@backstage/backend-app-api 0.5.14 → 0.6.0-next.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (7) hide show
  1. package/CHANGELOG.md +32 -27
  2. package/alpha/package.json +1 -1
  3. package/config.d.ts +20 -0
  4. package/dist/index.cjs.js +669 -197
  5. package/dist/index.cjs.js.map +1 -1
  6. package/dist/index.d.ts +11 -2
  7. package/package.json +16 -13
package/CHANGELOG.md CHANGED
@@ -1,44 +1,49 @@
1
1
  # @backstage/backend-app-api
2
2
 
3
- ## 0.5.14
3
+ ## 0.6.0-next.1
4
4
 
5
5
  ### Patch Changes
6
6
 
7
- - ac1310f: Fixed an issue where configuration schema for the purpose of redacting secrets from logs was not being read correctly.
7
+ - 81e0120: Fixed an issue where configuration schema for the purpose of redacting secrets from logs was not being read correctly.
8
+ - f235ca7: Make sure to not filter out schemas in `createConfigSecretEnumerator`
8
9
  - Updated dependencies
9
- - @backstage/backend-common@0.21.3
10
- - @backstage/backend-tasks@0.5.18
11
- - @backstage/plugin-auth-node@0.4.8
12
- - @backstage/plugin-permission-node@0.7.24
13
- - @backstage/cli-node@0.2.3
14
- - @backstage/config-loader@1.6.2
15
- - @backstage/backend-plugin-api@0.6.13
10
+ - @backstage/config@1.2.0-next.1
11
+ - @backstage/config-loader@1.7.0-next.1
12
+ - @backstage/backend-common@0.21.4-next.1
13
+ - @backstage/backend-plugin-api@0.6.14-next.1
14
+ - @backstage/backend-tasks@0.5.19-next.1
15
+ - @backstage/plugin-auth-node@0.4.9-next.1
16
+ - @backstage/plugin-permission-node@0.7.25-next.1
17
+ - @backstage/cli-common@0.1.13
18
+ - @backstage/cli-node@0.2.4-next.0
19
+ - @backstage/errors@1.2.4-next.0
20
+ - @backstage/types@1.1.1
16
21
 
17
- ## 0.5.13
22
+ ## 0.6.0-next.0
18
23
 
19
- ### Patch Changes
24
+ ### Minor Changes
20
25
 
21
- - Updated dependencies
22
- - @backstage/backend-common@0.21.2
23
- - @backstage/backend-tasks@0.5.17
24
- - @backstage/plugin-auth-node@0.4.7
25
- - @backstage/plugin-permission-node@0.7.23
26
- - @backstage/backend-plugin-api@0.6.12
27
- - @backstage/cli-node@0.2.3
28
- - @backstage/config-loader@1.6.2
26
+ - 4a3d434: **BREAKING**: For users that have migrated to the new backend system, incoming requests will now be rejected if they are not properly authenticated (e.g. with a Backstage bearer token or a backend token). Please see the [Auth Service Migration tutorial](https://backstage.io/docs/tutorials/auth-service-migration) for more information on how to circumvent this behavior in the short term and how to properly leverage it in the longer term.
29
27
 
30
- ## 0.5.12
28
+ Added service factories for the new [`auth`](https://backstage.io/docs/backend-system/core-services/auth/), [`httpAuth`](https://backstage.io/docs/backend-system/core-services/http-auth), and [`userInfo`](https://backstage.io/docs/backend-system/core-services/user-info) services that were created as part of [BEP-0003](https://github.com/backstage/backstage/tree/master/beps/0003-auth-architecture-evolution).
31
29
 
32
30
  ### Patch Changes
33
31
 
32
+ - 999224f: Bump dependency `minimatch` to v9
33
+ - 0502d82: Updated the `permissionsServiceFactory` to forward the `AuthService` to the implementation.
34
+ - 9802004: Made the `DefaultUserInfoService` claims check stricter
34
35
  - Updated dependencies
35
- - @backstage/backend-common@0.21.1
36
- - @backstage/backend-tasks@0.5.16
37
- - @backstage/plugin-auth-node@0.4.6
38
- - @backstage/plugin-permission-node@0.7.22
39
- - @backstage/backend-plugin-api@0.6.11
40
- - @backstage/cli-node@0.2.3
41
- - @backstage/config-loader@1.6.2
36
+ - @backstage/backend-common@0.21.3-next.0
37
+ - @backstage/plugin-auth-node@0.4.8-next.0
38
+ - @backstage/errors@1.2.4-next.0
39
+ - @backstage/backend-plugin-api@0.6.13-next.0
40
+ - @backstage/backend-tasks@0.5.18-next.0
41
+ - @backstage/plugin-permission-node@0.7.24-next.0
42
+ - @backstage/cli-node@0.2.4-next.0
43
+ - @backstage/config-loader@1.6.3-next.0
44
+ - @backstage/config@1.1.2-next.0
45
+ - @backstage/cli-common@0.1.13
46
+ - @backstage/types@1.1.1
42
47
 
43
48
  ## 0.5.11
44
49
 
package/alpha/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@backstage/backend-app-api",
3
- "version": "0.5.14",
3
+ "version": "0.6.0-next.1",
4
4
  "main": "../dist/alpha.cjs.js",
5
5
  "types": "../dist/alpha.d.ts"
6
6
  }
package/config.d.ts CHANGED
@@ -15,6 +15,26 @@
15
15
  */
16
16
 
17
17
  export interface Config {
18
+ backend?: {
19
+ auth?: {
20
+ /**
21
+ * This disables the otherwise default auth policy, which requires all
22
+ * requests to be authenticated with either user or service credentials.
23
+ *
24
+ * Disabling this check means that the backend will no longer block
25
+ * unauthenticated requests, but instead allow them to pass through to
26
+ * plugins.
27
+ *
28
+ * If permissions are enabled, unauthenticated requests will be treated
29
+ * exactly as such, leaving it to the permission policy to determine what
30
+ * permissions should be allowed for an unauthenticated identity. Note
31
+ * that this will also apply to service-to-service calls between plugins
32
+ * unless you configure credentials for service calls.
33
+ */
34
+ dangerouslyDisableDefaultAuthPolicy?: boolean;
35
+ };
36
+ };
37
+
18
38
  /** Discovery options. */
19
39
  discovery?: {
20
40
  /**