Enhancement | REP-7966 - Added option to System Model to allow a header value to be URL encoded before being sent to the origin service.

Enhancement | REP-7954 - Updated dependencies:

New | REP-7786 - Added the HTTP Logging Service.

New | REP-7600 - Added the OpenApi Validator Filter.

Bug Fix | REP-7608 - Fixed bug where Repose was acting like it was sending content when the body was empty and chunked encoding was on.

Bug Fix | REP-7663 - Fixed a file contention issue between Repose processes in the EAR unpacking logic.

Enhancement | REP-7391 - Updated dependencies:

Enhancement | REP-7150 - Added OWASP security dependency checking to the build.

Enhancement | REP-7775 - Move completely to the Jayway JSON Path library and away from the abandoned play-jsonpath.

Enhancement | REP-7539 - Updated Docker containers to use the built packages instead of depending on the package repo.

Bug Fix | REP-7310 - Fixing the IllegalArgumentException thrown by the HERP Filter when incorrectly attempting to decode query parameters.

Bug Fix | REP-7387 - The IP User filter now returns a 400 when the X-Forwarded-For header contains a bad value.

Enhancement | REP-7386 - Added support for the upgrade_account account-level permission in the Valkyrie Authorization Filter.

Enhancement | REP-7519 - Added support for proxies to the HTTP Client Service.

Enhancement | REP-6379 - Updated the recommended SSL Protocol and Cipher lists and clarified this in the in the Container documentation.

Enhancement | REP-7534 - Updated all repository references to the new location.

Enhancement | Breaking Change | REP-6603 - Added support for multiple capture groups to the URL Extractor to Header Filter.

Enhancement | Breaking Change | REP-6663 - Added support for forwarding the response status line reason phrase from the origin service.

Enhancement | Breaking Change | REP-5147 - The Header Normalization filter now evaluates all targets not just the first to match.

Enhancement | Breaking Change | REP-3589 - Rewrote the HTTP Client Service.

Enhancement | Breaking Change | REP-7231 - Switching over to new filter, filter chain, and servlet classes.

Enhancement | Breaking Change | REP-7490 - Cleaning up some log messages in pursuit of more meaningful logging.

Breaking Change | REP-4992 - Removed ambiguous setting for chunked encoding options on HTTP Client/Connection Pool Service.

Breaking Change | REP-7201 - The Rackspace Auth User, SAML Policy Translation, and Attribute Mapping Policy Validation filters were removed and placed in their own bundle.

Breaking Change | REP-5326 - Removed the deprecated via attribute from the Container configuration.

Breaking Change | REP-7338 - The WAR deployment was removed as an option.

Breaking Change | REP-4990 - Removed deprecated cache attributes from the OpenStack Identity v3 Filter.

Breaking Change | REP-7428 - Removed support for URI-based tenant validation in the Keystone v2 Authorization Filter and Keystone v2 Filter.

Breaking Change | REP-4993 - Flush output filter was removed.

Breaking Change | REP-7314 - Removed support for system model clusters.

Breaking Change | REP-7486 - Removed the Response Messaging Service and documented a replacement solution.

Breaking Change | REP-7391 - Removed the soLingerTime attribute from the Container configuration.

REP-6969 - Added support for more expressive filter determination in the System Model using boolean operators.

REP-7135 - Improved the artifact deployment strategy to handle multiple Repose instances running concurrently.

REP-7096 - Updated the ReposeRoutingServlet to be able to actually route requests.

REP-7128 - Updated the performance tests so that they have a more standard layout, and more fully allow integration in the IDE.

REP-7009 - Updated the intrafilter-logging debugging mechanism in preparation for v9.0.0.0 changes.

REP-7004 - Fixed a bug in the Keystone v2 Basic Auth, Keystone v2, Openstack Identity v3, and Valkyrie Authorization filters where headers were potentially processed in a case sensitive way.

REP-6038 - Created the ReposeFilterChain this will eventually replace the PowerFilterChain and allow dynamic determination of the filter chain.

REP-7008 - Created the ReposeServlet which will eventually replace the EmptyServlet and allow routing to be done by the servlet rather than the filter chain.

REP-5083 - Added the new Split Header Filter.

REP-7081 - Added OpenTracing Support to the ReposeFilterChain.

REP-7064 - Fixed the behavior of the Valkyrie Authorization filter where only the last device permission was considered when determining the authorization status of a request. Now all device permissions are considered.

REP-7054 - IP User filter - support to use X-Forwarded-For header for X-PP-Groups

REP-6839, REP-6920 - Updated dependencies:

REP-6858 - Updated Log4j to a version that allows setting of file permissions

REP-6508 - Simplified the deployment directory scheme to reduce disk usage in certain cases.

REP-6977 - Fixed the atom feed service, now it actually works.

REP-6974 - Fixed reverse read option in the atom feed service, now it actually works.

REP-6674 - Minor internal update to increase logging performance.

REP-6765 - Updated the Keystone v2 filter to forward users' domain ID.

REP-6655 - Adding required configuration files to the examples directory. Also, example configurations will now be replaced on upgrade.

REP-6795 - Added the new URI Redaction service which allows for the removal of sensitive data from URI’s before external processing.

REP-6862 - Updated dependencies:

REP-6654 - Added OpenTracing support.

REP-6674 - Switching usages of LazyLogging over to StrictLogging.

REP-6588 - Updated the commitToResponse method of the HttpServletResponseWrapper to avoid writing headers or the body when an error has been sent. This should fix an issue with certain servlet containers where an IllegalStateException is thrown when calling commitToResponse after both writing to the output stream and calling sendError on the wrapped response.

REP-6628 - Updated dependencies:

REP-6550 - Update the Valkyrie Filter to care about quality when selecting a tenant ID for talking to the Valkyrie service.

REP-6604 - Update the Valkyrie Filter to add roles to the X-Map-Roles header when role translation is configured.

REP-6448 - Updated the Simple RBAC filter to support Multi-Tenant.

REP-6710 - Removed the custom String Utilities in favor of the standard Apache Commons Lang version already in use elsewhere.

REP-6447 - Added multi-tenant support in the Keystone v2 and Keystone v2 Authorization filters.

REP-6578 - Updated Tenant Culling filter to utilize the tenant to roles map now being populated by the Keystone v2 filter.

REP-6470 - Updated dependencies:

REP-5616, REP-6436, REP-6274 - Updated dependencies:

REP-5401 - Added support for environment variable substitution in configuration files.

REP-6390 - Internal changes to the Keystone v2 Filter in anticipation of splitting the authorization portion off into it’s own filter.

REP-6400 - Added the new Keystone v2 Authorization Filter which captures the authorization functionality of the Keystone v2 Filter.

REP-6382 - Lots of little versioned docs updates.

REP-6159 - Added the new RegEx Role Based Access Control (RBAC) Filter.

REP-6313 - Updated Keystone v2 Filter to automatically ignore configured roles.

REP-6338 REP-6325 REP-6321 - Multiple documentation improvements.

REP-6294 - Updated dependencies:

REP-6133 - Updated the published Docker images to turn off local logging by default to be more in line with the expectations of a Twelve-Factor App.

REP-6135 - Updated the published Docker images to support running the container using an arbitrarily assigned user ID as is expected by the OpenShift Container Platform.

REP-6179 - Converted more old Wiki Docs over to the new Versioned Docs.

REP-6186 - Updated the automated Release Verification to force the use of Java 8 since some GNU/Linux distributions are already providing Java 9 by default.

REP-6252, REP-6211 - Updated dependencies:

REP-6162 - Updated the Keystone v2 get IDP call to support the field name change from approvedDomains to approvedDomainIds.

REP-6115 - Updated dependencies:

REP-5939 - Added support for, and began publishing, a CentOS-based Docker image.

REP-5766 - Updated Dockerfile to run Repose as the repose user.

REP-5767 - Updated Dockerfiles to simplify usage of JAVA_OPTS.

REP-5985 - Updated the Jackson version from v2.4.0 to v2.8.9 to correct some library mismatch issues.

REP-5315 - Updated Spring-managed bean names in JMX to be consistent with metric beans.

REP-5885 - Fixed the bug where an Error during processing would result in a 200 response from Repose.

REP-6050 - Update Contact Us page information across all the documentation.

REP-5261 - Confirmed the Translation filter will allow 100,000 Entity Expansions and updated the documentation accordingly.

REP-6098 - Updated the SAML Policy Translation filter to allow multiple locations for default values in an effort to support multiple Identity Providers (IDP’s).

REP-6001 - Updated dependencies:

REP-5994 - Brought the Tenant Culling Filter into the main filter bundle.

REP-5727 - Extracted trace ID logging to its own named logger.

REP-5737 - Updated the following filters to correct a typo that would prevent proper configuration schema validation.

REP-5748 - Updated the Phone Home Service to correct a bug that was preventing the message from actually reaching back.

REP-5823 - Updated the Keystone v2 Filter to support multiple Java Regular Expressions for URI tenant extraction.

REP-5853 - Updated the SAML Policy Translation Filter and Attribute Mapping Policy Validation Filter to recover support for XML and JSON (which was removed in 8.6.2.0 (2017-06-13)).

REP-5617 - Updated the the internal HTTP Servlet Response Wrapper to log a WARNING when addHeader, addIntHeader, addDateHeader, or appendHeader is called after the response has been committed.

REP-5521 - Updated the API Checker library from v2.2.1 to v2.3.0.

REP-5940 - Updated the attribute-mapper library from v1.2.0 to v1.3.0.

REP-3502 - Confirmed the correct use of the default ALL HTTP Method in all of the configuration files.

REP-5757 - Updated the SAML Policy Translation Filter to utilize YAML policy files.

REP-5592 - Updated the Attribute Mapping Policy Validation Filter to only work for YAML bodies.

REP-5694 - Updated the Valkyrie Authorization Filter versioned docs to point to the current Valkyrie service documentation.

REP-5520 - Updated the Keystone v2 Filter to provide the token cache key, and to generally handle 401 - Unauthroized responses.

REP-5347 - Updated the Attribute Mapping library from v1.0.2 to v1.1.1.

REP-5595 - Updated the Attribute Mapping Policy Validation Filter to utilize new Attribute Mapping library features for cleaner JSON validation.

REP-5234 - Added the new Remote Datastore service which allows the Distributed Datastore service concept to work in dynamic containerized environments like OpenShift.

REP-5343 - Updated the Keystone v2 Filter to support the new Apply RCN Roles feature of Rackspace Keystone v2 Identity. Converted the old Keystone v2 Filter documentation over to the new versioned docs.

REP-5345 - The Attribute Mapping Policy Validation Filter has been released!

REP-5523 - The Repose Functional Test Framework has been released!

REP-5221 - Updated the API Checker library from v2.1.1 to v2.2.1.

REP-4024 - The Header Normalization Filter updated to include removing headers on the Response.

REP-3901 - The Debian and RPM Repose Valve and WAR artifacts will now create the repose user and group even if the configuration files are already present.

REP-5130 - Rackspace Auth User Filter now gives a more specific and quieter log message when it runs into a non-xml or non-json content type.

REP-4754 - The Rate Limiting Filter now returns a 406 if a user requests limits with an unsupported media type in the Accept header.

REP-4725 - Repose will no longer add a Server header to responses from neither the main endpoint nor the Dist-Datastore endpoint.

REP-5204 - The Metrics Service library has been updated from Yammer v2.2.0 to Dropwizard v3.2.0. The service interface has also been modified to provide a simpler, more flexible experience.

REP-5214 - The Via header configuration has been expanded in a backwards compatible way. However, there were some internal contract changes with the Via and Location header builders, but they should not affect any custom filters.

REP-4465 - Certain enums provided by Repose have been replaced by classes holding the same constant values.

REP-5101 - SAML Policy Translation Filter now allows un-encoded application/xml requests in addition to the previous application/x-www-form-urlencoded requests.

REP-5100 - Rate Limiting Filter was mistakenly getting the full parameter map, and not just the query parameters.

REP-5071 - Repose is now using Attribute Mapping v1.0.2.

REP-4795 REP-4831 - the SAML Policy Translation Filter has been released!

REP-4653 - The Rackspace Auth User Filter updated to read request body of Forgot Password request to get the username and the Highly Efficient Record Processor (HERP) Filter was updated to get X-User-Name from response headers.

REP-4928 - The Keystone v2 Filter will now return a 401 if self-validating tokens are being used and the Identity service responds with a 401.

REP-4841 - A more unique ID will be used for User Access Events (UAE) in support of Cloud Auditing Data Federation (CADF).

REP-4867 - The Valkyrie Authorization Filter now supports multiple Character Encoding schemes.

REP-4954 - Added support for Form Encoded requests (Content-Type: application/x-www-form-urlencoded).

REP-4880 - Internal utility classes JCharSequence and MessageDigester were removed.

REP-4892 - Versioned searching of these docs has been fixed.

REP-4999 - Leading and trailing whitespace in directory values in the container.cfg.xml file are now ignored.

REP-4764 - sendError in the response wrapper will now call sendError on the underlying response when appropriate.

Legacy Release Notes