Light 4j Versions Save

2.1.33 (2024-03-31)

Merged pull requests:

• fixes #2194 remove the jboss-threads dependency from parent pom.xml #2195 (stevehu)
• fixes #2192 Add a status code for the rate limit in status.yml #2193 (stevehu)
• fixes #2190 fix the JwtHeaderClientIdKeyResolver to use request header #2191 (stevehu)
• fixes #2187 move EncoderWrapper to sanitizer-config module #2188 (stevehu)
• fixes #2185 split sanitizer-config module to share with light-aws-lambda #2186 (stevehu)
• fixes #2183 split logger-config and logger-handler to share with ligh… #2184 (stevehu)
• fixes #2181 fallback to cached config to start server for ConnectExec… #2182 (stevehu)
• fixes #2179 DefaultConfigLoader handles lightEnv in one place in the … #2180 (stevehu)
• fixes #2176 Add aws lambda error codes #2177 (stevehu)
• fixes #2173 remove unused imports #2174 (stevehu)
• Add validation to matchPathToPattern method #2171 (syntheshad)
• fixes #2169 resolve the config reload registry issue #2170 (stevehu)
• fixes #2167 remove the token from portal-registry.yml #2168 (stevehu)
• fixes #2165 refactor limit-config to remove dependency for undertow #2166 (stevehu)
• fixes #2163 split handler-config from handler module #2164 (stevehu)
• fixes #2161 remove jaeger-tracer module as it is replaced by OpenTele… #2162 (stevehu)

2.1.32 (2024-02-27)

Merged pull requests:

• fixes #2159 HandlerConfig supports additionalHandlers, additionalChai… #2160 (stevehu)
• fixes #2157 stop server or use the backup to start the server on conf… #2158 (stevehu)
• fixes #2154 we need to load both decryped yaml and undecryped yaml fr… #2156 (stevehu)
• fixes #2153 return 415 error if config server not return yaml and jso… #2155 (stevehu)
• rollback to application/yaml #2152 (stevehu)
• fixes #2149 change the content type to application/x-yaml for yaml #2150 (stevehu)
• fixes #2147 update DefaultConfigLoader to support YAML response from … #2148 (stevehu)
• fixes #2145 update ContentType to add application/yaml #2146 (stevehu)
• fixes #2142 Update GenericDataSource to handle integer environment va… #2144 (stevehu)
• fixes #2124 use the client.timeout for the config server timeout #2143 (stevehu)
• fixes #2140 update mras, salesforce and external service config to su… #2141 (stevehu)
• fixes #2138 Handle empty string when loading typed value in Config #2139 (stevehu)
• fixes #2136 update pathPrefixAuth to support JSON string in ApiKeyConfig #2137 (stevehu)
• fixes #2134 change the config server timeout to startup.yml and defau… #2135 (stevehu)
• fixes #2132 support JSON string for serviceIdAuthServers for ClientCo… #2133 (stevehu)
• fixes #2130 update ExternalServiceConfig to support JSON string for u… #2131 (stevehu)
• fixes #2128 update RouterConfig to support stringified JSON values #2129 (stevehu)
• fixes #2126 remove the values.yml from config module #2127 (stevehu)
• fixes #2124 use the client.timeout for the config server timeout #2125 (stevehu)
• fixes #2122 limit.yml does not support JSON string for address, clien… #2123 (stevehu)
• [pre-commit.ci] pre-commit autoupdate #2119 (pre-commit-ci)
• fixes #2120 add acceptHeader to support YAML properties from config s… #2121 (stevehu)
• fixes #2117 skip quoteReplacement only for backslash and dollar compb… #2118 (stevehu)
• fixes #2115 Add ServerInfoUtil to be shared with light-aws-lambda #2116 (stevehu)
• fixes #2113 split the ServerInfoConfig to a info-config module #2114 (stevehu)
• fixes #2111 split the HealthConfig to a health-config module #2112 (stevehu)
• fixes #2109 update basic, apikey and simple web token security handle… #2110 (stevehu)
• fixes #2107 update a cient test case that fails on a slow computer #2108 (stevehu)
• fixes #2104 cache the undecryped and decrypted values.yml maps in Con… #2105 (stevehu)
• fixes #2102 support decrypt or not for values.yml and env injection #2103 (stevehu)
• fixes #2099 Update ModuleRegistry to add back isMaskConfigProperties #2100 (stevehu)
• fixes #2097 need a new way to load config file without decryption for… #2098 (stevehu)
• fixes #2095 use the environment from the startup.yml if light-env env… #2096 (stevehu)
• fixes #2087 AuditHandler Not Writing Entries at the End of the Exchan… #2088 (stevehu)
• fixes #2085 Add keysToNotSort in info.yml to skip the string array so… #2086 (stevehu)
• Audit Logging - Replace over putIfAbsent #2084 (KalevGonvick)
• fixes #2082 update HandleUtils and refactor ServiceDictHandler #2083 (stevehu)
• ExternalServiceHandler logging fix #2080 (KalevGonvick)

1.6.47 (2024-01-18)

Merged pull requests:

2.1.31 (2024-01-16)

Merged pull requests:

• fixes #2077 update the ModifiableContentSinkConduit to log the error … #2078 (stevehu)
• fixes #2074 Update ModuleRegistry to remove isMaskConfigProperties #2075 (stevehu)
• fixes #2072 update the rule-loader.yml to fix a typo #2073 (stevehu)
• fixes #2070 update claim version to ver #2071 (stevehu)
• fixes #2067 refactor security module for jwt issuer #2068 (stevehu)
• fixes #2065 change the mapping missing to warn in DirectRegistryConfig #2066 (stevehu)
• fixes #2063 update the module registry config for metrics handler #2064 (stevehu)
• fixes #2055 add plugin configuration as part of the module reload #2060 (stevehu)
• fixes #2058 make the RuleEngine singleton in the RuleLoaderStartupHoo… #2059 (stevehu)
• fixes #2056 add KeyUtil and test cases for JWT and JWK #2057 (stevehu)
• fixes #2051 Update RuleLoaderStartupHook to load plugin classes #2052 (stevehu)
• fixes #2049 change the registerPlugin parameter sequence as some of t… #2050 (stevehu)
• fixes #2047 update ModuleRegistry to add plugin config and a list of … #2048 (stevehu)
• fixes #2045 normalize the server info response for comparison with th… #2046 (stevehu)
• fixes #2043 Add an indicator ready for the server #2044 (stevehu)
• fixes #2040 Allow router and proxy to bypass the TLS hostname verific… #2041 (stevehu)
• Revert "fixes #2037 Move verifyHostname check into createSSLContext f… #2039 (stevehu)
• fixes #2037 Move verifyHostname check into createSSLContext from the … #2038 (stevehu)
• fixes #2035 handle the empty response body in the ResponseBodyInterce… #2036 (stevehu)
• Added logic to end exchange on errors for all scenarios + Changed toB… #2032 (stevehu)
• fixes #2033 update keystore loader to support both jks and pkcs12 #2034 (stevehu)
• fixes #2029 update TraceabilityHandler registry with the correct config #2030 (stevehu)
• fixes #2026 separate config into modules from some of the middleware … #2027 (stevehu)
• Add maven wrapper. #2022 (HappyHacker123)
• Fixes #2012 order dependent tests in CorrelationTest #2013 (SaaiVenkat)
• fixes #2019 do not overwrite the values.yml if config server is not a… #2020 (stevehu)
• fixes #2017 Update module config class to support the conversion of s… #2018 (stevehu)
• fixes #2014 save the values.yml for getConfigs in the default config … #2015 (stevehu)

Upgrade Guide

For this release, we have combined all caches together so that they can be managed centrally through the admin endpoints from the Light Portal. With this change, the default cache for jwk and jwt won't work anymore, and you need to add the following section to your values.yml file. Please adjust the expiry and size according to your API and OAuth 2.0 provider.

# cache.yml
cache.caches:
  - cacheName: jwt
    expiryInMinutes: 15
    maxSize: 100
  - cacheName: jwk
    expiryInMinutes: 129600
    maxSize: 100

Also, you need to add the following implementation mapping in the service.yml section.

  - com.networknt.cache.CacheManager:
      - com.networknt.cache.CaffeineCacheManager

1.6.46 (2023-12-30)

Merged pull requests:

• Ensure leaked connections are closed in SimpleURIConnectionPool.restore() (SimplePool v2) (1.6.x) #2042 (miklish)
• Ensure XnioSSL and XnioWorker resources are created only once in multithreaded environment (SimplePool v2) (1.6.x) #2054 (miklish)
• remove unused code in SimpleUndertowConnectionMaker #2024 (miklish)
• Issue1897 #1980 (miklish)
• SimplePool v2 #1963 (miklish)
• Update variable names for Token Connection and Request Timeout #1957 (jaydeepparekh1311)
• revert upgrades of snakeyaml and jackson until compatibility updates made (1.6.x) #1959 (miklish)
• fixes #1954 Upgrade snakeyaml to 2.2 from 1.33 to resolve security vu… #1955 (stevehu)
• Update client module unit tests to allows sub-1ms response times (Issue 1950) #1951 (miklish)
• fix NPE in SimpleConnectionPool.restore() and optimize borrow() with computeIfAbsent() #1938 (miklish)
• Use Simple Pool for Token verification call #1933 (jaydeepparekh1311)
• Backwards compatibility for Consul blocking queries time #1932 (jaydeepparekh1311)
• Fix test for windows environment. Reset light config property at the end of test #1941 (zabooma)
• Fix flaky test: com.networknt.audit.AuditHandlerTest.testAuditWithErrorStatus #1919 (KiruthikaJanakiraman)
• fixes #1893 verifyHostname stop working with 1.6.x client after upgra… #1894 (stevehu)

2.1.30 (2023-11-21)

Merged pull requests:

• fixes #2010 switch to ServerConfig.getInstance and ServerConfig.CONFI… #2011 (stevehu)
• fixes #2008 update ServerConfig.getInstance for some handlers #2009 (stevehu)

2.1.29 (2023-11-19)

Merged pull requests:

• fixes #2006 move the oauth-helper to http-client #2007 (stevehu)
• Fix order dependent test in handler test #1996 (SaaiVenkat)
• fixes #2003 update the module registry key to use only the CONFIG_NAM… #2004 (stevehu)
• fixes #1999 support apikey hashing option with light-hash command lin… #2000 (stevehu)
• fixes #1997 Use ServerConfig.getInstance() instead of getJsonObjectCo… #1998 (stevehu)
• fixes #1994 disble the config server response header valildation in t… #1995 (stevehu)
• fixes #1992 add back the getServerConfig to ensure backward compatibi… #1993 (stevehu)
• fixes #1990 refactor module registry to add config name #1991 (stevehu)
• fixes #1988 Add maskConfigProperties to server.yml to control the mod… #1989 (stevehu)
• fixes #1986 add maskConfigProperties to the server config #1987 (stevehu)
• fixes #1981 RequestTransformerInterceptor and ResponseTransformerInte… #1984 (stevehu)
• fixes #1982 Update the security.yml to sync with openapi-security.yml #1983 (stevehu)
• fixes #1978 register the logging.yml to the server info #1979 (stevehu)
• fixes #1976 register info.yml config to the server info #1977 (stevehu)
• fixes #1974 uncomment sign serverUrl, proxyHost and proxyPort in clie… #1975 (stevehu)
• fixes #1968 rule-load config is not registered to the server info #1973 (stevehu)
• fixes #1966 OAuthServer config is not register to the server info #1972 (stevehu)
• fixes #1964 ConfigReloadHandler is not register the module to the ser… #1971 (stevehu)
• fixes #1969 add back deref serverUrl, proxyHost and proxyPort in clie… #1970 (stevehu)
• fixes #1961 check the cacheManager before using jwt and jwk caches #1962 (stevehu)
• fixes #1952 Add delete method for CacheManager interface #1953 (stevehu)

• Change the scope of dependency com.networknt:status to test. [\#1949](https://github.com/networknt/light-4j/pull/1949) ([HappyHacker123](https://github.com/HappyHacker123))
  

• fixes #1946 Implement JWT and JWK caches with cache-manager #1947 (stevehu)
• fixes #1944 Change the JWT cache from JwtClaims to JSON string #1945 (stevehu)
• fixes #1942 split the cache-manager to move caffeine cache to a separ… #1943 (stevehu)
• fixes #1936 verify the light-config-server response headers with jar … #1937 (stevehu)
• fixes #1939 split the CacheExplorerHandler into cache-explorer #1940 (stevehu)
• fixes #150 upgrade the http-client to 1.0.3 #1931 (stevehu)

2.1.28 (2023-10-24)

Merged pull requests:

• [SWE637 FA23]: Fix body handler flaky test caused by invalid cast of string to java list #1920 (sunkarnamritishh)
• Fixes #1908 - CRYPT regex too strict, only allows AES crypto alike strings #1930 (ForwardKeys)
• fixes #1928 make the BuffersUtils MAX_CONTENT_SIZE configurable #1929 (stevehu)
• fixes #1926 make the maxBuffers confiigurable in the RequestIntercept… #1927 (stevehu)
• fixes #1924 adding special characters for the CRYPT matching #1925 (stevehu)
• Issue1918 #1923 (stevehu)
• fixes #1921 pass the request body to the transformer only if it is a … #1922 (stevehu)
• fixes #1914 change external handler to send byte[] for raw stream #1915 (stevehu)
• Lambda Validator Status Codes #1870 (KalevGonvick)
• fixes #1912 Add a DummyDecryptor for testing #1913 (stevehu)
• fixes #1909 environment variables cannot overwrite config values if i… #1911 (stevehu)
• fixes #1906 add OAuthServerGetHandler to allow get method to retrieve… #1907 (stevehu)

2.1.27 (2023-10-04)

Merged pull requests:

• fixes #1902 A defect in JWT audience validation with multiple oauth s… #1903 (stevehu)
• Issue19000 #1901 (stevehu)
• fixes #1895 Update SalesforceHandler to add more trace statements for… #1896 (stevehu)
• fixes #1891 Update the pom.xml and audit test cases to build with JDK 17 #1892 (stevehu)
• fixes #1889 fix a bug in sanitizer config to load multiple toEncode a… #1890 (stevehu)
• fixes #1887 remove powermock dependency from status module for JDK 17 #1888 (stevehu)
• Added condition for http1.1 #1885 (fortunadoralph)
• fixes #1882 add a trace statement for CorrelationHandler to output al… #1883 (stevehu)
• fixes #1880 add trace statements to body interceptor, injection handl… #1881 (stevehu)
• fixes #1875 remove dependency to Undertow in status module #1876 (stevehu)
• fixes #1878 sanitizer handler use contains for header comparison whic… #1879 (stevehu)
• fixes #1873 Add trace log for swt introspection call to output server… #1874 (stevehu)
• fixes #1871 add trace log for HeaderHandler and ProxyHandler to outpu… #1872 (stevehu)

2.1.26 (2023-08-17)

Merged pull requests:

• fixes #1868 remove the serviceId from the MDC of logback #1869 (stevehu)
• Lambda Native Status Codes #1867 (KalevGonvick)
• fixes #1865 Rate limit above threshold hits cannot be easily reported #1866 (stevehu)
• fixes #1863 add responseBody handling in RequestTransformerInterceptor #1864 (stevehu)