Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump flask-login from 0.5.0 to 0.6.2 #101

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump flask-login from 0.5.0 to 0.6.2 #101

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Aug 1, 2022

Bumps flask-login from 0.5.0 to 0.6.2.

Release notes

Sourced from flask-login's releases.

0.6.2

0.6.1

Changes: https://github.com/maxcountryman/flask-login/blob/main/CHANGES.md#version-061

0.6.0

This release sets new minimum versions of Python, Flask, and Werkzeug, and fixes compatibility with the latest versions of those.

  • Python >= 3.7
  • Flask >= 1.0.4, this will be bumped to reflect the latest supported release (2.1) in the future
  • Werkzeug >= 1.0.1, this will be bumped to reflect the latest supported release (2.1) in the future
Changelog

Sourced from flask-login's changelog.

Version 0.6.2

Released on July 25th, 2022

  • Fix compatibility with Werkzeug 2.2 and Flask 2.2. #691
  • Revert change to expand_login_view that attempted to preserve a dynamic subdomain value. Such values should be handled using app.url_value_preprocessor and app.url_defaults. #691
  • Ensure deprecation warnings are present for deprecated features that will be removed in the next feature release.
    • Use request_loader instead of header_loader.
    • Use user_loaded_from_request instead of user_loaded_from_header.
    • Use app.config["LOGIN_DISABLED"] instead of _login_disabled.
    • Use init_app instead of setup_app.

Version 0.6.1

Released on May 1st, 2022

  • Only preserve subdomain or host view args in unauthorized redirect #663
  • The new utility function login_remembered returns True if the current login is remembered across sessions. #654
  • Fix side effect potentially executing view twice for same request. #666
  • Clarify usage of FlaskLoginClient test client in docs. #668

Version 0.6.0

Released on March 30th, 2022

  • Drop support for Python 2.7, 3.5, and 3.6, which have all reached the end of their official support. #594, #638
  • The minimum supported version of Flask is 1.0.4, and Werkzeug is 1.0.1. However, projects are advised to use the latest versions of both. #639
  • Only flash "needs_refresh_message" if value is set #464
  • Modify expand_login_view to allow for subdomain and host matching for login_view #462
  • Add accessors for request_loader and user_loader callback functions #472
  • Change "remember_me" cookie to match Werkzeug default value #488
  • Change "remember_me" cookie to HttpOnly, matching Flask session cookie #488
  • Add example for using unauthorized_handler #492
  • Fix assertEqual deprecation warning in pytest #518
  • Fix collections deprecation warning under Python 3.8 #525
  • Replace safe_str_cmp with hmac.compare_digest #585
  • Document REMEMBER_COOKIE_SAMESITE config #577
  • Revise setup.py to use README.md for long description #598
  • Various documentation corrections #484, #482, #487, #534
  • Fix from flask_login import * behavior, although note that

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump flask-login from 0.5.0 to 0.6.2
18d8013 
Bumps [flask-login](https://github.com/maxcountryman/flask-login) from 0.5.0 to 0.6.2.
- [Release notes](https://github.com/maxcountryman/flask-login/releases)
- [Changelog](https://github.com/maxcountryman/flask-login/blob/main/CHANGES.md)
- [Commits](maxcountryman/flask-login@0.5.0...0.6.2)

---
updated-dependencies:
- dependency-name: flask-login
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Aug 1, 2022
@dependabot dependabot bot mentioned this pull request Aug 1, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants