github Kinto/kinto 5.1.0
on GitHub

latest releases: 25.0.2, 25.0.1, 25.0.0...
9 years ago

Protocol

  • Add a basicauth capability when activated on the server (#937)
  • Add ability to delete history entries using DELETE (#958)

Protocol is now at version 1.13. See API changelog

Bug fixes

  • Permissions are now correctly removed from permission backend when a parent
    object is deleted (fixes #898)
  • Heartbeat of storage backend does not leave tombstones (fixes #985)
  • Fix record_id attribute in history entries when several records are
    modified via a batch request (fixes #942)
  • Fix crash on redirection when path contains control characters (fixes #962)
  • Fix crash on redirection when path contains unicode characters (#982)
  • Fix performance issue when fetching shared objects from plural endpoints (fixes #965)
  • Fix JSON-Merge validation (fixes #979)
  • Fix crash when If-Match or If-None-Match headers contain invalid
    unicode data (fixes #983)
  • Add missing ETag and Last-Modified headers on POST and DELETE
    responses (#980)
  • Return 404 on non-existing objects for users with read permissions (fixes #918)
  • Fix pagination with DELETE on plural endpoints (fixes #987)

New features

  • Activate basicauth in Kinto Admin by default. (#943)
  • Add a setting to limit the maximum number of bytes cached in the memory backend (#610)
  • Add a setting to exclude certain resources from being tracked by history (fixes #964)

Backend changes

  • storage.delete_all() now accepts sorting, pagination_rules and limit
    parameters (#997)
  • permissions.get_accessible_objects() does not support Regexp and now accepts
    a with_children parameter (#975)
  • cache.set() now logs a warning if ttl is None (#967)

Internal changes

  • Remove usage of assert (fixes #954)
  • The delete_object_permissions() of the permission backend now supports
    URI patterns (eg. /bucket/id*)
  • Refactor handling of prefixed user id among request principals
  • Add a warning when a cache entry is set without TTL (ref #960)
  • Replaced insecure use of random.random() and random.choice(...) with
    more secure random.SystemRandom().random() and
    random.SystemRandom().choice(...). (#955)
  • Removed usage of pattern matching in PostgreSQL when not necessary (ref #907, fixes #974)
  • Insist about authentication in concepts documentation (ref #976)
  • Upgrade to Kinto-Admin 1.6.0
Check out latest releases or
releases around Kinto/kinto 5.1.0

Don't miss a new kinto release

NewReleases is sending notifications on new releases.

Get notifications