- We noticed an implicit behavior change for updated Apache HttpClient from
5.5.1to5.6. TLS/SSL connections are now checked for hostname verification on behalf of the provided server certificate. Even with enabled trust-all-certificates flag, connections to servers with mismatching hostnames will be rejected.
DestinationService.tryGetDestinationnow checks if the given destination exists before trying to call it directly. This behaviour is enabled by default and can be disabled viaDestinationService.Cache.disablePreLookupCheck.- Temporary: Use
emailas fallback principal id whenuser_uuidis missing. Will switch to usingsubonce IAS exposesidtype(tracked in SCICAI-1323).