Protocol
- Fix error response consistency with safe creations if the
createpermission
is granted (fixes #792). The server now returns a412instead of a403if
theIf-None-Match: *header is provided and thecreatepermission is granted. - The
permissionsattribute is now empty in the response if the user has not the permission
to write on the object (fixes #123) - Filtering records now works the same on the memory and postgresql backends:
if we're comparing to a number, the filter will now filter out records that
don't have this field. If we're comparing to anything else, the record
without such a field is treated as if it had '' as the value for this field.
(fixes #815) - Parent attributes are now readable if children creation is allowed. That means for example
that collection attributes are now readable to users withrecord:createpermission.
Same applies to bucket attributes andcollection:createandgroup:create(fixes #803) - Return an empty list on the plural endpoint instead of
403if thecreate
permission is allowed
Protocol is now at version 1.11. See API changelog
Bug fixes
New features
- The storage backend now allows
parent_idpattern matching inkinto.core.storage.get_all. (#821) - The history and quotas plugins execution time is now monitored on StatsD (
kinto.plugins.quotas
andkinto.plugins.history) (#832) - Add new
kinto.version_json_pathsetting (fixes #830)
Internal changes
- Fixed a failing pypy test by changing the way it was mocking
transaction.manager.commit(fixes #755) - Moved storage/cache/permissions base tests to
kinto.core.*.testing(fixes #801) - Now fails with an explicit error when StatsD is configured but not installed.
- Remove redundant fields from data column in PostgreSQL records table (fixes #762)