies configuration management by unifying security settings under a single security.yml file.