Skip to main content

Account API Keys

API Keys for your Zuplo account can be created from the Zuplo Portal. These keys are used with the Zuplo CLI or the Zuplo Developer API.

Open API Handler

The new Open API handler allows serving the public version of your OpenAPI file through a route of your choice.

Open API from ZuploContext (Alpha)

The context.route property on the ZuploContext object now exposes the raw Open API operation JSON for use in handlers or policies.

export async function myHandler(request: ZuploRequest, context: ZuploContext) {
const raw = context.route.raw();
return raw;

Additional Geolocation Properties

The incomingRequestProperties property on the ZuploContext route now exposes several additional values:

  • postalCode - Postal code of the incoming request, for example, "78701".
  • metroCode - Metro code (DMA) of the incoming request, for example, "635".
  • region - If known, the ISO 3166-2 name for the first level region associated with the IP address of the incoming request, for example, "Texas".
  • regionCode - If known, the ISO 3166-2 code for the first-level region associated with the IP address of the incoming request, for example, "TX".
  • timezone - Timezone of the incoming request, for example, "America/Chicago".

Improved Policy Usage Visibility

The policy.json editor in the Zuplo Portal now shows when a policy is used inside of a composite policy.

Secure Tunnel Management

Secure Tunnels can now be managed using the Zuplo CLI or using the Developer API

String interpolated environment variables

When using environment variables in with string interpolation in routes.json or your OpenAPI file, i.e. "option": "my-$env(ENV_VAR)-value" undefined environment variables would result in the string "undefined" (Javascript's result of ${undefined}). Instead undefined variables will now result in an empty string.

Developer Portal Enhancements

Developer portal has been updated for improved performance and better error handling. Documentation improvements.

Environment Variable API + CLI

Environment variables can now be managed via the Zuplo CLI or the Developer API

New Account Settings section in Portal

Zuplo Portal now includes an account level settings with settings for billing.


  • Added bcrypt.js library

  • Zuplo portal now supports sub-folders in the modules directory
  • Zuplo CLI now includes the ability to manage secure tunnels (Enterprise Only)
  • Environments can now be marked as "Protected" to prevent accidental deletions. Contact to enable protection on your environments.

  • Introduced zuplo.json configuration with Compatibility Dates. Documentation.
  • Added the ability to customize the event sent to AWS Lambda when running with AWS API Gateway compatibility. Documentation

  • Zuplo Tunnel Docker Image Updated to version 2023.3.0 of cloudflared
  • Disables QUIC protocol by default on tunnel due to performance issues under certain situations. Defaults to HTTP2 instead.