Skip to content

Releases: membrane/api-gateway

v4.8.5

14 Dec 16:22
@rrayst rrayst
v4.8.5
7ce8155
Compare
Choose a tag to compare
v4.8.5
  • bumped log4j to 2.16.0
Assets 3
Loading

v4.8.4

13 Dec 21:37
@rrayst rrayst
v4.8.4
4dd19f4
Compare
Choose a tag to compare
v4.8.4
  • bumped log4j to 2.15.0 (Please note that so far Membrane Service Proxy used log4j 1.2.17, which was NOT affected by CVE-2021-44228 aka log4shell, and similar attack vectors required very special (let me say: unusual) log4j configurations - or a log4j.properties which could be controlled by the attacker. The bump of log4j is primarily provided to satisfy security guidelines requiring log4j >= 2.15.0.)
  • updated environment libraries for automated tests
  • improved experimental Kubernetes integration
Assets 3
Loading

v4.8.3

20 Oct 14:31
@rrayst rrayst
v4.8.3
366459a
Compare
Choose a tag to compare
v4.8.3
  • dependency updates
  • added <jwtAuth /> interceptor which can verify JWTs
  • added <template/> interceptor to fill a body based on a template (using groovy.text.XmlTemplateEngine for .xml templates or groovy.text.StreamingTemplateEngine elsewise)
  • added <xpathExtractor/> <jsonPointerExtractor/> interceptors to extract information from bodies (see documentation or examples for further info)
  • added <xml2Json/> <json2Xml/> interceptors for format conversions (see documentation or examples for further info)
  • started Kubernetes integration (work-in-progress!)
  • fixed #341 "Stray Thread hogging CPU after penetration testing with qualys"
  • allow specifying a <*UserDataProvider> inside of <basicAuthentication>
  • fixed viewing inflight exchanges (some body sizes are still incorrect)
  • added exchange time metrics to <prometheus/> interceptor
  • improved <elasticSearchExchangeStore/> to enable reading back exchanges (to support the <adminConsole/>)
Assets 3
Loading

v4.8.2

20 Oct 13:53
@rrayst rrayst
v4.8.2
6c4b0ed
Compare
Choose a tag to compare
v4.8.2
  • fixed resolution of schema-based resource pointers from within a WAR
Assets 2
Loading

v4.8.1

28 Jun 10:01
@rrayst rrayst
v4.8.1
9ceeb8b
Compare
Choose a tag to compare
v4.8.1
  • support combining <internalProxy name="foo"> and <soapProxy wsdl="service:foo/bar?wsdl">
Assets 3
Loading

v4.8.0

22 Apr 08:52
@xorpherion xorpherion
v4.8.0
5ea9e67
Compare
Choose a tag to compare
v4.8.0
  • Improved content streaming
  • OAuth2 improvements
  • shutdown interceptor
  • in memory session management implementation for new session manager implementation
  • improve new session manager to enable TTL, secure attr. and session cookies
  • internal proxies
  • further bugfixes
Assets 3
Loading

v4.7.3

01 Oct 14:33
@rrayst rrayst
v4.7.3
a494e21
Compare
Choose a tag to compare
v4.7.3
  • security fix for <webServer /> (#353)
  • <oauth2Resource2/>: support authorization by providing a bearer token
  • fixed swagger3 support (#348)
Assets 3
Loading

v4.7.2

18 Jun 19:49
@rrayst rrayst
v4.7.2
139bc38
Compare
Choose a tag to compare
v4.7.2
  • Upgraded dependencies
  • Bugfixes
Assets 3
Loading

v4.7.1

23 Sep 07:13
@xorpherion xorpherion
v4.7.1
b8e9627
Compare
Choose a tag to compare
v4.7.1
  • Upgraded dependencies
  • Bugfixes
Assets 3
Loading

v4.7.0

06 Sep 15:08
@xorpherion xorpherion
v4.7.0
929971d
Compare
Choose a tag to compare
v4.7.0
  • NTLM interceptor release
Assets 3
Loading