light-4j

1.6.6 (2019-07-31)

Merged pull requests:

• fixes #596 useJson default to false to ensure backward compatibility #597 (stevehu)
• API-189: Return Json format result from HealthGetHandler #589 (jsu216)
• fixes #586 FormData.FormValue cannot be handled by Jackson JSON parser #587 (stevehu)
• Merge to 1.6.x/#547 deprecate apis #562 (BalloonWen)
• fixes #583 Success result is returned even light-oauth2 returns an er… #585 (stevehu)

Upgrade Guidelines:

This is a release with some defect fixes and enhancements. It is backward compatible with 1.6.5 release.

For all the changes for the entire platform, please refer to https://trello.com/b/189msq9S/release-schedule

1.6.5 (2019-07-12)

Merged pull requests:

• fixes #578 to use a hashset to track used ports #582 (stevehu)
• fixes #579 when all instances are down and restarted, the client disc… #580 (stevehu)
• randomly pick up port number for dynamic registry #578 (stevehu)
• Fix/#573 consul registry notify #577 (BalloonWen)
• Fix/#523 consul http https connection #570 (BalloonWen)
• Fix/npe service to url #576 (jiachen1120)
• Fixes merge to 1.6.x #564 (BalloonWen)
• fixes #539 sync jdk11 branch to 1.6.x to ensure code similarity #540 (stevehu)

Upgrade Guidelines:

This is a release with some defect fixes. It is backward compatible with 1.6.4 release.

• Due to security reason, we have disabled the default server.keystore, server.truststore, client.keystore, and client.truststore. You need to manually include these files into the project src/main/resources/config folder.

For all the changes for the entire platform, please refer to https://trello.com/b/189msq9S/release-schedule

2.0.2 (2019-07-10)

Merged pull requests:

• add Prometheus hotspot monitor #567 (chenyan71)
• 514 sanitizer new config properties #563 (jefperito)
• Add OpenTracing support for observability #549 (stevehu)
• reverted some values of client.yml for testing #558 (BalloonWen)
• fixes #559 update default consulUrl to http instead of https #560 (stevehu)
• fixes #556 remove dependency on secret.yml from server and email modules #557 (stevehu)
• fixes #554 move the consul token to the consul.yml from the secret.yml #555 (stevehu)
• fixes #552 get client_secret from client.yml instead of secret.yml #553 (stevehu)
• fixes #550 loopback address is used when register to Consul from a st… #551 (stevehu)
• Fix/#519 keystore fall back #525 (jiachen1120)
• Feat/#502 consul integrate test #503 (jiachen1120)
• fixes #539 sync jdk11 branch to 1.6.x to ensure code similarity #540 (stevehu)

Upgrade Guidelines:

This is a release with some new features and defect fixes. It is backward compatible with 2.0.1 release.

• Due to security reason, we have disabled the default server.keystore, server.truststore, client.keystore, and client.truststore. You need to manually include these files into the project src/main/resources/config folder.

For all the changes for the entire platform, please refer to https://trello.com/b/189msq9S/release-schedule

2.0.1 (2019-06-13)

Merged pull requests:

• fixes #532 rename logging to logger-config and clean up the dependencies #533 (stevehu)
• Fixes #530 - Add service name to Server configuration #531 (ddobrin)
• fixes #528 The config module blindly convert string 0000 to 0 for env… #529 (stevehu)
• Feat/#506 add debug logging #507 (jiachen1120)
• removed io.undertow.client.http package due to classes in this package were already moved to com.networknt.client package #527 (BalloonWen)
• Add logging module for light 4j RFC#29 #453 (sreenicibc)
• bug when using consul with http1.1 #524 (BalloonWen)
• Feat/#521 enbale http2 consul config #522 (jiachen1120)
• Add JsonWebKey support in JWT key verification #511 (jsu216)
• Fix/#512 config overwritten #516 (jiachen1120)
• fixes #513 disable sanitizer handler by default #515 (stevehu)
• Fix/#504 read keystore from system property #505 (jiachen1120)
• fixes #508 associate the correlationId with the traceabilityId when c… #509 (stevehu)
• Feat/default decryptor #501 (jiachen1120)
• fixes #499 ConsulRegistry discoverService returns http always #500 (stevehu)
• fixes #497 implement service discovery in OauthHelper #498 (stevehu)
• fix path separator - #483 #484 (dz-1)
• fixes #495 support multiple key servers for token and sign #496 (stevehu)
• fixes #493 update timeoutCount to AtomicInteger in circuit breaker #494 (stevehu)
• Fix/#491 direct registry with env #492 (jiachen1120)
• #240 timeout feature #241 circuit breaker #485 (jefperito)
• Fix/#482 consul service discovery caching #486 (BalloonWen)
• fixes #489 need to rollback the lazy init of config in Server #490 (stevehu)
• fixes #487 resolve test case failure in the server module #488 (stevehu)
• fixes #474 register light-hybrid-4j services in Server module #475 (stevehu)
• fixes issue #480 #481 (chenyan71)
• fixes #478 service getting unregistered from consul after a while #479 (stevehu)
• Fixed the scope caching error #477 (jiachen1120)
• fixes #468 resolve backward compatible issue for server.config #469 (stevehu)
• fixes #466 Incorrect status code #467 (stevehu)
• fixes #464 update license and copyright headers #465 (stevehu)
• Pluggable config server feature RFC#0019 #451 (santoshaherkar)
• Added new server option ALLOW_UNESCAPED_CHARACTERS_IN_URL #462 (jiachen1120)
• populate path params - #light-rest-4j/issues/67 #463 (dz-1)
• fixes #460 upgrade maven plugins to the latest versions #461 (stevehu)
• fixes #456 resolve warnnings from errorprone #457 (stevehu)
• fixes #454 add test cases for AESDecryptor and DecryptConstructor #455 (stevehu)
• fixed caching issue when initlizing multiple token request havenot been tested #452 (BalloonWen)
• Feat/#351 server options configurable #432 (jiachen1120)
• Feat/#427 config decryption #429 (jiachen1120)
• Feat/light 4j/#391 support caching multiple Jwts #410 (BalloonWen)
• Cache unparsed request body (configurable/ for application/json request) #447 (jiachen1120)
• fixes #448 remove broken import statements in Http2Client #449 (stevehu)
• move classes in undertow package to networknet packages - #433 #435 (dz-1)
• Integrate decryption module in all retrievals of config - #413 #414 (dz-1)
• fixes #445 update client module to access signing service #446 (stevehu)
• fixes #443 Add a new constant in http header for service_url #444 (stevehu)
• fixes #441 detect copy/paste code with PMD 6.12.0 #442 (stevehu)
• fixes #438 add NOTICE.txt for all third party dependencies and licenses #439 (stevehu)
• fixes #434 update copyright and license in source code #436 (stevehu)
• fixes #430 add status code to status.yml for light-codegen #431 (stevehu)
• just improvements #419 (jefperito)

1.6.4 (2019-06-10)

Merged pull requests:

• fixes #532 rename logging to logger-config and clean up the dependencies #533 (stevehu)
• Fixes #530 - Add service name to Server configuration #531 (ddobrin)
• fixes #528 The config module blindly convert string 0000 to 0 for env… #529 (stevehu)
• Feat/#506 add debug logging #507 (jiachen1120)
• removed io.undertow.client.http package due to classes in this package were already moved to com.networknt.client package #527 (BalloonWen)
• Add logging module for light 4j RFC#29 #453 (sreenicibc)
• bug when using consul with http1.1 #524 (BalloonWen)
• Feat/#521 enbale http2 consul config #522 (jiachen1120)

Upgrade Guidelines:

This is a release with some new features and defect fixes. It is backward compatible with 1.6.2 release.

• The json-schema-validator has been upgraded to the version 1.0.14
• A new flag enableHttp2 is added to the consul.yml and the default value is false. It was previously hard-coded as true but someone reported that Consul 1.44 HTTP/S/2 are not working properly.

For all the changes for the entire platform, please refer to https://trello.com/b/189msq9S/release-schedule

1.6.2 (2019-05-17)

Merged pull requests:

• Add JsonWebKey support in JWT key verification #511 (jsu216)
• Fix/#512 config overwritten #516 (jiachen1120)
• fixes #513 disable sanitizer handler by default #515 (stevehu)
• Fix/#504 read keystore from system property #505 (jiachen1120)
• fixes #508 associate the correlationId with the traceabilityId when c… #509 (stevehu)

Upgrade Guidelines:

This is a release with some new features and defect fixes. It is backward compatible with 1.6.1 release.

• The json-schema-validator has been upgraded to the version 1.0.8
• The XSS sanitizer handler is disabled by default as most users won't need it.

For all the changes for the entire platform, please refer to https://trello.com/b/189msq9S/release-schedule

1.6.1 (2019-05-03)

Merged pull requests:

• Feat/default decryptor #501 (jiachen1120)
• fixes #499 ConsulRegistry discoverService returns http always #500 (stevehu)
• fixes #497 implement service discovery in OauthHelper #498 (stevehu)
• fix path separator - #483 #484 (dz-1)
• fixes #495 support multiple key servers for token and sign #496 (stevehu)
• fixes #493 update timeoutCount to AtomicInteger in circuit breaker #494 (stevehu)
• Fix/#491 direct registry with env #492 (jiachen1120)
• #240 timeout feature #241 circuit breaker #485 (jefperito)
• Fix/#482 consul service discovery caching #486 (BalloonWen)
• fixes #489 need to rollback the lazy init of config in Server #490 (stevehu)
• fixes #487 resolve test case failure in the server module #488 (stevehu)
• fixes #474 register light-hybrid-4j services in Server module #475 (stevehu)
• fixes issue #480 #481 (chenyan71)
• fixes #478 service getting unregistered from consul after a while #479 (stevehu)
• Fixed the scope caching error #477 (jiachen1120)
• fixes #468 resolve backward compatible issue for server.config #469 (stevehu)
• fixes #466 Incorrect status code #467 (stevehu)
• fixes #464 update license and copyright headers #465 (stevehu)
• Pluggable config server feature RFC#0019 #451 (santoshaherkar)
• Added new server option ALLOW_UNESCAPED_CHARACTERS_IN_URL #462 (jiachen1120)
• populate path params - #light-rest-4j/issues/67 #463 (dz-1)
• fixes #460 upgrade maven plugins to the latest versions #461 (stevehu)
• fixes #456 resolve warnnings from errorprone #457 (stevehu)

Upgrade Guidelines:

This is a big release with a lot of new features and defect fixes. It is backward compatible with 1.6.0 release.

• The json-schema-validator has been upgraded to the version 1.0.7
• The default decryptor is set as AESDecryptor to ensure that it is backward compatible to the 1.5.x

For all the changes for the entire platform, please refer to https://trello.com/b/189msq9S/release-schedule

1.5.34 (2019-04-07)

Merged pull requests:

• fixes #441 detect copy/paste code with PMD 6.12.0 #442 (stevehu)
• fixes #438 add NOTICE.txt for all third party dependencies and licenses #439 (stevehu)
• fixes #434 update copyright and license in source code #436 (stevehu)

Upgrade Guidelines:

This release has no code change but only the license and copyright updates. It is required by some of our customers and it is up to you to upgrade to this version or not based on your company open source policy.

For all changes in this release, please visit Trello

1.6.0 (2019-04-05)

Merged pull requests:

• fixes #454 add test cases for AESDecryptor and DecryptConstructor #455 (stevehu)
• fixed caching issue when initlizing multiple token request havenot been tested #452 (BalloonWen)
• Feat/#351 server options configurable #432 (jiachen1120)
• Feat/#427 config decryption #429 (jiachen1120)
• Feat/light 4j/#391 support caching multiple Jwts #410 (BalloonWen)
• Cache unparsed request body (configurable/ for application/json request) #447 (jiachen1120)
• fixes #448 remove broken import statements in Http2Client #449 (stevehu)
• move classes in undertow package to networknet packages - #433 #435 (dz-1)
• Integrate decryption module in all retrievals of config - #413 #414 (dz-1)
• fixes #445 update client module to access signing service #446 (stevehu)
• fixes #443 Add a new constant in http header for service_url #444 (stevehu)
• fixes #441 detect copy/paste code with PMD 6.12.0 #442 (stevehu)
• fixes #438 add NOTICE.txt for all third party dependencies and licenses #439 (stevehu)
• fixes #434 update copyright and license in source code #436 (stevehu)
• fixes #430 add status code to status.yml for light-codegen #431 (stevehu)
• just improvements #419 (jefperito)
• Feat/light 4j/#420 fixed TTL check #428 (BalloonWen)

Upgrade Guidelines:

• This release is backward compatible with 1.5.x in the core and you only need to update the version in pom.xml to upgrade if you are not using the config file decryptor.
• The json-schema-validator has been upgraded to the version 1.0.5
• The API for the decryptor has been changed to make it transparent for users.

Upon the requests from our users, we have started the 1.6.x branch for new features. The 1.5.x branch will only include bug fixes to ensure stability.

As you can see, we are adding new features daily, so we have divided the platform into the core and new features. Within the 1.6.x branch, we will make sure that the core is backward compatible. For new features introduced, we sometimes correct the mistakes and change the API. Since not a lot of people are using these features, the impact will be limited.

In this release, we have corrected a mistake we made for the config file decryption. Previously, we have provided an API for users to call and the interface is in the utility module with pluggable implementation in service.yml (DecryptUtil). Now, we have implemented it in the config module so that the decryption is done transparently for users. Thus in upgrading to this version you can remove any Decryptor references in service.yml as well as your invocations of DecryptUtil if using the Config module. If you were using the default AESDecryptor implementation, you need to add the decryptorClass in config.yml as follows:

decryptorClass:
  com.networknt.decrypt.AESDecryptor

If you have your customized implementation, you need to put your implementation class name in the config.yml file. Please contact us if you have questions.

For more info, please review the related issues and pull requests.

https://github.com/networknt/light-4j/pull/414
https://github.com/networknt/light-4j/pull/429

The document for the config module has been updated to reflect the change.

https://doc.networknt.com/concern/config/

For all changes in this release, please visit Trello

1.5.33 (2019-03-25)

Fixed bugs:

• Feat/light 4j/#420 fixed TTL check #428 (BalloonWen)

2.0.0 (2019-03-24)

Sync changes from the master branch. For details, please see the commit log

1.5.32 (2019-03-19)

Full Changelog

Implemented enhancements:

• original status.yml info in light-4j is overwritten by customer, which will lose errors for light-4j #389

Fixed bugs:

• Dynamic Port binding not working as expected in light4j #415
• Error happen if there is not value in values.yml for services.yml injection #407

Closed issues:

• add last handler to Handler class for handler chain inject in the beginning #421
• setup Travis cron to run integration test daily #405

Merged pull requests:

• Fix/#425 status merge #426 (jiachen1120)
• accept defaultGroupKey in Http2Client.SSL - #423 #424 (dz-1)
• fixes #421 add last handler to Handler class for handler chain inject… #422 (stevehu)
• Fix/#415 dynamic port binding #417 (jiachen1120)

Upgrade Guidelines:

• This release is backward compatible and you only need to update the version in pom.xml to upgrade.
• The json-schema-validator has been upgraded to the version 1.0.4

For all changes in this release, please visit Trello

1.5.31 (2019-03-02)

Full Changelog

Fixed bugs:

• Maven build error on eclipse #406

Closed issues:

• SSL error - client module - release 1.5.29 #398
• Backwards incompatible changes: client module - release 1.5.29 #397

Merged pull requests:

• Fixing binding to dynamic ports #416 (NicholasAzar)
• fix/#407 the value in values.yml can be set to empty #409 (jiachen1120)
• updating iteration of FormData item #408 (jefperito)
• add code coverage badge #404 (lanphan)
• Feat/#389 status merge #403 (jiachen1120)
• add missing license info, remove unused logback setting #402 (lanphan)
• body: update and add more unittest #401 (lanphan)

Upgrade Guidelines:

• This is a release to resolve a dynamic port allocation defect found in 1.5.30 for Kubernetes deployment.

For all changes in this release, please visit Trello

1.5.30 (2019-02-21)

Full Changelog

Implemented enhancements:

• support a list of config directories in Config module #383
• support absolute path for the config file in Config module #381
• Allow exclusion list of files which should not check/allow for environment variable setting #368
• Environment variable references in the light-4j yaml config files #321
• Read configurations from arbitrary directories #309

Closed issues:

• Config Module - addressing gaps #371
• Validation of server identify in a CaaS environment #358
• cluster.ServiceToUrl hang sometime #303

Merged pull requests:

• update basic-auth and some minor update in audit, balance #400 (lanphan)
• Fixing backwards incompatible interface change in OauthHelper getToken and getTokenFromSaml #399 (NicholasAzar)

Upgrade Guidelines:

• This is a release to resolve the incompatible issue found in the release 1.5.29. Just update the versions in your pom.xml should work.
• If you are using the client module to access a service, please use localhost instead of 127.0.0.1 in your url. For details, please refer to this issue
• A lot of enhancements around the Config module to support environment variables and externalized values.yml. For more details, please visit Confg
• For people that skipped some of the releases, we have upgraded to Undertow 2.0.16.Final.
• Upgrade json-schema-validator to 1.0.3 if you are using light-rest-4j.

        <version.json-schema-validator>1.0.3</version.json-schema-validator>

• If you are using JsonPath for the Mask module, then you should upgrade to 2.4.0

For all changes in this release, please visit Trello

1.5.29 (2019-02-16)

Full Changelog

Implemented enhancements:

• support flexible config directory in Config module #382
• Correlation module: add ability to control the generation of the CorrelationID #370
• Feat/#41 exception handling #380 (BalloonWen)

Closed issues:

• Add a default config.yml to the light-4j/Config module #394
• output the stacktrace when server registration fails #384
• upgrade jsonpath to 2.4.0 and exclude json-smart #378
• TechEmpower benchmark #369
• Standardize repo line endings on LF #365
• Add a new constant string in http header for service url #362
• If handler path not implemented/wrong path , it will throw the 404 error code instead of 400. #360
• upgrade to undertow 2.0.16.Final #356
• Config module build failing on windows environment #354
• Upgrade jackson version to 2.9.8 #347
• jdk11 release to maven central failed #344
• Performance Optimizations for Max Troughput #342
• GraalVM Native Image #341
• codegen-cli generated code does not compile - openapi-3 #330
• [question] - grpc adoption within light4j #161
• Warnings with Java 9 #103

Merged pull requests:

• fix typo, simplify RoundRobinLoadBalanceTest, add license info #396 (lanphan)
• Fixes #394 add a default config.yml file #395 (ddobrin)
• detail unit test to check content of audit log #390 (lanphan)
• Feat/#383 list config directories #388 (jiachen1120)
• Feat/#381 support absolute path for config file #387 (jiachen1120)
• Feat/#309 read config from arbitrary directories #386 (jiachen1120)
• fixes #384 output the stacktrace when server registration fails #385 (stevehu)
• fixes #378 upgrade jsonpath to 2.4.0 and exclude json-smart #379 (stevehu)
• Feat/#41 exception handling #377 (BalloonWen)
• Fix/config gaps #375 (jiachen1120)
• Fix/error message when fail registration #374 (jiachen1120)
• Allowed exclusion list of files which should not check/allow values injection #373 (jiachen1120)
• Fixing mutual tls on the server side #372 (NicholasAzar)
• Fix/line endings LF #366 (NicholasAzar)
• -added an error message in status.yml for validating response content #364 (BalloonWen)
• Fixes #360 If handler path not implemented/wrong path , it will throw the 404 error code instead of 400. #361 (sreenicibc)
• Validation of server identify in a CaaS environment #358 #359 (dz-1)
• fixes #354 #355 (chenyan71)

Upgrade Guidelines:

• One customer found an incompatible issue in the client module to get JWT token from OAuth 2.0 token service. Please skip this release and use 1.5.30.

1.5.28 (2019-01-13)

Full Changelog

Fixed bugs:

• Config module failing if config file has a key which is not a String #353

1.5.27 (2019-01-12)

Full Changelog

Closed issues:

• resolve the syntax error in java doc for dump #352
• remove the check exception ConfigException #350

Merged pull requests:

• #321 Enhanced config injection to support injecting List and Map #349 (jiachen1120)
• refactored dump handler, add mask feature to it #345 (BalloonWen)

JDK 11 release for feedbacks.

1.5.25 (2018-12-24)

Full Changelog

Closed issues:

• give wait a default value for backward compatibility #339

1.5.24 (2018-12-15)

Full Changelog

Implemented enhancements:

• Attachment Handler #326
• refactor the dump handler to support response body logging #23

Closed issues:

• ignore the random number test in balance #338
• add a new services method to the Cluster #336
• make round robin load balance start with random number #335
• A bug that shows Unknown protocol light in service discovery #334
• In consul client the hard coded wait value changed through configuration. #332
• add a new method to get local IP for interactive queries #331

Merged pull requests:

• Issue #332, (API 6) in consul client the wait hard coded value changed through configuration #333 (sreenicibc)
• #326 created a form handler #329 (jiachen1120)
• Refactor the dump handler to support response body logging #328 (BalloonWen)

Upgrade Guidelines:

• This is a release to fix defects and add features so it is backward compatible in the codebase. Just update the version in your pom.xml should work.
• If you are using consul.yml to connect to a Consul cluster for service discovery, you need to add one more config into the consul.yml

# endpoints that support blocking will also honor a wait parameter specifying a maximum duration for the blocking request.
# This is limited to 10 minutes. This value can be specified in the form of "10s" or "5m" (i.e., 10 seconds or 5 minutes,
# respectively).
wait: 600s

• Upgrade json-schema-validator to 0.1.25 if you are using light-rest-4j.

        <version.json-schema-validator>0.1.25</version.json-schema-validator>