All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog and this project adheres to Semantic Versioning.
- Cost allocation tags changed to make them simpler:
SQSConstructchanged toResourceSet;IsDLQandIsDelayedunified intoSQSType: Main | Delay | DLQ - Added
HasConsumertag to queues to improve monitoring of DLQs
- Opt-in to completely disable SQS env vars. The
getEnvVarmethod is available to get the key-value env var for main queues - SNS Topic creation support
- SNS to SQS subscription support
- Delayed Queues and DLQs do not set env vars by default any more. To keep them available, you must set the
generateEnvVarsproperty on each queue configuration (#64)
- Support for Delay Queues in SQS Helepr (#63)
- Support for FIFO Queues in SQS Helper (#62)
- APIs and Event Listeners with the
skipTraceLayerproperty do not set theJANIS_TRACE_EXTENSION_ENABLEDenv var any more (#61)
- Changed log retention from 14 days to 60 days
- Improved package default exclude list
- Simplified and added CORS to more Gateway Responses using
DEFAULT_4XXandDEFAULT_5XX
- API Gateway request template does not fail when receiving single quotes in qs parameters, headers, etc
State Machinenow supports task withParameters.Inputsuch as Step Functions Execution Trigger
State Machinenow supports task withParameters.Target.Inputsuch as EventBridge Scheduler
SQSDLQs now have aIsDLQtag
State Machinecan now create a Log Group automatically whenloggingConfigis setTagswere added to Cloudformation Stacks, their resources and to deployment artifacts
Authorizersare now marked as external so they don't generate a permission resource- Deployment is now direct instead of via Cloudformation Change Sets
State Machinenow sets execution State to tasks by default. This allows to check whether a task is executed as a retry or not.State Machinenow supports Express Workflows, Logging configuration and Raw properties.
NoClientAuthorizerandAdminNoClientAuthorizerdon't require the janis-client header any more
- Rollback
kebabCaseimplementation to avoid breaking services with alphanumeric names
SQS Helperqueues now have tags to filter costs and metricsSQS Helpernow supports partial batch item failure report
SQS Helperdefault settings are now more optimized
SQS Helperadded to easily implement Queues and DLQs
- Now authorizers
UserAuthorizer,DevUserAuthorizer,ImportExportAuthorizer,AdminNoClientAuthorizerandNoClientAuthorizerrequirejanis-clientheader BREAKING CHANGE - Now authorizers
ServiceNoClientAuthorizer,AdminNoClientAuthorizerandNoClientAuthorizeruse their own functions BREAKING CHANGE - Now authorizer
ImportExportAuthorizerrequiresjanis-serviceheader BREAKING CHANGE
- Unused authorizers
LoggedAuthorizer,ApiKeyAuthorizer,ImportAuthorizerandExportAuthorizerBREAKING CHANGE
api,apiList,apiGet,apiPostandapiPuthelpers now supportlayersandaddLayersto manage function-level lambda layerseventListenerhelper now supportlayers,addLayersandskipTraceLayerto manage function-level lambda layers
functionUrlhook to enable Lambda URLs with Cloudfront Distributions (https://janiscommerce.atlassian.net/browse/JC-268)eventListenerhook now acceptsfunctionRawPropsto customize the lambda function
- Automatic VPC Config for all functions of the service when
LAMBDA_SECURITY_GROUP_IDandLAMBDA_SUBNET_IDSenv vars are set
- Now the
accountIdfor hookauthorizersis read from env varAUTHORIZER_ACCOUNT_ID
- Added
x-janis-totalsandx-janis-only-totalsto default CORS configuration
- Added
@babel/runtimeto default package includes to avoid breaking services that usedate-fns
- Support for
defaultor any other custom stage in stage parameters
- Fixed function VPC Security Group config
- Now
functionsVpchook allows to pass null or undefined params
- Adapted
functionsVpchook to be able to enable or disable by stage
- New hook
functionsVpcto attach a service to a VPC
- Lambda
AWSLambdaVPCAccessExecutionRoleRole is attached even if a VPC is not set at the provider level
- Changed aws-sdk package for @aws-sdk packages to default exclude to reduce bundle size (it is already installed in lambda)
- Rollbacked
provider.iam.roletoprovider.rolebecause it wasn't compatible with coreiamStatementhook
- Default axios exclude fixed for axios@1
- Moved
provider.roletoprovider.iam.roleto be ready for next sls major release
- Support for Serverless parameters for each environment.
- Migration to
serverless@3. You should probably upgrade every plugin you are using. BREAKING CHANGE - Rolled back to
serverless-plugin-split-stacksplugin instead of@janiscommerce/serverless-plugin-split-stacksBREAKING CHANGE
- Serverless
${self:custom.janisDomains}and${self:custom.humanReadableStage}variables deprecated in favor of${param:janisDomain}and${param:humanReadableStage}. Custom props will be removed in a future major version.
- 'janis.base
does not acceptapiSecrets` any more. AWS Secrets manager must be used instead. BREAKING CHANGE
- Set default runtime to node 18 BREAKING CHANGE
- Changed
serverless-plugin-split-stacksplugin to@janiscommerce/serverless-plugin-split-stacksBREAKING CHANGE
- Removed ajv from default excludes and added some mongo and aws sdk dependencies
- Now
Parametersare not set in steps that follow aParallelstep to avoid setting a property on an array
- Fixed state machine parameter setup for Tasks that trigger a new State machine
- Fixed mapping of Map states with different iterator properties
- Step function hook now sets Task
Parametersto includesession,bodyandstepFunctiondata, so Lambdas con detect if they are being run inside a step function
- Access logs now contain API Gateway and integration errors
- API Gateway response compression enabled starting at 1KB response size
- APIs hooks can received
functionNameto use as function name
- Standard for API CRUD function names
- Added support for the
skipTraceLayerin APIs and set it as default in read APIs - Docs for Trace Lambda Layer
- Dependencies updated to fix vulnerabilities
- Support for Trace Layer with env vars
- Fixed offline response CORS expose headers
- Fixed offline response CORS expose headers
- CORS config to allow exposing fixed filters header
- Api Gateway access logs configuration
- Disabled API Gateway default endpoint by default
- Added more default includes to reduce bundle size
- Added
janis-entity-idto default CORS allowed headers
- New default includes are now properly configured
- Added more default includes to reduce bundle size
- Fixed
rawBodyline break escaping
- Added
/view-schemas-built-localto function default excludes
- Fixed
rawBodysingle quote escaping
- Fixed
rawBodyproperty generation in local envs
- Fixed
rawBodyproperty generation in request template
- Added
rawBodyproperty to request template - Dropped support for node 10.x
- Added more paths to default excludes in order to reduce function bundle sizes
x-janis-authorizer-error-typeheader for GatewayResponses moved toauthorizerErrorTyperesponse body property
x-janis-authorizer-error-typeheader for GatewayResponsesAUTHORIZER_FAILUREerror type handlingdetailproperty to show the customerrorMessagefrom the authorizer context
AdminNoClientAuthorizernow usesAdminAuthorizerlambda functionNoClientAuthorizernow usesFullAuthorizerlambda function
- New authorizers
AdminAuthorizerandAdminNoClientAuthorizer
- Authorizers validation to prevent an invalid authorizer
- Stage an region are now properly set in provider object
- Default runtime is now nodejs 14
- Default memory size is now 1GB
- State functions naming
- State functions documentation
- Added
stateMachinehook
- Fixed response template to include custom errors properly
- Authorizers
ImportAuthorizerandExportAuthorizer - Header
janis-serviceis now allowed in CORS configuration
- Authorizer
ImportExportAuthorizerreplaced withImportAuthorizerorExportAuthorizer
- API Gateway custom domain configured to use TLS 1.2
- CORS default config now supports any origin BREAKING CHANGE
- Fixed kebabcase for base, api and event-listener hooks
- CORS APP wildcard for local env
- CORS default config now supports APP wildcard
- Typo in service base default excludes
- Missing property for local envs is now validated
- Now API hooks can configure their request mapping templates with
requestTemplatesproperty
- CORS documentation fix
- Restored some useful request template properties
- Added Authorization header to CORS allowed headers
- Request template ignore other authorizer props to prevent breaking due to JWT claims
- Improved request template to be smaller (removed unused props)
- Improved response templates to be fewer. Now status code is being overridden with a single template. 500 and 504 templates remain separated due to lambda errors handling
- Gateway response configuration for integration timeout.
- Request template for
application/x-www-form-urlencodedremoved (needs serverless@1.81.0 or greater)
- Added
dbConfighook to implement AWS Secrets
- Added
includeandincludeOnlyproperties to base helper to customize packaging - Added
excludeOnlyproperties to base helper to customize packaging - Added
pluginsandpluginsOnlyproperties to base helper to customize plugins
- Now functions are not packaged individually any more. BREAKING CHANGE
- Unused default plugins
serverless-reqvalidator-pluginandserverless-plugin-reducer
- Response template fix for error messages with single quotes
- Response template fix for local environment
- Response template fix
- Response template now handles
messageVariablesin response body
- APIs now can configure custom CORS properties
- Functions are no longer versioned not pruned by default
timeoutsupport for Event Listeners hooks
- Custom IAM Role name now includes the stage to avoid collision between environments
- Custom IAM Role added to avoid hitting IAM Policy size limit
- Sls helper peer dependency changed to 1.9.0 or higher
- Escaped error response message to avoid breaking JSON structure
- Response template now cleans up superstruct errors
- NAMING: Lambda functions naming changed to prevent function names to be too long
- Header
janis-entityis now allowed in CORS configuration
- Support for
ImportExportAuthorizer
package.includesupport for event listeners- Lambda log groups now have a default retention of 14 days
- API Gateway response
AUTHORIZER_CONFIGURATION_ERROR
- API Gateway responses are not overridden any more
- API hook now normalizes the path to avoid bad function naming
package.includesupport for all API hooks
timeoutsupport for all API hooksfunctionRawPropssupport for all API hookseventRawPropssupport for all API hooks
- Custom authorizer support added in event listeners
- Custom authorizers can now be defined in
custom.authorizersobject in initial config and they will be remain untouched
- Authorizers now use the correct ARN
- Access denied API Gateway response resource added with CORS headers
authorizersnow have require the Account ID as a configuration option- Added the
@janiscommerce/serverless-plugin-remove-authorizer-permissionsserverless plugin to allow cross-account deployments
authorizersnow have the name property to avoid collisions
eventListenerhook function name now includes the service name
basehook prune plugin typo fix
eventListenerdocumentation fixed
janis.apihook added to implement custom APIs
- Option
serviceNamechanged toserviceCodeinjanis.basehook BREAKING CHANGE - Added service name to naming, file path and API path in
janis.eventListenerhook
- Authorizers in event listeners are now correctly configured
- Authorizers fixed to match the correct function name
- Serverless offline cache invalidation regex fixed
- Service name in lower case is now in kebab-case
apiSecretsconfiguration in base hook- Sample service example in README
basedocumentation updated with required fields
- Runtime upgraded to nodejs.12x
- Base hook updated to the last configurations
- New authorizers added
- Event listener hook added