Releases: anexia-it/django-rest-passwordreset
1.4.1
What's Changed
- Fix the reset_password_token_created signal to be fired even when no token have been created. by @emickiewicz in #188
New Contributors
- @emickiewicz made their first contribution in #188
Full Changelog: 1.4.0...1.4.1
1.4.0
What's Changed
- add postgres workflow tests by @anx-mfischer in #168
- issue154: add reset_password_token to pre/post reset signals by @anx-abruckner in #169
- Add DRF 3.14 to Compatibility Matrix by @jonahgeorge in #179
- Add translations to Brazilian Portuguese by @silasvasconcelos in #159
- Increase max_length of user_agent to 512 by @nezhar in #182
- Implemented the possibility to return the username and email address when validating a token by @mikelandzelo173 in #184
- Added logic and test cases for generating and clearing tokens programmatically by @mikelandzelo173 in #181
- Updated CHANGELOG.md and workflows for 1.4.0 release by @nezhar in #187
New Contributors
- @jonahgeorge made their first contribution in #179
- @silasvasconcelos made their first contribution in #159
- @mikelandzelo173 made their first contribution in #184
Full Changelog: 1.3.0...1.4.0
1.3.0
What's Changed
- Allow password reset without being authenticated by @nittolese in #148
- Update readme, compatibility matrix, prepare new release by @nezhar in #167
New Contributors
- @nittolese made their first contribution in #148
Full Changelog: 1.2.1...1.3.0
1.2.1
Fixed
- CVE-2019-19844 potentials
1.2.0
1.1.0 release
Update license and setup.py
Validate a token, nullable fields
- Added an endpoint to "just" validate a token (good for SPAs, see issue #45) - big thanks to @Hall-Erik for MR #60 (and #59)
- Nullable fields for user agent and remote address are now a thing - see MR #58 and issue #34
- Use
urandom
as a "better" random number generator forRandomNumbertokenGenerator
- see commit 96e2341#diff-acc725a3d6fc8d27d175f0008640b15e - Several updates to the README
Anti Information Leakage
- Added ability to always return 200: OK, even though the email address was not found #54 - thanks to @stan-sack
- Added ability to toggle between "user requires to have a usable password" #55 - thanks to @stan-sack
- A typo in README was fixed #51 - thanks to @wencakisa
Dynamic Lookup Field
- Added dynamic lookup field for email - thanks to @iagocanalejas for PR #31
- Safe
.get()
key function for request.META - thanks to @talbenbasat for PR #40 - Docu updates
Browsable API, Password validations, and more
Integrated Pull Request #24 which adds:
- Proper validation errors
- Password validations (based on Djangos Built-in
validate_password
function) - Browsable API Support
Thanks to @thapabishwa for PR #22 and PR 27 as well as @maljuboori91 for PR #21 which inspired those changes.
Also integrated PR #20 which allows to customize Token Generation (e.g., RandomNumberTokenGenerator).
Thanks for @rtiwarihr and @iagocanalejas for their proposals and help.
Also integrated PR #18 by @iagocanalejas which adds a management command for clearing expired tokens as well as some refactoring work.
Fixed some codestyle errors (using pycodestyle
).
Added basic Support Django 2.2
Added instance
to the password_reset_token_created
signal (based on Django signals that have sender
and instance
).
Thanks to all contributors.