v3.17.0

New features

• There is a new JSON logging option that is particularly useful for cloud-based deployments #878
• Media objects that have map coordinates can now be accessed as raster tiles #879
• The new /api/trees/-/verify endpoint allows to execute Gramps' data verification tool #883

Bug fixes

• Catch handle error in indexer in #877

Security

The password reset endpoint returned an error on non-existing usernames. This was changed now to always return the same status (regardless of whether the reset was successful or not), so a malicious actor cannot enumerate existing user names (i.e. discover the existence of a user account with a specific name) by brute force. Note: the endpoint already had a rate limit of 1/second, so the impact is minor. Thanks to @avduarte333 for flagging this issue. Fixed in #884

Full Changelog: v3.16.0...v3.17.0