Automatic update for the Changelog for release

CHANGELOG.md

@@ -2,6 +2,51 @@
 
 All notable changes to the Zowe API Mediation Layer package will be documented in this file.
 
+## `APIML 3.4.0 / Zowe 3.4.0 (2025-11-12)`
+
+* Feature:  Enable opentelemetry for modulith  (#4380) ([259a2fc](https://github.com/zowe/api-layer/commit/259a2fc)), closes [#4380](https://github.com/zowe/api-layer/issues/4380)
+* Feature:  Support keyrings with ICSF keys (#4354) ([eeb3ade](https://github.com/zowe/api-layer/commit/eeb3ade)), closes [#4354](https://github.com/zowe/api-layer/issues/4354)
+* Feature:  Update z/OSMF template to use the SAF provider as default (#4374) ([9e8c85c](https://github.com/zowe/api-layer/commit/9e8c85c)), closes [#4374](https://github.com/zowe/api-layer/issues/4374)
+* Feature:  Support multiple OIDC providers at the same time (#4295) ([801927f](https://github.com/zowe/api-layer/commit/801927f)), closes [#4295](https://github.com/zowe/api-layer/issues/4295)
+
+* Bugfix:  Add service ID validation (#4375, #4329) ([ec4000c](https://github.com/zowe/api-layer/commit/ec4000c). [3a20fef](https://github.com/zowe/api-layer/commit/3a20fef364602d38dd7d7934ee090df8eb41320c)), closes [#4375](https://github.com/zowe/api-layer/issues/4375), [#4329](https://github.com/zowe/api-layer/pull/4392)
+* Bugfix:  Certificate chain parsing with Java JCA Hybrid provider (#4376) ([cccd895](https://github.com/zowe/api-layer/commit/cccd895)), closes [#4376](https://github.com/zowe/api-layer/issues/4376)
+* Bugfix:  Close expired connections (#4383, #4389) ([abb4c58](https://github.com/zowe/api-layer/commit/abb4c58), [0399195](https://github.com/zowe/api-layer/commit/0399195ace862feb863a837379dcaa4a43267574)), closes [#4383](https://github.com/zowe/api-layer/issues/4383), [#4389](https://github.com/zowe/api-layer/pull/4389)
+* Bugfix:  Correct description in API doc (#4348) ([79e67dd](https://github.com/zowe/api-layer/commit/79e67dd)), closes [#4348](https://github.com/zowe/api-layer/issues/4348)
+* Bugfix:  Environment variable in start.sh for ICSF (#4369) ([b607910](https://github.com/zowe/api-layer/commit/b607910)), closes [#4369](https://github.com/zowe/api-layer/issues/4369)
+* Bugfix:  Fix shell script from #4357 (#4382) ([778f45e](https://github.com/zowe/api-layer/commit/778f45e)), closes [#4357](https://github.com/zowe/api-layer/issues/4357) [#4382](https://github.com/zowe/api-layer/issues/4382)
+* Bugfix:  Fix Spel expression in case of non-defined variable (#4361) ([60c0b83](https://github.com/zowe/api-layer/commit/60c0b83)), closes [#4361](https://github.com/zowe/api-layer/issues/4361)
+* Bugfix:  Fix Integration tests to run with SAF auth provider (#4386) ([274b424](https://github.com/zowe/api-layer/commit/274b424)), closes [#4386](https://github.com/zowe/api-layer/issues/4386)
+* Bugfix:  Resolve conflicting beans (#4387) ([e551700](https://github.com/zowe/api-layer/commit/e551700)), closes [#4387](https://github.com/zowe/api-layer/issues/4387)
+* Bugfix:  Fix URLs for onboarding when AT-TLS is enabled (#4169) ([fc46df1](https://github.com/zowe/api-layer/commit/fc46df1)), closes [#4169](https://github.com/zowe/api-layer/issues/4169)
+
+## `3.3.1 (2025-10-20)`
+
+* Feature:  Support configurable username field for OIDC tokens (#4300) ([f9711b2](https://github.com/zowe/api-layer/commit/f9711b2)), closes [#4300](https://github.com/zowe/api-layer/issues/4300)
+* Feature:  Support multiple OIDC providers at the same time (#4295) ([686061c](https://github.com/zowe/api-layer/commit/801927)), closes [#4321](https://github.com/zowe/api-layer/issues/4295)
+* Feature:  (Onboarding Nodejs Enabler) Expose Eureka class from EurekaClient for better customization control (#4311) ([ab71686](https://github.com/zowe/api-layer/commit/ab71686)), closes [#4311](https://github.com/zowe/api-layer/issues/4311)
+* Feature:  Support multi-value OIDC claims for userId mapping (#4308) ([d7fbaca](https://github.com/zowe/api-layer/commit/d7fbaca)), closes [#4308](https://github.com/zowe/api-layer/issues/4308) 
+* Feature:  Support Keycloak as OIDC provider in integration tests (#4321) ([686061c](https://github.com/zowe/api-layer/commit/686061c)), closes [#4321](https://github.com/zowe/api-layer/issues/4321) 
+
+
+* Bugfix:  Respect encoded slashes in redirect header (#4328) ([da9ee87](https://github.com/zowe/api-layer/commit/da9ee87)), closes [#4328](https://github.com/zowe/api-layer/issues/4328)
+* Bugfix:  OIDC redirectUri default in java code to prevent startup error (#4329) ([644c9c9](https://github.com/zowe/api-layer/commit/644c9c9)), closes [#4329](https://github.com/zowe/api-layer/issues/4329)
+* Bugfix:  z/OSMF static definition for AT-TLS (#4327) ([ca8a9ad](https://github.com/zowe/api-layer/commit/ca8a9ad)), closes [#4327](https://github.com/zowe/api-layer/issues/4327)
+* Bugfix:  Custom Disk Health Configuration to work properly on z/OS (#4269) ([808ec13](https://github.com/zowe/api-layer/commit/808ec13)), closes [#4269](https://github.com/zowe/api-layer/issues/4268)
+* Bugfix:  AT-TLS mode without reading keystore (#4271) ([67a845b](https://github.com/zowe/api-layer/commit/67a845b)), closes [#4271](https://github.com/zowe/api-layer/issues/4271)
+* Bugfix:  WebClient used in API Catalog does not follow redirects (#4278) ([b409870](https://github.com/zowe/api-layer/commit/b409870)), closes [#4278](https://github.com/zowe/api-layer/issues/4278)
+* Bugfix:  Websocket frame size configuration (#4277) ([e3754cb](https://github.com/zowe/api-layer/commit/e3754cb)), closes [#4277](https://github.com/zowe/api-layer/issues/4277)
+* Bugfix:  AT-TLS filter in modulith mode and Ltpa2 token  (#4285) ([ce2acdc](https://github.com/zowe/api-layer/commit/ce2acdc)), closes [#4285](https://github.com/zowe/api-layer/issues/4285)
+* Bugfix:  Increase stomp tests connection timeout for miniplex (#4296) ([802c50b](https://github.com/zowe/api-layer/commit/802c50b)), closes [#4296](https://github.com/zowe/api-layer/issues/4296)
+* Bugfix:  Start caching service with disabled cert verification  (#4299) ([77f1092](https://github.com/zowe/api-layer/commit/77f1092)), closes [#4299](https://github.com/zowe/api-layer/issues/4299)
+* Bugfix:  Cherry-pick apiml.gateway.servicesToDisableRetry to modulith (#4307) ([7a5dae4](https://github.com/zowe/api-layer/commit/7a5dae4)), closes [#4307](https://github.com/zowe/api-layer/issues/4307)
+* Bugfix:  API ML services log cleanup (#4284) ([c30ad60](https://github.com/zowe/api-layer/commit/c30ad60)), closes [#4284](https://github.com/zowe/api-layer/issues/4284)
+* Bugfix:  Update modulith version of z/OSMF static definition (#4333) ([ae110f4](https://github.com/zowe/api-layer/commit/ae110f4)), closes [#4333](https://github.com/zowe/api-layer/issues/4333)
+* Bugfix:  Avoid duplicate startup message (#4339) ([b4ef830](https://github.com/zowe/api-layer/commit/b4ef830)), closes [#4339](https://github.com/zowe/api-layer/issues/4339)
+* Bugfix:  Keep all gateways registered (#4345) ([5a87991](https://github.com/zowe/api-layer/commit/5a87991)), closes [#4345](https://github.com/zowe/api-layer/issues/4345)
+* Bugfix:  Fix of Tomcat customizers to be supported also by reactive framework (#4336) ([3bff245](https://github.com/zowe/api-layer/commit/3bff245)), closes [#4336](https://github.com/zowe/api-layer/issues/4336)
+* Bugfix:  Requirement of client certificate on ZAAS call when AT-TLS is used & add AT-TLS support to DC (#4347) ([47525ee](https://github.com/zowe/api-layer/commit/47525ee)), closes [#4347](https://github.com/zowe/api-layer/issues/4347)
+
 ## `3.3.0 (2025-08-18)`
 
 * Feature:  New configuration property **`apiml.security.forwardHeader.trustedProxies`** added to specify the regular expression pattern used to identify trusted proxies from which `X-Forwarded-*` headers are accepted and forwarded. Mitigates CVE-2025-41235. (#4171) ([ff8c81d](https://github.com/zowe/api-layer/commit/ff8c81d)), closes [#4171](https://github.com/zowe/api-layer/pull/4171)
@@ -12,6 +57,7 @@ All notable changes to the Zowe API Mediation Layer package will be documented i
 * Feature:  Certificate validation improvements (#4017) ([b45747f](https://github.com/zowe/api-layer/commit/b45747f)), closes [#4017](https://github.com/zowe/api-layer/issues/4017)
 * Feature:  Onboarding Python Enabler (#4068) ([3f966f3](https://github.com/zowe/api-layer/commit/3f966f3)), closes [#4068](https://github.com/zowe/api-layer/issues/4068)
 * Feature:  Eureka client connection timeout (#4045) ([0e3c116](https://github.com/zowe/api-layer/commit/0e3c116)), closes [#4045](https://github.com/zowe/api-layer/issues/4045)
+* Feature:  Disable retry for configured services (#4265) ([1fbde4c](https://github.com/zowe/api-layer/commit/1fbde4c)), closes [#4265](https://github.com/zowe/api-layer/issues/4245)
 
 
 * Bugfix:  Gateway returns empty auth keys from z/OSMF when **`apiml.security.auth.zosmf.jwtAutoconfiguration`** is set to **`jwt`**. (#4108) ([738915e](https://github.com/zowe/api-layer/commit/738915e)), closes [#4092](https://github.com/zowe/api-layer/issues/4092)