networknt
diff --git a/‎CHANGELOG.md
+21 b/‎CHANGELOG.md
+21
diff --git a/‎api-key/pom.xml
+1-1 b/‎api-key/pom.xml
+1-1
diff --git a/‎apikey-config/pom.xml
+1-1 b/‎apikey-config/pom.xml
+1-1
diff --git a/‎apikey-config/src/main/java/com/networknt/apikey/ApiKeyConfig.java
+17-3 b/‎apikey-config/src/main/java/com/networknt/apikey/ApiKeyConfig.java
+17-3
diff --git a/‎apikey-config/src/main/resources/config/apikey.json renamed to ‎apikey-config/src/main/resources/config/apikey-schema.json
+3-1 b/‎apikey-config/src/main/resources/config/apikey.json renamed to ‎apikey-config/src/main/resources/config/apikey-schema.json
+3-1
diff --git a/‎apikey-config/src/main/resources/config/apikey.yaml
+12-6 b/‎apikey-config/src/main/resources/config/apikey.yaml
+12-6
diff --git a/‎audit-config/pom.xml
+1-1 b/‎audit-config/pom.xml
+1-1
diff --git a/‎audit-config/src/main/java/com/networknt/audit/AuditConfig.java
+66-43 b/‎audit-config/src/main/java/com/networknt/audit/AuditConfig.java
+66-43
diff --git a/‎audit-config/src/main/resources/config/audit.json renamed to ‎audit-config/src/main/resources/config/audit-schema.json
+25-25 b/‎audit-config/src/main/resources/config/audit.json renamed to ‎audit-config/src/main/resources/config/audit-schema.json
+25-25
@@ -1,5 +1,26 @@
 # Change Log
 
+## [2.2.1](https://github.com/networknt/light-4j/tree/2.2.1) (2025-03-22)
+
+
+**Merged pull requests:**
+
+
+- JSON Schema & YAML Config Generation Enhancement [\#2482](https://github.com/networknt/light-4j/pull/2482) ([KalevGonvick](https://github.com/KalevGonvick))
+- fixes \#2478 update dependency of mysql [\#2479](https://github.com/networknt/light-4j/pull/2479) ([stevehu](https://github.com/stevehu))
+- fixes \#2476 update email dependency from javax to jakarta [\#2477](https://github.com/networknt/light-4j/pull/2477) ([stevehu](https://github.com/stevehu))
+- Sync [\#2475](https://github.com/networknt/light-4j/pull/2475) ([stevehu](https://github.com/stevehu))
+- 2473 remaining config conversion [\#2474](https://github.com/networknt/light-4j/pull/2474) ([KalevGonvick](https://github.com/KalevGonvick))
+- 2469 client config module refactor [\#2472](https://github.com/networknt/light-4j/pull/2472) ([KalevGonvick](https://github.com/KalevGonvick))
+- 2467 multi module schema generation [\#2468](https://github.com/networknt/light-4j/pull/2468) ([KalevGonvick](https://github.com/KalevGonvick))
+- 2463 add configuration schema generation to basic config [\#2466](https://github.com/networknt/light-4j/pull/2466) ([KalevGonvick](https://github.com/KalevGonvick))
+- 2459 mirroredtypeexceptions occur when using config generator annotations [\#2465](https://github.com/networknt/light-4j/pull/2465) ([stevehu](https://github.com/stevehu))
+- 2459 mirroredtypeexceptions occur when using config generator annotations [\#2461](https://github.com/networknt/light-4j/pull/2461) ([stevehu](https://github.com/stevehu))
+- MirroredTypeException Fix [\#2460](https://github.com/networknt/light-4j/pull/2460) ([KalevGonvick](https://github.com/KalevGonvick))
+- 2452 create config file generator so configurations are always in sync with the pojo [\#2458](https://github.com/networknt/light-4j/pull/2458) ([stevehu](https://github.com/stevehu))
+- Added metrics attachment for handler execution. [\#2454](https://github.com/networknt/light-4j/pull/2454) ([KalevGonvick](https://github.com/KalevGonvick))
+
+
 ## [2.2.0](https://github.com/networknt/light-4j/tree/2.2.0) (2025-02-12)
 
 
 
@@ -21,7 +21,7 @@
     <parent>
         <groupId>com.networknt</groupId>
         <artifactId>light-4j</artifactId>
-        <version>2.2.1-SNAPSHOT</version>
+        <version>2.2.1</version>
         <relativePath>../pom.xml</relativePath>
     </parent>
 
 
@@ -21,7 +21,7 @@
     <parent>
         <groupId>com.networknt</groupId>
         <artifactId>light-4j</artifactId>
-        <version>2.2.1-SNAPSHOT</version>
+        <version>2.2.1</version>
         <relativePath>../pom.xml</relativePath>
     </parent>
 
 
@@ -14,7 +14,15 @@
 import java.util.List;
 import java.util.Map;
 
-@ConfigSchema(configKey = "apikey", configName = "apikey", outputFormats = { OutputFormat.JSON_SCHEMA, OutputFormat.YAML })
+@ConfigSchema(
+        configKey = "apikey",
+        configName = "apikey",
+        configDescription = "ApiKey Authentication Security Configuration for light-4j",
+        outputFormats = {
+                OutputFormat.JSON_SCHEMA,
+                OutputFormat.YAML
+        }
+)
 public class ApiKeyConfig {
     private static final Logger logger = LoggerFactory.getLogger(ApiKeyConfig.class);
 
@@ -30,7 +38,8 @@ public class ApiKeyConfig {
             configFieldName = ENABLED,
             externalizedKeyName = ENABLED,
             externalized = true,
-            description = "Enable or disable the api key filter."
+            defaultValue = true,
+            description = "Enable ApiKey Authentication Handler, default is false."
     )
     boolean enabled;
 
@@ -49,7 +58,12 @@ public class ApiKeyConfig {
             configFieldName = PATH_PREFIX_AUTHS,
             externalizedKeyName = PATH_PREFIX_AUTHS,
             externalized = true,
-            items = ApiKey.class
+            items = ApiKey.class,
+            description = "path prefix to the api key mapping. It is a list of map between the path prefix and the api key\n" +
+                    "for apikey authentication. In the handler, it loops through the list and find the matching path\n" +
+                    "prefix. Once found, it will check if the apikey is equal to allow the access or return an error.\n" +
+                    "The map object has three properties: pathPrefix, headerName and apiKey. Take a look at the test\n" +
+                    "resources/config folder for configuration examples.\n"
     )
     List<ApiKey> pathPrefixAuths;
 
 
@@ -5,14 +5,16 @@
   "properties" : {
     "enabled" : {
       "type" : "boolean",
-      "description" : "Enable or disable the api key filter."
+      "description" : "Enable ApiKey Authentication Handler, default is false.",
+      "default" : true
     },
     "hashEnabled" : {
       "type" : "boolean",
       "description" : "If API key hash is enabled. The API key will be hashed with PBKDF2WithHmacSHA1 before it is\nstored in the config file. It is more secure than put the encrypted key into the config file.\nThe default value is false. If you want to enable it, you need to use the following repo\nhttps://github.com/networknt/light-hash command line tool to hash the clear text key."
     },
     "pathPrefixAuths" : {
       "type" : "array",
+      "description" : "path prefix to the api key mapping. It is a list of map between the path prefix and the api key\nfor apikey authentication. In the handler, it loops through the list and find the matching path\nprefix. Once found, it will check if the apikey is equal to allow the access or return an error.\nThe map object has three properties: pathPrefix, headerName and apiKey. Take a look at the test\nresources/config folder for configuration examples.\n",
       "items" : {
         "type" : "object",
         "properties" : {
 
@@ -1,8 +1,14 @@
-#Enable or disable the api key filter.
-enabled: ${apikey.enabled:false}
-#If API key hash is enabled. The API key will be hashed with PBKDF2WithHmacSHA1 before it is
-#stored in the config file. It is more secure than put the encrypted key into the config file.
-#The default value is false. If you want to enable it, you need to use the following repo
-#https://github.com/networknt/light-hash command line tool to hash the clear text key.
+# ApiKey Authentication Security Configuration for light-4j
+# Enable ApiKey Authentication Handler, default is false.
+enabled: ${apikey.enabled:true}
+# If API key hash is enabled. The API key will be hashed with PBKDF2WithHmacSHA1 before it is
+# stored in the config file. It is more secure than put the encrypted key into the config file.
+# The default value is false. If you want to enable it, you need to use the following repo
+# https://github.com/networknt/light-hash command line tool to hash the clear text key.
 hashEnabled: ${apikey.hashEnabled:false}
+# path prefix to the api key mapping. It is a list of map between the path prefix and the api key
+# for apikey authentication. In the handler, it loops through the list and find the matching path
+# prefix. Once found, it will check if the apikey is equal to allow the access or return an error.
+# The map object has three properties: pathPrefix, headerName and apiKey. Take a look at the test
+# resources/config folder for configuration examples.
 pathPrefixAuths: ${apikey.pathPrefixAuths:}
@@ -21,7 +21,7 @@
     <parent>
         <groupId>com.networknt</groupId>
         <artifactId>light-4j</artifactId>
-        <version>2.2.1-SNAPSHOT</version>
+        <version>2.2.1</version>
         <relativePath>../pom.xml</relativePath>
     </parent>
 
 
@@ -33,7 +33,13 @@
  *
  * @author Steve Hu
  */
-@ConfigSchema(configKey = "audit", configName = "audit", outputFormats = {OutputFormat.JSON_SCHEMA, OutputFormat.YAML})
+@ConfigSchema(
+        configKey = "audit",
+        configName = "audit",
+        configDescription = "AuditHandler will pick some important fields from headers and tokens and logs into an audit appender\n" +
+                "defined in the logback.xml configuration file.",
+        outputFormats = {OutputFormat.JSON_SCHEMA, OutputFormat.YAML}
+)
 public class AuditConfig {
     private static final Logger logger = LoggerFactory.getLogger(AuditConfig.class);
 
@@ -55,31 +61,23 @@ public class AuditConfig {
     private Map<String, Object> mappedConfig;
     public static final String CONFIG_NAME = "audit";
 
-    @ArrayField(
-            configFieldName = HEADERS,
-            externalizedKeyName = HEADERS,
-            description = "Output header elements. You can add more if you want. If multiple values, you can use a comma separated\n" +
-                    "string as default value in the template and values.yml. You can also use a list of strings in YAML format.",
+    @BooleanField(
+            configFieldName = ENABLED,
+            externalizedKeyName = ENABLED,
+            description = "Enable Audit Logging",
             externalized = true,
-            items = String.class,
-            defaultValue = "[\"X-Correlation-Id\", \"X-Traceability-Id\",\"caller_id\"]"
+            defaultValue = true
     )
-    private List<String> headerList;
+    private boolean enabled;
 
-    @ArrayField(
-            configFieldName = AUDIT,
-            externalizedKeyName = AUDIT,
-            description = "Output audit elements. You can add more if you want. If multiple values, you can use a comma separated\n" +
-                    "string as default value in the template and values.yml. You can also use a list of strings in YAML format.",
+    @BooleanField(
+            configFieldName = MASK,
+            externalizedKeyName = MASK,
+            description = "Enable mask in the audit log",
             externalized = true,
-            items = String.class,
-            defaultValue = "[\"client_id\", \"user_id\", \"scope_client_id\", \"endpoint\", \"serviceId\"]"
+            defaultValue = true
     )
-    private List<String> auditList;
-
-    private final Config config;
-    // A customized logger appender defined in default logback.xml
-    private Consumer<String> auditFunc;
+    private boolean mask;
 
     @BooleanField(
             configFieldName = STATUS_CODE,
@@ -99,6 +97,10 @@ public class AuditConfig {
     )
     private boolean responseTime;
 
+    private final Config config;
+    // A customized logger appender defined in default logback.xml
+    private Consumer<String> auditFunc;
+
     @BooleanField(
             configFieldName = AUDIT_ON_ERROR,
             externalizedKeyName = AUDIT_ON_ERROR,
@@ -111,15 +113,6 @@ public class AuditConfig {
     )
     private boolean auditOnError;
 
-    @BooleanField(
-            configFieldName = MASK,
-            externalizedKeyName = MASK,
-            description = "Enable mask in the audit log",
-            externalized = true,
-            defaultValue = true
-    )
-    private boolean mask;
-
     @StringField(
             configFieldName = TIMESTAMP_FORMAT,
             externalizedKeyName = TIMESTAMP_FORMAT,
@@ -129,6 +122,48 @@ public class AuditConfig {
     )
     private String timestampFormat;
 
+    @ArrayField(
+            configFieldName = HEADERS,
+            externalizedKeyName = HEADERS,
+            description = "Output header elements. You can add more if you want. If multiple values, you can use a comma separated\n" +
+                    "string as default value in the template and values.yml. You can also use a list of strings in YAML format.\n" +
+                    "Correlation Id\n" +
+                    "- X-Correlation-Id\n" +
+                    "Traceability Id\n" +
+                    "- X-Traceability-Id\n" +
+                    "caller id for metrics\n" +
+                    "- caller_id\n",
+            externalized = true,
+            items = String.class,
+            defaultValue = "[\"X-Correlation-Id\", \"X-Traceability-Id\",\"caller_id\"]"
+    )
+    private List<String> headerList;
+
+    @ArrayField(
+            configFieldName = AUDIT,
+            externalizedKeyName = AUDIT,
+            description = "Output audit elements. You can add more if you want. If multiple values, you can use a comma separated\n" +
+                    "string as default value in the template and values.yml. You can also use a list of strings in YAML format.\n" +
+                    "Client Id\n" +
+                    "- client_id\n" +
+                    "User Id in id token, this is optional\n" +
+                    "- user_id\n" +
+                    "Client Id in scope/access token, this is optional\n" +
+                    "- scope_client_id\n" +
+                    "Request endpoint uri@method.\n" +
+                    "- endpoint\n" +
+                    "Service ID assigned to the service, this is optional and must be set by the service in its implementation\n" +
+                    "- serviceId\n" +
+                    "Request Body, this is optional and must be set by the service in its implementation\n" +
+                    "- requestBody\n" +
+                    "Response payload, this is optional and must be set by the service in its implementation\n" +
+                    "- responseBody\n",
+            externalized = true,
+            items = String.class,
+            defaultValue = "[\"client_id\", \"user_id\", \"scope_client_id\", \"endpoint\", \"serviceId\"]"
+    )
+    private List<String> auditList;
+
     @IntegerField(
             configFieldName = REQUEST_BODY_MAX_SIZE,
             externalizedKeyName = REQUEST_BODY_MAX_SIZE,
@@ -149,14 +184,6 @@ public class AuditConfig {
     )
     private int responseBodyMaxSize;
 
-    @BooleanField(
-            configFieldName = ENABLED,
-            externalizedKeyName = ENABLED,
-            description = "Enable Audit Logging",
-            externalized = true,
-            defaultValue = true
-    )
-    private boolean enabled;
 
     private AuditConfig() {
         this(CONFIG_NAME);
@@ -248,11 +275,7 @@ Config getConfig() {
     }
 
     private void setLogLevel() {
-        Object object = getMappedConfig().get(LOG_LEVEL_IS_ERROR);
-        if (object != null) {
-            auditOnError = Config.loadBooleanValue(LOG_LEVEL_IS_ERROR, object);
-            auditFunc = auditOnError ? LoggerFactory.getLogger(Constants.AUDIT_LOGGER)::error : LoggerFactory.getLogger(Constants.AUDIT_LOGGER)::info;
-        }
+        auditFunc = auditOnError ? LoggerFactory.getLogger(Constants.AUDIT_LOGGER)::error : LoggerFactory.getLogger(Constants.AUDIT_LOGGER)::info;
     }
 
     private void setLists() {
 
@@ -1,23 +1,17 @@
 {
   "$schema" : "http://json-schema.org/draft-07/schema#",
   "type" : "object",
-  "required" : [ "headers", "audit", "statusCode", "responseTime", "auditOnError", "mask", "timestampFormat", "requestBodyMaxSize", "responseBodyMaxSize", "enabled" ],
+  "required" : [ "enabled", "mask", "statusCode", "responseTime", "auditOnError", "timestampFormat", "headers", "audit", "requestBodyMaxSize", "responseBodyMaxSize" ],
   "properties" : {
-    "headers" : {
-      "type" : "array",
-      "description" : "Output header elements. You can add more if you want. If multiple values, you can use a comma separated\nstring as default value in the template and values.yml. You can also use a list of strings in YAML format.",
-      "default" : [ "X-Correlation-Id", "X-Traceability-Id", "caller_id" ],
-      "items" : {
-        "type" : "string"
-      }
+    "enabled" : {
+      "type" : "boolean",
+      "description" : "Enable Audit Logging",
+      "default" : true
     },
-    "audit" : {
-      "type" : "array",
-      "description" : "Output audit elements. You can add more if you want. If multiple values, you can use a comma separated\nstring as default value in the template and values.yml. You can also use a list of strings in YAML format.",
-      "default" : [ "client_id", "user_id", "scope_client_id", "endpoint", "serviceId" ],
-      "items" : {
-        "type" : "string"
-      }
+    "mask" : {
+      "type" : "boolean",
+      "description" : "Enable mask in the audit log",
+      "default" : true
     },
     "statusCode" : {
       "type" : "boolean",
@@ -33,15 +27,26 @@
       "type" : "boolean",
       "description" : "when auditOnError is true:\n - it will only log when status code >= 400\nwhen auditOnError is false:\n - it will log on every request\nlog level is controlled by logLevel"
     },
-    "mask" : {
-      "type" : "boolean",
-      "description" : "Enable mask in the audit log",
-      "default" : true
-    },
     "timestampFormat" : {
       "type" : "string",
       "description" : "the format for outputting the timestamp, if the format is not specified or invalid, will use a long value.\nfor some users that will process the audit log manually, you can use yyyy-MM-dd'T'HH:mm:ss.SSSZ as format."
     },
+    "headers" : {
+      "type" : "array",
+      "description" : "Output header elements. You can add more if you want. If multiple values, you can use a comma separated\nstring as default value in the template and values.yml. You can also use a list of strings in YAML format.\nCorrelation Id\n- X-Correlation-Id\nTraceability Id\n- X-Traceability-Id\ncaller id for metrics\n- caller_id\n",
+      "default" : [ "X-Correlation-Id", "X-Traceability-Id", "caller_id" ],
+      "items" : {
+        "type" : "string"
+      }
+    },
+    "audit" : {
+      "type" : "array",
+      "description" : "Output audit elements. You can add more if you want. If multiple values, you can use a comma separated\nstring as default value in the template and values.yml. You can also use a list of strings in YAML format.\nClient Id\n- client_id\nUser Id in id token, this is optional\n- user_id\nClient Id in scope/access token, this is optional\n- scope_client_id\nRequest endpoint uri@method.\n- endpoint\nService ID assigned to the service, this is optional and must be set by the service in its implementation\n- serviceId\nRequest Body, this is optional and must be set by the service in its implementation\n- requestBody\nResponse payload, this is optional and must be set by the service in its implementation\n- responseBody\n",
+      "default" : [ "client_id", "user_id", "scope_client_id", "endpoint", "serviceId" ],
+      "items" : {
+        "type" : "string"
+      }
+    },
     "requestBodyMaxSize" : {
       "type" : "integer",
       "description" : "The limit of the request body to put into the audit entry if requestBody is in the list of audit. If the\nrequest body is bigger than the max size, it will be truncated to the max size. The default value is 4096.",
@@ -51,11 +56,6 @@
       "type" : "integer",
       "description" : "The limit of the response body to put into the audit entry if responseBody is in the list of audit. If the\nresponse body is bigger than the max size, it will be truncated to the max size. The default value is 4096.",
       "default" : 4096
-    },
-    "enabled" : {
-      "type" : "boolean",
-      "description" : "Enable Audit Logging",
-      "default" : true
     }
   }
 }