1
0
mirror of https://github.com/actix/actix-extras.git synced 2024-11-23 23:51:06 +01:00
actix-extras/actix-identity/CHANGES.md
2023-09-16 00:30:38 +01:00

4.1 KiB

Changes

Unreleased

  • Replace use of anyhow::Error with specific error types. #296
  • Minimum supported Rust version (MSRV) is now 1.68.

0.5.2

  • Fix visit deadline. #263

0.5.1

  • Remove unnecessary dependencies. #259

0.5.0

actix-identity v0.5 is a complete rewrite. The goal is to streamline user experience and reduce maintenance overhead.

actix-identity is now designed as an additional layer on top of actix-session v0.7, focused on identity management. The identity information is stored in the session state, which is managed by actix-session and can be stored using any of the supported SessionStore implementations. This reduces the surface area in actix-identity (e.g., it is no longer concerned with cookies!) and provides a smooth upgrade path for users: if you need to work with sessions, you no longer need to choose between actix-session and actix-identity; they work together now!

actix-identity v0.5 has feature-parity with actix-identity v0.4; if you bump into any blocker when upgrading, please open an issue.

Changes:

  • Minimum supported Rust version (MSRV) is now 1.57 due to transitive time dependency.

  • IdentityService, IdentityPolicy and CookieIdentityPolicy have been replaced by IdentityMiddleware. #246

  • Rename RequestIdentity trait to IdentityExt. #246

  • Trying to extract an Identity for an unauthenticated user will return a 401 Unauthorized response to the client. Extract an Option<Identity> or a Result<Identity, actix_web::Error> if you need to handle cases where requests may or may not be authenticated. #246

    Example:

    use actix_web::{http::header::LOCATION, get, HttpResponse, Responder};
    use actix_identity::Identity;
    
    #[get("/")]
    async fn index(user: Option<Identity>) -> impl Responder {
        if let Some(user) = user {
            HttpResponse::Ok().finish()
        } else {
            // Redirect to login page if unauthenticated
            HttpResponse::TemporaryRedirect()
                .insert_header((LOCATION, "/login"))
                .finish()
        }
    }
    

0.4.0

  • Update actix-web dependency to 4.

0.4.0-beta.9

  • Relax body type bounds on middleware impl. #223
  • Update actix-web dependency to 4.0.0-rc.1.

0.4.0-beta.8

  • No significant changes since 0.4.0-beta.7.

0.4.0-beta.7

  • Update actix-web dependency to 4.0.0.beta-18. #218
  • Minimum supported Rust version (MSRV) is now 1.54.

0.4.0-beta.6

  • Update actix-web dependency to 4.0.0.beta-15. #216

0.4.0-beta.5

  • Update actix-web dependency to 4.0.0.beta-14. #209

0.4.0-beta.4

  • No significant changes since 0.4.0-beta.3.

0.4.0-beta.3

  • Update actix-web dependency to v4.0.0-beta.10. #203
  • Minimum supported Rust version (MSRV) is now 1.52.

0.4.0-beta.2

  • No notable changes.

0.4.0-beta.1

  • Rename CookieIdentityPolicy::{max_age => max_age_secs}. #168
  • Rename CookieIdentityPolicy::{max_age_time => max_age}. #168
  • Update actix-web dependency to 4.0.0 beta.
  • Minimum supported Rust version (MSRV) is now 1.46.0.

0.3.1

  • Add method to set HttpOnly flag on cookie identity. #102

0.3.0

  • Update actix-web dependency to 3.0.0.
  • Minimum supported Rust version (MSRV) is now 1.42.0.

0.3.0-alpha.1

  • Update the time dependency to 0.2.7
  • Update the actix-web dependency to 3.0.0-alpha.1
  • Minimize futures dependency

0.2.1

  • Fix panic with already borrowed: BorrowMutError #1263

0.2.0 - 2019-12-20

  • Use actix-web 2.0

0.1.0 - 2019-06-xx

  • Move identity middleware to separate crate