11.0.0
Breaking changes
- The
basicauth
policy is not used by default anymore (#1736)
If your application relies on this specific behaviour, you now have to add explicitly settings:
multiauth.policies = basicauth
But it is recommended to use other authentication policies like the OpenID Connect or the accounts plugin instead.
# Enable plugin.
kinto.includes = kinto.plugins.accounts
# Enable authenticated policy.
multiauth.policies = account
multiauth.policy.account.use = kinto.plugins.accounts.AccountsPolicy
# Allow anyone to create their own account.
kinto.account_create_principals = system.Everyone
You will find more details the authentication settings section of the documentation
Bug fixes
- Fix crash when querystring filter contains NUL (0x00) character (fixes #1704)
- Many bugs were fixed in the Kinto Admin UI (see v1.21.0)
Documentation
- Huge refactor of documentation about authentication (#1736)
Internal changes