security:
  api:
    legacy: false