Skip to content

Releases: maxcountryman/tower-sessions

v0.5.0

12 Nov 19:32
Compare
Choose a tag to compare

What's Changed

Breaking Changes

Note that applications using the old default, "tower.sid", may continue to do so without disruption by specifying with_name("tower.sid").

Full Changelog: v0.4.3...v0.5.0

v0.4.3

11 Nov 16:45
Compare
Choose a tag to compare

Important Security Fix

If your application uses MokaStore or MemoryStore, please update immediately to ensure proper server-side handling of expired sessions.

What's Changed

  • Make HttpOnly configurable by @DominicWrege in #81
  • Ensure memory and Moka store persist expiry. #82

New Contributors

Full Changelog: v0.4.2...v0.4.3

v0.4.2

10 Nov 23:22
Compare
Choose a tag to compare

What's Changed

Provide tracing instrumentation. #72
Ensure non-negative max-age. #79

Full Changelog: v0.4.1...v0.4.2

v0.4.1

01 Nov 02:49
Compare
Choose a tag to compare

What's Changed

  • Fix lifecycle state persisting in stores when it should not. #71

Full Changelog: v0.4.0...v0.4.1

v0.4.0

31 Oct 16:57
Compare
Choose a tag to compare

What's Changed

Breaking Changes

  • Sessions are serialized and deserialized from stores directly and SessionRecord is removed.
  • Expiration time has been replaced with an expiry type. #60
  • Drop session-prefix from session types. #62
  • The session modified method is renamed to is_modified.
  • Session active semantic is now defined by stores and the active method removed. #65 and #69
  • Service now contains session configuration and CookieConfig is removed. #67
  • Deletion task is now provided via the deletion-task feature flag. #70

Full Changelog: v0.3.3...v0.4.0

v0.3.3

16 Oct 14:48
Compare
Choose a tag to compare

What's Changed

  • Ensure loaded sessions are removed whenever they can be; do not couple removal with session saving.

Full Changelog: v0.3.2...v0.3.3

v0.3.2

16 Oct 00:28
Compare
Choose a tag to compare

What's Changed

  • Implement reference-counted garbage collection for loaded sessions. #52
  • Make SessionId's UUID public. #53

Full Changelog: v0.3.0...v0.3.2

v0.3.1

11 Oct 03:27
Compare
Choose a tag to compare

What's Changed

  • Use DashMap entry API to address data race introduced by dashmap. #41

Full Changelog: v0.3.0...v0.3.1

v0.3.0

10 Oct 23:29
Compare
Choose a tag to compare

What's Changed

Breaking Changes

  • tokio feature flag is now tokio-rt.
  • Session IDs are returned as references now.

Other Changes

  • Update fred to 7.0.0.
  • Track loaded sessions to enable concurrent access. #37

Full Changelog: v0.2.4...v0.3.0

v0.2.4

09 Oct 21:24
1cafc8a
Compare
Choose a tag to compare

What's Changed

  • Fix session saving and loading data race. #36

Full Changelog: v0.2.3...v0.2.4