1 | 0.0.1 2016-11-03
|
2 | ----------------
|
3 |
|
4 | - based on 2.15.4
|
5 | - alpha release
|
6 |
|
7 | 0.0.2 2016-11-04
|
8 | ----------------
|
9 |
|
10 | - passing publicKey back with login response on encrypted payloads
|
11 |
|
12 | 0.0.3 2016-11-07
|
13 | ----------------
|
14 |
|
15 | - security audits and modifiedBy
|
16 |
|
17 | 0.0.4 2016-11-15
|
18 | ----------------
|
19 |
|
20 | - modified login method to be simpler, check for secure - then set auth type to digest if no password
|
21 |
|
22 |
|
23 | 0.1.0 2016-11-15
|
24 | ----------------
|
25 |
|
26 | - have layered security more, not so many conditional statements, now have distinct login, and processLogin methods
|
27 | - fixed issue where onEvent in client was not pushing the actual event data, as the data was being pushed into the scope argument for a "call"
|
28 | - fixed bug in client, with incorrcetly spelled enum STATE.diconnected
|
29 |
|
30 | 0.2.0 2016-11-18
|
31 | ----------------
|
32 |
|
33 | - update to default policies, both now have no ttl
|
34 | - fix the session service disconnect to allow client reconnections (reconnect true if options.reconnect == null)
|
35 |
|
36 | 0.3.0 2016-11-21
|
37 | ----------------
|
38 |
|
39 | - inbound and outbound layer plugins
|
40 |
|
41 | 0.4.0 2016-11-21
|
42 | ----------------
|
43 |
|
44 | - services other than system services can now be loaded
|
45 |
|
46 | 0.4.2 2016-11-22
|
47 | ----------------
|
48 |
|
49 | - proper error returned when token from deleted user is used in an attempt to access a resource
|
50 |
|
51 | 0.4.3 2016-11-22
|
52 | ----------------
|
53 |
|
54 | - upgrade from node-uuid to uuid
|
55 |
|
56 | 0.5.0 2016-11-22
|
57 | ----------------
|
58 |
|
59 | - fix to pubsub, allow for noCluster option
|
60 | - added mergeObjects function to utils
|
61 |
|
62 | 0.6.0 2016-11-23
|
63 | ----------------
|
64 |
|
65 | - client connect timeout
|
66 | - made getConnection more logical
|
67 | - token login reuse
|
68 |
|
69 | 0.6.1 2016-11-25
|
70 | ----------------
|
71 |
|
72 | - fix to test c1
|
73 | - have correct management of connection timeout
|
74 | - upgrade to primus 6
|
75 |
|
76 | 0.6.2 2016-11-25
|
77 | ----------------
|
78 |
|
79 | - downgrade to primus 5.2.2 (support node 0.10)
|
80 |
|
81 | 0.6.3 2016-11-27
|
82 | ----------------
|
83 |
|
84 | - downgrade to primus 4.0.5 (last known good version)
|
85 |
|
86 | 0.6.5 2016-11-27
|
87 | ----------------
|
88 |
|
89 | - upgrade to primus 5.2.2 (didnt make a difference)
|
90 |
|
91 | 0.6.6 2016-11-27
|
92 | ----------------
|
93 |
|
94 | - update to __getConnection
|
95 |
|
96 | 0.6.7 2016-11-28
|
97 | ----------------
|
98 |
|
99 | - safeSession and updateSession returns null if session booted
|
100 |
|
101 | 0.7.0 2016-12-02
|
102 | ----------------
|
103 |
|
104 | - major updates to disconnect
|
105 | - fix to browser (Primus now attached to window)
|
106 | - happner-mocha-serial tests
|
107 |
|
108 | 0.7.1 2016-12-02
|
109 | ----------------
|
110 |
|
111 | - disabled benchmarket on all tests except benchmarket
|
112 |
|
113 | 0.8.0 2016-12-03
|
114 | ----------------
|
115 |
|
116 | - changed config on client to not have config.config
|
117 | - changed client.options.config to just client.options
|
118 |
|
119 | 0.9.0 2016-12-06
|
120 | ----------------
|
121 |
|
122 | - server shutdown, if connections are destroyed by primus, destroy not called in transport.stop
|
123 | - made call timeout configurable in client, defaults to 30 seconds
|
124 |
|
125 | 0.9.1 2016-12-12
|
126 | ----------------
|
127 |
|
128 | - updated README
|
129 | - added migration plan
|
130 |
|
131 | 1.0.0 2016-12-13
|
132 | ----------------
|
133 |
|
134 | - protocol update!: error in message now has separate name and message, ie: {error:{name:'AccessDenied', message:'unauthorised'}} previous {error:{name:'AccessDenied: unauthorised'}}
|
135 | - updated __createResponse to include the message of the error (was previously looping through the properties - 'message' was non-iterable)
|
136 |
|
137 | 1.0.1 2016-12-13
|
138 | ----------------
|
139 |
|
140 | - fixed issue where outbound responses where not going through layers if custom outbound layers configured
|
141 |
|
142 | 1.0.2 2016-12-13
|
143 | ----------------
|
144 |
|
145 | - fixed persisted cache does not set __sync flag, when db is empty
|
146 |
|
147 | 1.0.3 2016-12-15
|
148 | ----------------
|
149 |
|
150 | - fixed outbound system messages to include logging and custom outbound layers
|
151 | - fixed issue with tags working regardless of whether the data to tag exists or not
|
152 |
|
153 | 1.0.4 2016-12-15
|
154 | ----------------
|
155 |
|
156 | - allow for event_type * as well as 'all' in client 'on' option
|
157 |
|
158 | 1.1.0 2016-12-21
|
159 | ----------------
|
160 |
|
161 | - protocol version update 1.2.0
|
162 | - happn protocol 0.1.1 in place
|
163 | - default protocol is 1.1.0 (oldest)
|
164 |
|
165 | 1.1.1 2016-12-22
|
166 | ----------------
|
167 |
|
168 | - error serialization enhancement
|
169 |
|
170 | 1.2.1 2017-01-21
|
171 | ----------------
|
172 |
|
173 | - targetClients enhancement
|
174 | - removed benchmarket
|
175 | - fixed bug with subscribe on keys without preceding '/'
|
176 | - client disconnect improvements and test
|
177 |
|
178 | 1.3.0 2017-02-08
|
179 | ------------------
|
180 | - added support for passing custom _meta into `set()` options
|
181 |
|
182 | 1.4.0 2017-02-08
|
183 | ----------------
|
184 | - dataprovider functionality
|
185 | - updates to tests
|
186 |
|
187 | 1.4.1 2017-02-08
|
188 | ----------------
|
189 | - fixed issue where the options where getting attached to request options in dataprovider
|
190 | - updates to tests
|
191 |
|
192 | 1.4.2 2017-02-21
|
193 | ----------------
|
194 | - refactored this.STATE to this.state in client
|
195 |
|
196 | 1.5.0 2017-02-27
|
197 | ----------------
|
198 | - publisher/subscription services
|
199 | - consistency ACKNOWLEDGED/TRANSACTIONAL/DEFERRED
|
200 |
|
201 | 1.6.0 2017-03-02
|
202 | ----------------
|
203 | - packager, with browser client caching
|
204 | - added homedir and fs-extra dependancies
|
205 | - updates to utilities
|
206 |
|
207 | 1.6.2 2017-03-07
|
208 | ----------------
|
209 | - client.disconnect() supports server offline
|
210 |
|
211 | 1.7.0 2017-03-08
|
212 | ----------------
|
213 | - forked primus
|
214 |
|
215 | 1.7.1 2017-03-09
|
216 | ----------------
|
217 | - bucket optimisations, trie segmentation
|
218 |
|
219 | 1.7.2 2017-03-09
|
220 | ----------------
|
221 | - happn-tcp-port-used
|
222 |
|
223 | 1.7.4 2017-03-10
|
224 | ----------------
|
225 | - fixed bucket to use the wildcardMatch on subscriptions, updated f7 test
|
226 |
|
227 | 1.7.5 2017-03-13
|
228 | ----------------
|
229 | - fixed collisions on multiple servers in same process deleting the cached-to-disk browserclient
|
230 |
|
231 | 1.7.6 2017-03-20
|
232 | ----------------
|
233 | - updated forked primus to only dodge missing options on destroy if configured to do so
|
234 |
|
235 | 1.7.7 2017-03-21
|
236 | ----------------
|
237 | - forked primus closing process.env, switched to global
|
238 |
|
239 | 1.8.0 2017-03-21
|
240 | ----------------
|
241 | - strict bucket
|
242 | - redundant connections
|
243 |
|
244 | 1.8.1 2017-03-23
|
245 | ----------------
|
246 | - updated README (subscription service)
|
247 | - socketCleanup method on client
|
248 | - socket connect timeout is 30 seconds
|
249 | - socket pool reconnect interval
|
250 | - getBuckets optimisation, also bucket fix * = ALL
|
251 |
|
252 | 1.8.2 2017-03-23
|
253 | ----------------
|
254 | - socket pool reconnect delay, 0 by default
|
255 | - socket pool secure service tests
|
256 |
|
257 | 1.8.3 2017-03-27
|
258 | ----------------
|
259 | - moved transform and transformAll to dataProvider
|
260 | - updated documentation
|
261 |
|
262 | 1.8.4 2017-03-28
|
263 | ----------------
|
264 | - happn-util-crypto 0.2.2
|
265 |
|
266 | 1.8.5 2017-03-28
|
267 | ----------------
|
268 | - happn-util-crypto 0.2.3
|
269 |
|
270 | 1.8.6 2017-03-29
|
271 | ----------------
|
272 | - __ensureCryptoLibrary only happens if encryptPayloads || loginType === 'digest'
|
273 |
|
274 | 1.8.7 2017-03-30
|
275 | ----------------
|
276 | - removed var Primus from lib/client because Primus is in window in browser client
|
277 |
|
278 | 1.9.0 2017-03-31
|
279 | ----------------
|
280 | - account lockout
|
281 |
|
282 | 1.10.0 2017-04-01
|
283 | ----------------
|
284 | - revoke session
|
285 | - revoke-session backward compatible with happn 2 clients
|
286 |
|
287 | 1.10.1 2017-04-04
|
288 | -----------------
|
289 | - fixed issue with services, where initializeServices was a global variable
|
290 |
|
291 | 1.11.0 2017-04-11
|
292 | -----------------
|
293 | - updated with happn-2 changes
|
294 |
|
295 | 1.11.1 2017-04-14
|
296 | -----------------
|
297 | - fix: event subscriptions don't resume with subscriptionId causing server-side .subscriptionData to be empty
|
298 | - fix: resumed event subscriptions no longer contain meta
|
299 | - fix: .off(listenerIdNumber) failing for explicit (no wildcard) paths
|
300 |
|
301 | 1.12.0 2017-04-18
|
302 | -----------------
|
303 | - fix: options passed into the client with a null or empty options, but a connection default to 127.0.0.1:55000
|
304 | - enhancement: login with a token is now possible
|
305 | - test: default profiles, client options, login using tokens
|
306 |
|
307 | 1.12.1 2017-04-21
|
308 | -----------------
|
309 | - fix: issue #49 strict bucket events dont work
|
310 |
|
311 | 1.12.2 2017-05-30
|
312 | -----------------
|
313 | - update to forked sillyname (removed objectionable words)
|
314 |
|
315 | 1.13.0 2017-06-08
|
316 | -----------------
|
317 | - updated password-salt-and-hash to happn-password-salt-and-hash
|
318 | - updates to travis node 8
|
319 | - updates to .gitignore
|
320 |
|
321 | 1.13.1 2017-06-15
|
322 | -----------------
|
323 | - fixed issue with protocol 1.1.0, protocol field missing
|
324 |
|
325 | 1.13.2 2017-06-15
|
326 | -----------------
|
327 | - fixed issue with protocols, protocol field "harded coded in emit and response on all plugins"
|
328 |
|
329 | 1.13.3 2017-06-19
|
330 | -----------------
|
331 | - updated g6 test, timeout
|
332 |
|
333 | 1.13.4 2017-07-07
|
334 | -----------------
|
335 | - updated parseFields in dataprovider to not append data.data
|
336 |
|
337 | 2.0.1 2017-07-18
|
338 | -----------------
|
339 | - fixed delegate.runCount issue
|
340 | - updated data.
|
341 |
|
342 | 2.1.0 2017-07-29
|
343 | ----------------
|
344 | - released changes _data.
|
345 |
|
346 | 3.0.0 2017-07-30
|
347 | ----------------
|
348 | - updated wildcard, fixed bug where db path was stripping / unintentionally
|
349 | - wildcard fix may break existing systems that are inadvertantly making use of the bugs permissiveness
|
350 |
|
351 | 3.1.0 2017-07-18
|
352 | ----------------
|
353 | - Bearer token authorization header
|
354 | - moved getting session from req to security service
|
355 | - added happn_session property to req, for repeated calls of the sessionFromRequest method in one request
|
356 |
|
357 | 4.0.0 2017-10-08
|
358 | ----------------
|
359 | - breaking changes, protocol 2.0.0:
|
360 | - server
|
361 | - set requests can not contain *'s
|
362 | - doing away with integer listener ids
|
363 | - off cannot take a string now, it is the reference not the path
|
364 | - offPath takes in the path
|
365 | - no more buckets, wild-pare integrated
|
366 |
|
367 | 5.0.0 2017-11-24
|
368 | ----------------
|
369 | - backward compatible protocol 1 & 2
|
370 | - memory leak fixes in protocol service and checkpoint
|
371 |
|
372 | 5.0.1 2017-11-24
|
373 | ----------------
|
374 | - uses less memory for subscriptions, not storing the whole session
|
375 | - tested subscriptions leaks on session disconnect
|
376 |
|
377 | 5.1.0 2017-11-25
|
378 | ----------------
|
379 | - integrated happn-stats
|
380 |
|
381 | 5.1.2 2017-11-27
|
382 | ----------------
|
383 | - fixed use of undefined variable in property
|
384 | - added happn-stats and dependency
|
385 | - only test master and PR in travis
|
386 |
|
387 | 5.2.0 2018-02-05
|
388 | ----------------
|
389 | - expand stats to include queue messages/second (rate)
|
390 |
|
391 | 5.2.1 2018-02-26
|
392 | ----------------
|
393 | - fixed invalid credentials error code to 401
|
394 |
|
395 | 5.3.0 2018-03-13
|
396 | ----------------
|
397 | - all tests refactored
|
398 | - able to add custom data to groups, tested
|
399 | - fixed browser tests
|
400 | - fixed prepareOptions in client for redundant connections
|
401 |
|
402 | 6.0.0 2018-03-13
|
403 | ----------------
|
404 | - replicate security changes where happn-cluster is present
|
405 | - db is versioned, and can be upgraded
|
406 | - cookie token permissionSetKey removed
|
407 | - fixed group deleted but not unlinked properly
|
408 | - updated 401 return on http calls
|
409 |
|
410 | 6.1.0 2018-04-18
|
411 | ----------------
|
412 | - fixed 401 issue with auth invalid credentials failure
|
413 | - merge only subscriptions
|
414 |
|
415 | 6.2.0 2018-04-19
|
416 | ----------------
|
417 | - local admin login
|
418 | - tested _ADMIN password can be changed
|
419 |
|
420 | 6.2.1 2018-04-20
|
421 | ----------------
|
422 | - activate session management no longer calls dataChanged
|
423 |
|
424 | 6.3.0 2018-04-25
|
425 | ----------------
|
426 | - lisUsers optimised
|
427 | - listUsers criteria
|
428 |
|
429 | 6.3.1 2018-05-01
|
430 | ----------------
|
431 | - removed unnecessary bindings
|
432 | - removed unnecessary try catch blocks
|
433 |
|
434 | 6.3.2 2018-05-03
|
435 | ----------------
|
436 | - security caches refactor
|
437 | - security caches extended tests
|
438 | - lru cache now has getSync and setSync methods
|
439 | - lru cache now has values method
|
440 | - security users and groups refactor
|
441 |
|
442 | 7.0.0 2018-05-10
|
443 | ----------------
|
444 | - allowed set and on paths are more permissive with regards to special characters '(' ')' '&'
|
445 | - set paths are not allowed to contain the * character
|
446 | - server side path checking
|
447 | - increment set functionality and tests
|
448 |
|
449 | 7.1.0 2018-05-16
|
450 | ----------------
|
451 | - added the includeGroups:false functionality in getUser
|
452 |
|
453 | 7.1.1 2018-05-15
|
454 | ----------------
|
455 | - groups no longer in session passed back on login, smaller on the wire
|
456 |
|
457 | 7.1.2 2018-05-18
|
458 | ----------------
|
459 | - more permissive paths in set and on, now % : is also allowed
|
460 |
|
461 | 7.1.3 2018-05-26
|
462 | ----------------
|
463 | - handle_error now unit tested
|
464 | - handle_error now has fatal option, only puts client into ERROR state if fatal
|
465 |
|
466 | 7.1.4 2018-05-28
|
467 | ----------------
|
468 | - fixed intermittent issue with removal of decoupled session groups in security
|
469 |
|
470 | 7.2.0 2018-06-07
|
471 | ----------------
|
472 | - feature: templated permissions
|
473 | - fix: login lockout bug
|
474 |
|
475 | 7.2.1 2018-05-28
|
476 | ----------------
|
477 | - fix: error when login locks not explicitly enabled
|
478 |
|
479 | 7.2.2 2018-05-28
|
480 | ----------------
|
481 | - refactor: jshint integration
|
482 | - dep: package pem updated for new openssl libs
|
483 |
|
484 | 7.2.3 2018-08-23
|
485 | ----------------
|
486 | - refactor: client unit tests
|
487 | - jshint syntax fixes
|
488 |
|
489 | 7.3.0 2018-08-23
|
490 | ----------------
|
491 | - feature: getUsersByGroup
|
492 |
|
493 | 8.0.0 2018-09-10
|
494 | ----------------
|
495 | - fix: deleteUser removes tree first then user
|
496 | - change: removed wild-pare, and included tame-search, wildcards now dealt with differently
|
497 | - change: client now has state property holding all mutable state
|
498 | - change: client now uses status property to indicate connection state
|
499 | - change: happn-3 protocol now sends back a security-directory-changed system event
|
500 | - change: protocol now logs a verbose error on AccessDenied
|
501 |
|
502 | 8.0.1 2018-10-15
|
503 | ----------------
|
504 | - fix: disconnect issue with protocol 2 client and protocol 2 server
|
505 |
|
506 | 8.0.2 2018-10-20
|
507 | ----------------
|
508 | - fix: nedb provider now clones incoming data
|
509 |
|
510 | 8.1.0 2018-10-31
|
511 | ----------------
|
512 | - security patch: cookie client adds is now secure
|
513 | - security patch: hsts header when https mode
|
514 | - security enhancement: allow _ADMIN connections on intra-process only by configuration
|
515 |
|
516 | 8.1.1 2018-11-06
|
517 | ----------------
|
518 | - fix: scope issue with middleware
|
519 | - refactor: service.js cleaned up
|
520 |
|
521 | 8.1.2 2018-11-07
|
522 | ----------------
|
523 | - fix: issue with __transformResponse protocol happn_1, bad callback
|
524 | - fix: security, users that are substrings of other users get returned by getUser
|
525 | - test: updated travis.yml
|
526 |
|
527 | 8.1.3 2018-11-07
|
528 | ----------------
|
529 | - fix: protocol fail for encrypted payloads issue
|
530 |
|
531 | 8.2.0 2018-11-15
|
532 | ----------------
|
533 | - feature: variable depth subscriptions
|
534 |
|
535 | 8.2.1 2018-11-16
|
536 | ----------------
|
537 | - fix: overlapping variable depth subscriptions, different depths
|
538 | - doc: updated variable depth on readme
|
539 |
|
540 | 8.2.2 2019-01-02
|
541 | ----------------
|
542 | - fix #172: remove large unused 'trie-search' dep
|
543 |
|
544 | 8.2.3 2019-01-02
|
545 | ----------------
|
546 | - fix: happn_1.3.0 protocol backward compatibility
|
547 |
|
548 | 8.2.4 2019-01-02
|
549 | ----------------
|
550 | - fix: happn_1.3.0 protocol backward compatibility - outbound
|
551 |
|
552 | 8.2.5 2019-01-18
|
553 | ----------------
|
554 | - fix: listUserNamesByGroup does not work on mongodb (issue 180 workaround)
|
555 |
|
556 | 8.2.6 2019-01-24
|
557 | ----------------
|
558 | - issue #184 fix: cannot read status of null in .on response of client
|
559 | - lru cache issue
|
560 |
|
561 | 8.2.7 2019-02-01
|
562 | ----------------
|
563 | - client now disregards permission change errors when reattaching sessions
|
564 | - using dezalgo in more obvious security methods that early exit with callbacks
|
565 |
|
566 | 9.0.0 2019-03-01
|
567 | ----------------
|
568 | - performance optimizations for embedded version: issue #170
|
569 |
|
570 | 9.0.1 2019-03-17
|
571 | ----------------
|
572 | - session service configures session correctly for heartbeats
|
573 |
|
574 | 9.0.2 2019-03-24
|
575 | ----------------
|
576 | - latest primus-wrapper
|
577 |
|
578 | 9.0.3 2019-04-11
|
579 | ----------------
|
580 | - patch: regenerated browser_primus
|
581 |
|
582 | 9.0.4 2019-04-11
|
583 | ----------------
|
584 | - issue #181,#196,
|
585 | - happn-logger version 0.1.0
|
586 | - configurable iteration count pbkdf2
|
587 |
|
588 | 9.0.5 2019-05-22
|
589 | ----------------
|
590 | - fix: $regex filter
|
591 |
|
592 | 9.1.0 2019-05-24
|
593 | ----------------
|
594 | - feature: skip capability for client search/get
|
595 | - doc: updated README
|
596 |
|
597 | 9.1.1 2019-06-04
|
598 | ----------------
|
599 | - fix: parseFields issue with $or operator
|
600 |
|
601 | 10.0.0 2019-06-10
|
602 | -----------------
|
603 | - authority delegation, onBehalfOf
|
604 |
|
605 | 10.0.1 2019-06-10
|
606 | -----------------
|
607 | - cleanup: removed range code from client
|
608 | - doc: updated readme
|
609 | - dep: updated ws
|
610 | - dep: updated happn-stats
|
611 |
|
612 | 10.1.0 2019-07-08
|
613 | -----------------
|
614 | - fix #209 - implement ability to respond with a HTML file for unauthorized/forbidden requests
|
615 | - fix #210 - respond with status code '401 Unauthorized' for invalid or missing token instead of '403 Forbidden'
|
616 |
|
617 | 10.1.1 2019-07-09
|
618 | -----------------
|
619 | - fix: issue with client error and ws v7
|
620 | - fix: opts on convenience client methods for auth delegation
|
621 |
|
622 | 10.1.2 2019-07-30
|
623 | -----------------
|
624 | - fix: 217 Update bluebird dependency
|
625 |
|
626 | 10.1.3 2019-07-30
|
627 | -----------------
|
628 | - security update: include happn leaf in permission identity
|
629 | - fix: issue with client error and ws v7, handle old ws
|
630 |
|
631 | 10.2.0 2019-08-16
|
632 | -----------------
|
633 | - Issue #222 - Add count capability to data provider
|
634 |
|
635 | 10.2.1 2019-08-23
|
636 | -----------------
|
637 | - Issue: access denied security logs username and password via JSON.stringify
|
638 |
|
639 | 10.2.2 2019-08-28
|
640 | -----------------
|
641 | - session logs browser primus writer
|
642 | - revokeSession revokes token, including across the cluster
|
643 | - reverted to v6.1 of ws - backward compatibility issue, ws 6.2+ checks sec header format causing failures of devices in the field
|
644 |
|
645 | 10.2.3 2019-09-12
|
646 | -----------------
|
647 | - getOnBehalfOfSession now includes the delegate sessions happn property
|
648 | - sessionFromRequest includes happn property fetched from system service
|
649 |
|
650 | 10.3.0 2019-10-07
|
651 | -----------------
|
652 | - prettier and eslint updates
|
653 | - using uglify-es for minify in packager
|
654 | - listUsers and listGroups now allow for mongo filters
|
655 |
|
656 | 10.4.0 2019-10-08
|
657 | -----------------
|
658 | - listUsers and listGroups now allow for extended search options (sort, limit, skip, count)
|
659 | - updates to data provider to allow for aggregate, collation and count in mongodb
|
660 |
|
661 | 10.4.1 2019-10-14
|
662 | -----------------
|
663 | - listUsers collation fix
|
664 | - mongodb listUsers and listGroups tests
|
665 | - fix: broken browser client, due to lint fix, undeclared _this
|
666 | - Object.assign polyfill (IE11 support)
|
667 |
|
668 | 10.4.2 2019-10-23
|
669 | -----------------
|
670 | - lint prettier tests
|
671 |
|
672 | 10.4.3 2019-11-11
|
673 | -----------------
|
674 | - cache fixes - clearTimeout on persisted cache
|
675 | - test: user deletion and recreation token reuse (test/integration/security/access_sanity)
|
676 |
|
677 | 11.0.0 2019-11-17
|
678 | -----------------
|
679 | - feature: client session end events
|
680 | - chore: lint fixes
|
681 | - feature: happner-2 #158, configure usernames to be case-insensitive
|
682 | - test: happner-2 #179, client testing to ensure retries still happen after ENOTFOUND
|
683 | - dep: happner-2 #186, using version 1.0.0 of happn-util-crypto, latest bitcore
|
684 | - feature: happner-2 #188, happn client saved to .happner by packager
|
685 | - feature: security config setting: lockTokenToUserId: users now created with userid which is embedded in the token, which is checked against token logins and HTTP requests
|
686 | - fix: packager ensure .happner home directory
|
687 | - feature: sessionTokenSecret is retained between startups
|
688 |
|
689 | 11.0.1 2019-11-29
|
690 | -----------------
|
691 | - fix: __cleanseRequestForLogs fails when message.request is undefined, happner-2 #226
|
692 |
|
693 | 11.1.0 2019-12-05
|
694 | -----------------
|
695 | - feature: allow for volatile permissions via the persistPermissions security config setting, happn-3 #245
|
696 |
|
697 | 11.1.1 2020-01-13
|
698 | -----------------
|
699 | - fix: client Socket is constructed with the pingTimeout option set to a default of 45e3, this is configurable
|
700 |
|
701 | 11.1.2 2020-01-17
|
702 | -----------------
|
703 | - fix: upsertUser and upsertGroup and deleteUser and deleteGroup check for undefined or not object user or group
|
704 | - fix #254: include port number in listen error log msg
|
705 |
|
706 | 11.1.3 2020-01-26
|
707 | -----------------
|
708 | - fix: client login failure (ECONNREFUSED) memory leak
|
709 |
|
710 | 11.1.4 2020-01-30
|
711 | -----------------
|
712 | - fix: session-end on expired token after system time change
|
713 | - fix: double error is not emitted on connection failure when failure occurs in callback
|
714 |
|
715 | 11.2.0 2020-02-15
|
716 | -----------------
|
717 | - feature: unconfigured session removal
|
718 | - fix: client reconnect strategy only for reconnections, not for initial connection timeouts
|
719 |
|
720 | 11.2.1 2020-02-26
|
721 | -----------------
|
722 | - optimisation: setImmediate on incoming data from socket in session service
|
723 |
|
724 | 11.2.2 2020-03-05
|
725 | -----------------
|
726 | - fix #274: Bring back IE11 compatibility.
|
727 |
|
728 | 11.2.3 2020-03-05
|
729 | -----------------
|
730 | - fix: #272 - primus leaks on client __endSocket
|
731 | - fix: removed Promisify of handleMessage in session service
|
732 |
|
733 | 11.2.4 2020-03-16
|
734 | -----------------
|
735 | - refactor: prioritization of data providers by length of filter pattern desc
|
736 | - fix: when using volatile permissions, system permissions starting with _ are retained in same datastore as groups
|
737 | - fix #283: client connection status is set to ACTIVE before authentication happens, added new status RECONNECT_ACTIVE
|
738 |
|
739 | 11.3.0 2020-03-30
|
740 | -----------------
|
741 | - test: per message deflate compression configuration, issue #282
|
742 | - doc: per message deflate compression README update
|
743 | - fix: 403 returned on token ttl, issue #287
|
744 | - feature: leaner publish functionality on the client, issue #281
|
745 | - refactor: CONSTANTS being used for authorization failure messages
|
746 |
|
747 | 11.3.1 2020-04-20
|
748 | -----------------
|
749 | - fixes #290 cookie name appended with _https if protocol is https
|
750 | - feature login with cookie fixes #297
|
751 | - possible breaking: stats now only being created if emit:true in config (no-one really uses the stats...)
|
752 | - fixes #292 - eat the rest of the post after sending an unauthorized/forbidden
|
753 | - fixes #295 - _ADMIN user locked out of web requests causes crash
|
754 | - feature: IP address whitelisting fixes #299
|
755 |
|
756 | 11.3.2 2020-04-20
|
757 | -----------------
|
758 | - fix #303 - upgrade to async@3 throughout
|
759 | - fix: publication count functionality in client, adjusted backward compatibility tests for this
|
760 |
|
761 | 11.4.0 2020-04-29
|
762 | -----------------
|
763 | - feature - new connect event #300
|
764 | - feature - connect, authentic, configure-session, disconnect events have more client data #300
|
765 | - fix: safeSessionData no longer includes token
|
766 | - protocol feature: client now sends happn version up with configure session
|
767 | - neatened up security directory changes event names into constants
|
768 |
|
769 | 11.4.1 2020-05-22
|
770 | -----------------
|
771 | - feature: configurable http/s keepalive
|
772 |
|
773 | 11.4.2 2020-05-27
|
774 | -----------------
|
775 | - fix: added eachSeries to subscription service securityDirectoryChanged
|
776 |
|
777 | 11.5.0 2020-06-04
|
778 | -----------------
|
779 | - fix #309: added slice to doHandover in client, as in place modification of the state.events causes follow on handlers to be missed
|
780 | - feature: explicit promisify on .on and onAll for client, allows for subscription promises to work
|
781 | - feature: once convenience method on client subscriptions
|
782 |
|
783 | 11.5.1 2020-06-12
|
784 | -----------------
|
785 | - fixes #313 #314 - permissions tree and regex caching optimisations
|
786 | - wrapImmediate utility function and wrapImmediate of nedb provider functions
|
787 |
|
788 | 11.5.2 2020-06-18
|
789 | -----------------
|
790 | - test: renamed _ security integration tests to use -
|
791 | - test: user deleted backward compatibility and integration tests
|
792 | - log: delete and add user or group info logs
|
793 | - fix #316: merge upsert mutates input data
|
794 |
|
795 | 11.5.3 2020-06-30
|
796 | -----------------
|
797 | - refactor: removed bluebird dependency
|
798 |
|
799 | 11.5.4 2020-07-15
|
800 | -----------------
|
801 | - optimisation: tame-search upgrade for faster unsubscribes
|
802 |
|
803 | 11.6.0 2020-08-13
|
804 | -----------------
|
805 | - feature: default info level log in JSON format on session attach and detach - SMC-729
|
806 | - test: scripts for client connection leaks and infinite loop issue - SMC-731
|
807 |
|
808 | 11.7.0 2020-08-19
|
809 | -----------------
|
810 | - feature: ability to switch off info level log in JSON format on session attach and detach - SMC-775
|
811 |
|
812 | 11.7.1 2020-09-21
|
813 | -----------------
|
814 | - bug: maybePromisify does not call resolve the promise if options and an undefined callback is passed - SMC-1108
|
815 |
|
816 | 11.7.2 2020-09-30
|
817 | -----------------
|
818 | - patch: race condition on load permissionset - SMC-1028
|
819 |
|
820 | 11.7.3 2020-09-30
|
821 | -----------------
|
822 | - patch: selective security cache clearing and concurrency 1 queue on dataChanged event - SMC-1189
|
823 | - feature: ability to switch off removal of subscriptions on security directory changed effected sessions
|
824 | - fix #180: path_only selects now work on mongo
|
825 |
|
826 | 11.8.0 2020-11-19
|
827 | -----------------
|
828 | - feature: SMC-1269 - logging a JSON object on socket error
|
829 | - feature: SMC-1321 - only print error message for fail to decode JSON socket error, also just warning
|
830 |
|
831 | 11.8.1 2020-11-23
|
832 | -----------------
|
833 | - SMC-1482 - fix: redirected logs not in correct format
|
834 |
|
835 | 11.9.0 2021-03-19
|
836 | -----------------
|
837 | - [ERRONEOUS PUBLISH - on tag dep-updates]
|
838 |
|
839 | 11.10.0 2021-03-30
|
840 | -----------------
|
841 | - feature: SMC-1808 - Add support for permissions on the happn user
|
842 | - feature: SMC-1897 - nedb data provider must sync db file after each persistent write
|
843 |
|
844 | 11.10.1 2021-04-15
|
845 | -----------------
|
846 | - fix: SMC-1425 - maybePromisify and stale token, after server token change causing unhandled error
|
847 |
|
848 | 11.10.2 2021-04-21
|
849 | -----------------
|
850 | - fix: SMC-2474 - client fixed to be backward compatible with <11.10.0 servers, which do not send back user with permissions on dataChanged |
\ | No newline at end of file |