This repository has been archived by the owner on Jul 24, 2021. It is now read-only.
v3.0.0-b5
Pre-release
Pre-release
·
403 commits
to master
since this release
Release v3.0.0-b5 [PR #976](https://github.com/joyent/conch/pull/976) - `v3 b5 fixes` === * Branch: ether/v3-b5-fixes * Revision: 85e5d45ee * Labels: api, database, enhancement, security, tests, v3.0 > - truncate validation_result and validation_result_member tables in an earlier migration, so v3 deployment happens much faster > - ..which lets us add a unique constraint that was otherwise being held back until after v3.0.0, because a runtime script would need to be run to merge validation_result rows together (to add the uniqueness that is now being enforced) > - add POST /user/me endpoint > - fix use of ETag header for device caching (now that my mojo patch is in) > - lots of cleanup and additional tests surrounding user authentication and the use of JWTs and session cookies > > No breaking changes for clients, but a config name is changing. People --- * Author: [karenetheridge](https://github.com/karenetheridge) * Merged By: [karenetheridge](https://github.com/karenetheridge) * Merged: 2020-01-17T18:16:40Z Commits --- * [880ce8](https://github.com/joyent/conch/commit/880ce8405fc545f212d35aee198d4ea064e7582e) - `speed up this migration during v2->v3 migration by skipping these huge tables` * [560b8d](https://github.com/joyent/conch/commit/560b8d191556b906c78a779acfdef495489d2e7f) - `enforce validation_result with a unique constraint` * [b1b39d](https://github.com/joyent/conch/commit/b1b39d19e2b932d082bbd9d039b82f42ed8696c1) - `fix spelling test` * [052ac9](https://github.com/joyent/conch/commit/052ac98f685a680152be40ff9c804a2002bcbeae) - `add POST /user/me` * [905256](https://github.com/joyent/conch/commit/9052560d1c94d80e92e5f4237b1a942969440c45) - `clean up routing documentation` * [55fccd](https://github.com/joyent/conch/commit/55fccd0655f5334f6c25921ce88aa7748de47b37) - `combine some duplicate code for user lookups into a common shortcut` * [3029b7](https://github.com/joyent/conch/commit/3029b7951b92753a3f7d8b0b09599f440475e614) - `remove use of possibly-undefined variable` * [14cf84](https://github.com/joyent/conch/commit/14cf848760c0f648d50313f18694b7dece047d11) - `switch GET /device/:id ETag to weak form` * [9c5992](https://github.com/joyent/conch/commit/9c59928ae96970fe2504a676ab3dd0c80fbcea3f) - `clean up uses of the application config` * [a3cf30](https://github.com/joyent/conch/commit/a3cf30788e5cec077dcbd57e9f93924fe0bf4fd0) - `actually test using two JWTs at the same time` * [b379b5](https://github.com/joyent/conch/commit/b379b5326b02b91665db06349f27664beddc1b26) - `test exactly which auth failure occurred` * [dfe2e1](https://github.com/joyent/conch/commit/dfe2e116a2bbded5c896982efacc8049627c773e) - `do not log use of session when JWT is also set and being used` * [6ab992](https://github.com/joyent/conch/commit/6ab9926fa015988d9ad8af9815b6057180641228) - `allow configuring the expiration time for persistent session cookies` * [5a3626](https://github.com/joyent/conch/commit/5a3626b95260b8d9c56293fd9726b537de7fcd3a) - `pull session management out into a separate sub` * [e005b7](https://github.com/joyent/conch/commit/e005b749c29d42594ab0c665e089c6c387a7df17) - `no longer store to the user session when logging in, by default` * [09209e](https://github.com/joyent/conch/commit/09209e355511a3f8ef3ee1fcb029b0cd96816edc) - `fix checking of refuse_session_auth` * [1a83f6](https://github.com/joyent/conch/commit/1a83f6c14cdf9546bc504bfc5b589bce0a20394c) - `rename persistent session variable from "user" to "user_id"` * [182914](https://github.com/joyent/conch/commit/182914d270e217dd205ffc00fc1a0def1b3e8117) - `make session cookie even more secure` - - -