- don't leak Authorization in FLAT::getRequestInfo()
- fixed a mixup of JSON DOM representation styles
- If a client URL path is below the API base path, does not match any defined route, and a path is defined which equals the API base path, so that a matching client URL path is the concatenation of the API base path with itself (e.g.
/api), the fallback flow is now properly executed.
- Incorrect default content-type
text/xmlfor request bodies