Skip to content

Commit

Permalink
Update changelog
Browse files Browse the repository at this point in the history
  • Loading branch information
@Lxstr
Lxstr committed Mar 17, 2024
1 parent d4dda9f commit 8508fb9
Showing 1 changed file with 11 additions and 5 deletions.
16 changes: 11 additions & 5 deletions CHANGES.rst
View file
Original file line number Diff line number Diff line change
@@ -1,20 +1,26 @@
Version 0.7.0rc2
0.7.0 - unreleased
------------------

Changed
~~~~~~~~
- Access session interfaces with ``flask_session.redis.RedisSessionInterface``.

Added
~~~~~~~
- Use msgpack for serialization, along with ``SESSION_SERIALIZATION_FORMAT`` to choose between ``'json'`` and ``'msgpack'``.
- All sessions that are accessed or modified while using 0.7.0 will convert to msgspec. Once using 1.0.0, any sessions that are still in pickle will be cleared upon access.
- Add time-to-live expiration for MongoDB.
- Add retry for SQL based storage.
- Add ``flask session_cleanup`` command and alternatively, ``SESSION_CLEANUP_N_REQUESTS`` for SQLAlchemy or future non-TTL backends.
- Type hints.
- Add type hints.
- Add logo and additional documentation.
- Add vary cookie header when session modified or accessed as per flask's built-in session.
- Add regenerate method to session interface to mitigate fixation.

Deprecated
Removed
~~~~~~~~~~
- Deprecated pickle. It is still available to read existing sessions, but will be removed in 1.0.0. All sessions will transfer to msgspec upon first interaction with 0.1.0.
- Remove null session in favour of specific exception messages.
- Deprecate pickle. It is still available to read existing sessions, but will be removed in 1.0.0. All sessions will convert to msgspec upon first interaction with 0.1.0.
- Deprecate ``SESSION_USE_SIGNER``.
- Deprecate :class:`flask_session.filesystem.FileSystemSessionInterface` in favor of the broader :class:`flask_session.cachelib.CacheLibSessionInterface`.

Expand All @@ -23,8 +29,8 @@ Fixed
- Prevent sid reuse on storage miss.
- Abstraction to improve consistency between backends.
- Enforce ``PERMANENT_SESSION_LIFETIME`` as expiration consistently for all backends.
- Use Vary cookie header as per Flask.
- Specifically include backend session interfaces in public API and document usage.
- Fix non-permanent sessions not updating expiry.


Version 0.6.0
Expand Down

0 comments on commit 8508fb9

Please sign in to comment.