Skip to content
Browse files

NEWS & CHANGES: Bring 1.2.0 entries up to date with branch 1.2.x

  • Loading branch information...
1 parent bb3862e commit d86edfcc0cbd70697cec6a893f9d2d8fefa35fd0 @janl janl committed Jan 30, 2012
Showing with 13 additions and 0 deletions.
  1. +8 −0 CHANGES
  2. +5 −0 NEWS
View
8 CHANGES
@@ -36,6 +36,12 @@ Authentication:
By default this is disabled (secrets are stored in the .ini)
but can be enabled via the .ini configuration key `use_users_db`
in the `couch_httpd_oauth` section.
+ * Documents in the _users database are no longer publicly
+ readable.
+ * Confidential information in the _replication database is no
+ longer publicly readable.
+ * Password hashes are now calculated by CouchDB. Clients are no
+ longer required to do this manually.
* Cookies used for authentication can be made persistent by enabling
the .ini configuration key `allow_persistent_cookies' in the
`couch_httpd_auth` section.
@@ -91,6 +97,8 @@ Storage System:
View Server:
+ * Add CoffeeScript (http://coffeescript.org/) as a first class view server
+ language.
* Fixed old index file descriptor leaks after a view cleanup.
* The requested_path property keeps the pre-rewrite path even when no VHost
configuration is matched.
View
5 NEWS
@@ -50,6 +50,11 @@ This version has not been released yet.
a filter. It affected continuous pull replications with a filter.
* Fix use of OAuth with VHosts and URL rewriting.
* OAuth secrets can now be stored in the users system database.
+ * Documents in the _users database can no longer be read by everyone.
+ * Confidential information in the _replication database can no longer
+ be read by everyone.
+ * Password hashes are now calculated by CouchDB instead of the
+ client.
* Allow persistent authentication cookies.
* The requested_path property of query server request objects now has
the path requested by clients before VHosts and rewriting.

0 comments on commit d86edfc

Please sign in to comment.
Something went wrong with that request. Please try again.