pottekkat commented on code in PR #1825: URL: https://github.com/apache/apisix-website/pull/1825#discussion_r1807803477
########## blog/en/blog/2024/10/17/release-apache-apisix-3.11.0.md: ########## @@ -0,0 +1,129 @@ +--- +title: "Release Apache APISIX 3.11.0" +authors: + - name: "Abhishek Choudhary" + title: "Author" + url: "https://github.com/shreemaan-abhishek"; + image_url: "https://github.com/shreemaan-abhishek.png"; + - name: "Traky Deng" + title: "Technical Writer" + url: "https://github.com/kayx23"; + image_url: "https://github.com/kayx23.png"; +keywords: + - Apache APISIX + - API Gateway + - API Management Platform + - New Release + - Cloud Native +description: The Apache APISIX 3.11.0 version is released on October 17, 2024. This release includes a few changes, new features, bug fixes, and other improvements to user experiences. +tags: [Community] +--- + +We are glad to present Apache APISIX 3.11.0 with exciting new features, bug fixes, and other improvements to user experiences. + +<!--truncate--> + +This new release adds a number of new features, including the addition of AI plugins to integrate with LLM providers, the support for AWS and GCP Secret Managers for secret management, and more. + +There are a few important changes included in this release. Should you find these changes impacting your operations, please plan accordingly for a seamless upgrade. + +## Breaking Changes + +### Remove JWT signing endpoint and private key configuration + +Remove the `/apisix/plugin/jwt/sign` JWT signing endpoint previously added by the `jwt-auth` plugin for enhanced security. The plugin now does not require users to upload private keys for issuing JWTs. Please sign JWT with other utilities. + +For more details, see [PR #11597](https://github.com/apache/apisix/pull/11597). + +### Refactor `hmac-auth` plugin per RFC + +The plugin implementation is now based on [draft-cavage-http-signatures](https://www.ietf.org/archive/id/draft-cavage-http-signatures-12.txt) and the configurable parameters have changed. + +For more details, see the latest [plugin doc](https://apisix.apache.org/docs/apisix/plugins/hmac-auth/) and [PR #11581](https://github.com/apache/apisix/pull/11581) + +## New Features + +### Add Consumer credentials resource and introduce consumer identifiable headers + +Add the credential resource to store authentication configurations associated with consumers. A consumer can be associated with one or more credentials from a designated list of authentication plugins, including `key-auth`, `basic-auth`, `jwt-auth`, and `hmac-auth`. The decoupling of credentials facilitates credential reuse and rotation as well as enhanced security. + +For instance, suppose you have a consumer `tom`: + +```shell +curl -i "http://127.0.0.1:9180/apisix/admin/consumers"; -X PUT \ + -H "X-API-KEY: ${ADMIN_API_KEY}" \ + -d '{ + "username": "tom" + }' +``` + +To configure the consumer `key-auth` credential for `tom`, you can use leverage the credential object: Review Comment: ```suggestion To configure the consumer `key-auth` credential for `tom`, you can use the credential object: ``` ########## blog/en/blog/2024/10/17/release-apache-apisix-3.11.0.md: ########## @@ -0,0 +1,129 @@ +--- +title: "Release Apache APISIX 3.11.0" +authors: + - name: "Abhishek Choudhary" + title: "Author" + url: "https://github.com/shreemaan-abhishek"; + image_url: "https://github.com/shreemaan-abhishek.png"; + - name: "Traky Deng" + title: "Technical Writer" + url: "https://github.com/kayx23"; + image_url: "https://github.com/kayx23.png"; +keywords: + - Apache APISIX + - API Gateway + - API Management Platform + - New Release + - Cloud Native +description: The Apache APISIX 3.11.0 version is released on October 17, 2024. This release includes a few changes, new features, bug fixes, and other improvements to user experiences. +tags: [Community] +--- + +We are glad to present Apache APISIX 3.11.0 with exciting new features, bug fixes, and other improvements to user experiences. + +<!--truncate--> + +This new release adds a number of new features, including the addition of AI plugins to integrate with LLM providers, the support for AWS and GCP Secret Managers for secret management, and more. + +There are a few important changes included in this release. Should you find these changes impacting your operations, please plan accordingly for a seamless upgrade. Review Comment: breaking changes instead of important changes? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
![https://github.com/shreemaan-abhishek.png"](https://github.com/shreemaan-abhishek.png"){kind=link}
![https://github.com/kayx23.png"](https://github.com/kayx23.png"){kind=link}