1.5

1.5

• Added

  • Accept: application/json request header to the OAuth2 token request, in order to make the Github token endpoint respond with a JSON token response (#307)
  • Documentation of logs (#310)
  • signing_ttl and signing_key/signing_key_file to jwt block for use with jwt_sign() function (#309)
  • jwks_url and jwks_ttl to jwt block (#312)
  • token_value attribute in jwt block (#345)
  • headers attribute in jwt_signing_profile block (#329)

• Changed

  • Organized log format fields for uniform access and upstream log (#300)
  • claims in a jwt block are now evaluated per request, so that request properties can be used as required claim values (#314)
  • how Couper handles missing variables during context evaluation (#255)
    • Previously missing elements results in evaluation errors and expressions like set_response_headers failed completely instead of one key/value pair.
      The evaluation has two steps now and will look up variables first and prepares the given expression to return Nil as fallback.

• Fixed

  • Key for storing and reading OpenID configuration (#319)

• Beta

  • beta_scope_claim attribute to jwt block; beta_scope attribute to api and endpoint blocks; error types beta_operation_denied and beta_insufficient_scope (#315)
  • beta_roles_claim and beta_roles_map attributes to jwt block (#325) (#338) (#352)
  • Metrics: Prometheus exporter (#295)

• Dependencies

  • build with go 1.17 (#331)