Updated changelog and docs (jazzband#375)

xrmx · Andrew-Chen-Wang · web-flow · commit 4aba5b2d9189 · 2021-02-22T11:10:57.000-05:00
* Changelog uses new format of giving a link to the given PRs * Supersedes jazzband#310, jazzband#300, jazzband#292 Co-authored-by: Andrew-Chen-Wang <acwangpython@gmail.com>
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,3 +1,42 @@
+## Latest
+
+* Added Italian translations ([#342](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/342))
+* Fixed DRF app registry bug, specifically `django.core.exceptions.AppRegistryNotReady`
+  ([#331](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/331))
+* Fixed support for PyJWT>=2.0.0 ([#376](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/376))
+
+## Version 4.6
+
+* Added support for PyJWT>=2.0.0 ([#329](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/329))
+* Restored Python 3.7 support ([#332](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/332))
+* Added Indonesian translations ([#316](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/316))
+* Fixed Django 4.0 re_path deprecation ([#280](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/280))
+
+## Version 4.5
+
+* Added `AUTH_HEADER_NAME` to settings ([#309](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/309))
+* Added `USER_AUTHENTICATION_RULE` to settings ([#279](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/279))
+* Added `UPDATE_LAST_LOGIN` to settings ([#238](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/238))
+* Fixed packaging of locale folder for installation ([#117](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/117))
+* Allowed TokenUser to be configurable ([#172](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/172))
+* Dropped Python 3.7 and below (restored Python 3.7 but not 3.6 in next version) 
+* Improved error message if cryptography isn't installed
+  when developer tries to use a certain algorithm that needs the package
+  ([#285](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/285))
+* Fixed Django 4.0 ugettext_lazy deprecation warnings ([#186](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/186))
+* Remove upper bound of Python version ([#225](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/225))
+* Added DRF 3.11 support ([#230](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/230))
+
+Translations:
+* Added French translations ([#314](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/314))
+* Added Spanish translations ([#294](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/294))
+* Added Argentinian Spanish translations ([#244](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/244))
+* Added Persian translations ([#220](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/220))
+* Added German translations ([#198](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/198))
+* Added Czech translations ([#188](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/188))
+* Added Polish translations ([#166](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/166))
+* Fixed incorrect language encoding from de_CH to es_CL ([#299](https://github.com/SimpleJWT/django-rest-framework-simplejwt/pull/299))
+
 ## Version 4.4
 
 * Added official support for Python 3.8 and Django 3.0.
diff --git a/docs/development_and_contributing.rst b/docs/development_and_contributing.rst
@@ -12,6 +12,12 @@ directory:
   pip install --upgrade pip setuptools
   pip install -e .[dev]
 
+If you're running a Mac and/or with zsh, you need to escape the brackets:
+
+.. code-block:: bash
+
+  pip install -e .\[dev\]
+
 To run the tests:
 
 .. code-block:: bash
diff --git a/docs/settings.rst b/docs/settings.rst
@@ -31,6 +31,7 @@ Some of Simple JWT's behavior can be customized through settings variables in
       'AUTH_HEADER_NAME': 'HTTP_AUTHORIZATION',
       'USER_ID_FIELD': 'id',
       'USER_ID_CLAIM': 'user_id',
+      'USER_AUTHENTICATION_RULE': 'rest_framework_simplejwt.authentication.default_user_authentication_rule',
 
       'AUTH_TOKEN_CLASSES': ('rest_framework_simplejwt.tokens.AccessToken',),
       'TOKEN_TYPE_CLAIM': 'token_type',
@@ -77,7 +78,7 @@ When set to ``True``, causes refresh tokens submitted to the
 ``TokenRefreshView`` to be added to the blacklist if the blacklist app is in
 use and the ``ROTATE_REFRESH_TOKENS`` setting is set to ``True``.
 You need to add ``'rest_framework_simplejwt.token_blacklist',`` to your 
-``INSTALLED_APPS`` in the settings file to use this settings.
+``INSTALLED_APPS`` in the settings file to use this setting.
 
 Learn more about :doc:`/blacklist_app`.
 
@@ -159,7 +160,12 @@ collection will be used to build the "WWW-Authenticate" header in the response.
 ``AUTH_HEADER_NAME``
 ----------------------------
 
-The authorization header name to be used for authentication. The default is ``HTTP_AUTHORIZATION`` which will accept the ``Authorization`` header in the request. For example if you'd like to use ``X_Access_Token`` in the header of your requests please specify the ``AUTH_HEADER_NAME`` to be ``HTTP_X_ACCESS_TOKEN`` in your settings.
+The authorization header name to be used for authentication.
+The default is ``HTTP_AUTHORIZATION`` which will accept the
+``Authorization`` header in the request. For example if you'd
+like to use ``X_Access_Token`` in the header of your requests
+please specify the ``AUTH_HEADER_NAME`` to be
+``HTTP_X_ACCESS_TOKEN`` in your settings.
 
 ``USER_ID_FIELD``
 -----------------
@@ -180,6 +186,15 @@ The claim in generated tokens which will be used to store user identifiers.
 For example, a setting value of ``'user_id'`` would mean generated tokens
 include a "user_id" claim that contains the user's identifier.
 
+``USER_AUTHENTICATION_RULE``
+----------------------------
+
+Callable to determine if the user is permitted to authenticate. This rule
+is applied after a valid token is processed. The user object is passed
+to the callable as an argument. The default rule is to check that the ``is_active``
+flag is still ``True``. The callable must return a boolean, ``True`` if authorized,
+``False`` otherwise resulting in a 401 status code.
+
 ``AUTH_TOKEN_CLASSES``
 ----------------------
 
