1
0
mirror of https://github.com/actix/actix-extras.git synced 2024-11-27 17:22:57 +01:00
actix-extras/actix-cors/CHANGES.md
2022-10-27 00:03:27 +01:00

4.7 KiB

Changes

Unreleased - 2022-xx-xx

  • Add Cors::allow_private_network_access() behind an unstable flag (draft-private-network-access). [#297]

0.6.3 - 2022-09-21

  • Add Cors::block_on_origin_mismatch() option for controlling if requests are pre-emptively rejected. #287
  • Minimum supported Rust version (MSRV) is now 1.59 due to transitive time dependency.

0.6.2 - 2022-08-07

  • Fix expose_any_header to return list of response headers. #273
  • Minimum supported Rust version (MSRV) is now 1.57 due to transitive time dependency.

0.6.1 - 2022-03-07

  • Do not consider requests without a Access-Control-Request-Method as preflight. #226

0.6.0 - 2022-02-25

  • Update actix-web dependency to 4.0.

0.6.0-beta.10 - 2022-02-07

  • Ensure that preflight responses contain a Vary header. #224

0.6.0-beta.9 - 2022-02-07

  • Relax body type bounds on middleware impl. #223
  • Update actix-web dependency to 4.0.0-rc.1.

0.6.0-beta.8 - 2021-12-29

  • Minimum supported Rust version (MSRV) is now 1.54.

0.6.0-beta.7 - 2021-12-18

  • Update actix-web dependency to 4.0.0-beta.15. #216

0.6.0-beta.6 - 2021-12-13

  • Fix panic when wrapping routes with dynamic segments in their paths. #213

0.6.0-beta.5 - 2021-12-12 (YANKED)

  • Update actix-web dependency to 4.0.0.beta-14. #209

0.6.0-beta.4 - 2021-11-22

  • No significant changes since 0.6.0-beta.3.

0.6.0-beta.3 - 2021-10-21

  • Make Cors middleware generic over body type #195
  • Fix expose_any_header behavior. #204
  • Update actix-web dependency to v4.0.0-beta.10. #203
  • Minimum supported Rust version (MSRV) is now 1.52.

0.6.0-beta.2 - 2021-06-27

  • No notable changes.

0.6.0-beta.1 - 2021-04-02

  • Update actix-web dependency to 4.0.0 beta.
  • Minimum supported Rust version (MSRV) is now 1.46.0.

0.5.4 - 2020-12-31

  • Fix expose_any_header method, now set the correct field. #143

0.5.3 - 2020-11-19

  • Fix version spec for derive_more dependency.

0.5.2 - 2020-11-15

  • Ensure tinyvec is using the correct features.
  • Bump futures-util minimum version to 0.3.7 to avoid RUSTSEC-2020-0059.

0.5.1 - 2020-11-05

  • Fix allow_any_header method, now set the correct field. #121

0.5.0 - 2020-10-19

  • Disallow * in Cors::allowed_origin. #114.
  • Hide CorsMiddleware from docs. #118.
  • CorsFactory is removed. #119
  • The impl Default constructor is now overly-restrictive. #119
  • Added Cors::permissive() constructor that allows anything. #119
  • Adds methods for each property to reset to a permissive state. (allow_any_origin, expose_any_header, etc.) #119
  • Errors are now propagated with Transform::InitError instead of panicking. #119
  • Fixes bug where allowed origin functions are not called if allowed_origins is All. #119
  • AllOrSome is no longer public. #119
  • Functions used for allowed_origin_fn now receive the Origin HeaderValue as the first parameter. #120

0.4.1 - 2020-10-07

  • Allow closures to be used with allowed_origin_fn. #110

0.4.0 - 2020-09-27

  • Implement allowed_origin_fn builder method. #93
  • Use TryInto instead of TryFrom where applicable. #106

0.3.0 - 2020-09-11

  • Update actix-web dependency to 3.0.0.
  • Minimum supported Rust version (MSRV) is now 1.42.0.
  • Implement the Debug trait on all public types.

0.3.0-alpha.1 - 2020-03-11

  • Minimize futures-* dependencies
  • Update actix-web dependency to 3.0.0-alpha.1

0.2.0 - 2019-12-20

  • Release

0.2.0-alpha.3 - 2019-12-07

  • Migrate to actix-web 2.0.0
  • Bump derive_more crate version to 0.99.0

0.1.0 - 2019-06-15

  • Move cors middleware to separate crate