Skip to content
This repository was archived by the owner on Feb 12, 2020. It is now read-only.

Bump mockserver-netty from 3.9.1 to 5.9.0 #60

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump mockserver-netty from 3.9.1 to 5.9.0 #60

wants to merge 1 commit into from

Conversation

@dependabot-preview
Copy link

@dependabot-preview dependabot-preview bot commented Feb 3, 2020

Bumps mockserver-netty from 3.9.1 to 5.9.0.

Changelog

Sourced from mockserver-netty's changelog.

[5.9.0] - 2020-02-01

Added

  • added stopAsync method to ClientAndServer to allow stop without waiting
  • log events for UPDATED_EXPECTATION and REMOVED_EXPECTATION
  • ability to update existing expectation by id
  • hot re-loading of expectation initialiser file
  • addition configuration for web socket client event loop size
  • addition configuration for action handler thread pool size
  • exposed request raw bytes to object callbacks (allows forwarded requests body parsing that is inconsistent with Content-Type header)
  • added support to delay socket closure using connection options
  • added support to control trusted certificate authorities (trust store) for proxied & forwarded requests
  • added support for two-way TLS (mTLS), also called client authentication
  • now sends TLS X509 certificate from proxy (i.e. support forward client authentication / mTLS)
  • added ability to dynamically create local unique Certificate Authority (CA) X.509 and Private Key to improve securiy of clients trusting the CA

Changed

  • performance improvements for header and cookie handling
  • improved JSON validation errors by adding link to OpenAPI Specification
  • removed duplicate packages between modules to prepare for java modules
  • caught Jackson configuration exception to improve resilience with other Jackson versions in classpath
  • moved Junit4 to separate module to reduce size of jar-with-dependencies, simplify code and increase build speed
  • enabled case insensitive matching for regex matches
  • improved documentation (i.e. on website)
  • switched from Bouncy Castle to JDK for certificate and private key generation

Fixed

  • fixed error where ClientAndServer does fully wait for client to stop
  • fixed ability to specific a log level of OFF
  • fixed bug with keystore type configuration not being used in all places
  • added file locking and jvm locking for expectation persistence file to avoid file corruption
  • fixed verification incorrectly matching verifier non-empty bodies against empty request bodies
  • stopped response callbacks for proxied requests blocking threads
  • fixed bug that caused JSON bodies in specified expectations as raw JSON to ignore empty arrays and empty strings

Security

  • updated tomcat (used in integration tests) to version without vulnerabilities

[5.8.1] - 2019-12-23

Added

  • changelog
  • added configuration for all CORS headers
  • added support for forward proxy authentication (via configuration)
  • added support for overriding forward responses by class or closure
  • requests sent to MockServerClient can be updated / enhanced i.e. to support proxies
  • dynamic creation of a unique (i.e. local) Certificate Authority X509 Certificate and Private Key instead of using the fixed Certificate Authority X509 Certificate and Private Key in the git repo.
  • configuration to require mTLS (also called client authentication or two-way TLS) for all TLS connections / HTTPS requests to MockServer
  • configuration of trust store and client X.509 used during forwarded and proxied requests to endpoints requiring mTLS
  • extended TLS documentation significantly
... (truncated)
Commits
  • eacf07a [maven-release-plugin] prepare release mockserver-5.9.0
  • b193e30 updated open api specification link prior to release
  • 3114895 added missing integration test for custom certificate with mTLS for forwared ...
  • 8552b06 added additional configuration for TLS certificates for forward proxy mTLS an...
  • a1dd430 extended TLS and liveness probe documentation
  • fc45348 #713 fixed bug that caused JSON bodies in specified expectations as raw JSON ...
  • 9f27af0 #635 added support for GET healthcheck / liveness endpoint
  • 1c251f6 renamed proxy integration test to improve clarity
  • 6f88279 fixed tests after previous commit changes
  • 4a82883 simplified log event creation and added X509 creation log message
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

@dependabot-preview dependabot-preview bot added the dependencies Pull requests that update a dependency file label Feb 3, 2020
@dependabot-preview dependabot-preview bot mentioned this pull request Feb 3, 2020
Closed
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants