🐛 Fixes
Use correct default values on omitted OTLP endpoints (PR #6931)
Previously, when the configuration didn't specify an OTLP endpoint, the Router would always default to http://localhost:4318. However, port 4318 is the correct default only for the HTTP protocol, while port 4317 should be used for gRPC.
Additionally, all other telemetry defaults in the Router configuration consistently use 127.0.0.1 as the hostname rather than localhost.
With this change, the Router now uses:
http://127.0.0.1:4317as the default for gRPC protocolhttp://127.0.0.1:4318as the default for HTTP protocol
This ensures protocol-appropriate port defaults and consistent hostname usage across all telemetry configurations.
By @IvanGoncharov in #6931
Separate entity keys and representation variables in entity cache key (Issue #6673)
This fix separates the entity keys and representation variable values in the cache key, to avoid issues with @requires for example.
🔒 Security
Add batching.maximum_size configuration option to limit maximum client batch size (PR #7005)
Add an optional maximum_size parameter to the batching configuration.
- When specified, the router will reject requests which contain more than
maximum_sizequeries in the client batch. - When unspecified, the router performs no size checking (the current behavior).
If the number of queries provided exceeds the maximum batch size, the entire batch fails with error code 422 (Unprocessable Content). For example:
{
"errors": [
{
"message": "Invalid GraphQL request",
"extensions": {
"details": "Batch limits exceeded: you provided a batch with 3 entries, but the configured maximum router batch size is 2",
"code": "BATCH_LIMIT_EXCEEDED"
}
}
]
}By @carodewig in #7005
🔍 Debuggability
Add apollo.router.pipelines metrics (PR #6967)
When the router reloads, either via schema change or config change, a new request pipeline is created.
Existing request pipelines are closed once their requests finish. However, this may not happen if there are ongoing long requests that do not finish, such as Subscriptions.
To enable debugging when request pipelines are being kept around, a new gauge metric has been added:
apollo.router.pipelines- The number of request pipelines active in the routerschema.id- The Apollo Studio schema hash associated with the pipeline.launch.id- The Apollo Studio launch id associated with the pipeline (optional).config.hash- The hash of the configuration
By @BrynCooke in #6967
Add apollo.router.open_connections metric (PR #7023)
To help users to diagnose when connections are keeping pipelines hanging around, the following metric has been added:
apollo.router.open_connections- The number of request pipelines active in the routerschema.id- The Apollo Studio schema hash associated with the pipeline.launch.id- The Apollo Studio launch id associated with the pipeline (optional).config.hash- The hash of the configuration.server.address- The address that the router is listening on.server.port- The port that the router is listening on if not a unix socket.state- Eitheractiveorterminating.
You can use this metric to monitor when connections are open via long running requests or keepalive messages.
By @BrynCooke in #7009