PocketBase - Package Updates
-
[1.6.0]
- Update pocketbase to 0.29.0
- Full Changelog
- Enabled calling the
/auth-refreshendpoint with nonrenewable tokens. - Added the triggered rate rimit rule in the error log
details. - Added optional
ServeEvent.Listenerfield to initialize a custom network listener (e.g.unix) instead of the defaulttcp(#3233). - Added
toBytesJSVM helper (#6935). - Fixed request data unmarshalization for the
DynamicModelarray/object fields (#7022). - Fixed Dashboard page title
-escaping (#6982). - Other minor improvements (updated first superuser console text when running with
go run, clarified trusted IP proxy header label, wrapped the backup restore in a transaction as an extra precaution, updated deps, etc.).
-
[1.6.1]
- Update pocketbase to 0.29.1
- Full Changelog
- Updated the X/Twitter provider to return the
confirmed_emailfield and to use thex.comdomain (#7035). - Added Box.com OAuth2 provider (#7056; thanks @blakepatteson).
- Updated
modernc.org/sqliteto 1.38.2 (SQLite 3.50.3). - Fixed example List API response (#7049; thanks @williamtguerra).
-
[1.6.2]
- Update pocketbase to 0.29.2
- Full Changelog
- Bumped min Go GitHub action version to 1.23.12 since it comes with some minor fixes for the runtime and
database/sqlpackage.
-
[1.6.3]
- Update pocketbase to 0.29.3
- Full Changelog
- Try to forward Apple OAuth2 POST redirect user's name so that it can be returned (and eventually assigned) with the success response of the all-in-one auth call (#7090).
- Fixed
RateLimitRule.Audiencecode comment (#7098; thanks @iustin05). - Mocked
syscall.Execwhen building for WASM (#7116; thanks @joas8211). - Registered missing
$filesystem,$mails,$templateand__hooksbindings in the JSVM migrations (#7125). - Regenerated JSVM types to include methods from structs with single generic parameter.
-
[1.7.0]
- Update pocketbase to 0.30.0
- Full Changelog
- Eagerly escape the S3 request path following the same rules as in the S3 signing header (#7153).
- Added Lark OAuth2 provider (#7130; thanks @mashizora).
- Increased test tokens
expclaim to minimize eventual issues with reproducible builds (#7123). - Added
os.Rootbindings to the JSVM ($os.openRoot,$os.openInRoot). - Added
osutils.IsProbablyGoRun()helper to loosely check if the program was started usinggo run. - Various minor UI improvements (updated collections indexes UI, enabled seconds in the datepicker, updated helper texts, etc.).
- Updated the minimum package Go version to 1.24.0 and bumped Go dependencies.
-
[1.7.1]
- Update pocketbase to 0.30.1
- Full Changelog
- Excluded the
lost+founddirectory from the backups (#7208; thanks @lbndev). - Minor tests improvements (disabled initial superuser creation for the test app to avoid cluttering the std output, added more tests for the
s3.Uploader.MaxConcurrency, etc.). - Updated
modernc.org/sqliteand other Go dependencies.
-
[1.7.2]
- Update pocketbase to 0.30.2
- Full Changelog
- Bumped min Go GitHub action version to 1.24.8 since it comes with some minor security fixes
-
[1.8.0]
- Use requiresValidCertificate instead of email addon (required Cloudron 9)
-
[1.8.1]
- Update pocketbase to 0.30.3
- Full Changelog
- Fixed legacy identitity field priority check when a username is a valid email address (#7256).
- Workaround autocomplete overflow issue with Firefox 144 (#7223).
- Updated
modernc.org/sqliteto 1.39.1 (SQLite 3.50.4).
-
[1.8.2]
- Update pocketbase to 0.30.4
- Full Changelog
- Fixed
jsonfield CSS regression introduced with the overflow workaround in v0.30.3 (#7259).
-
[1.9.0]
- Update pocketbase to 0.31.0
- Full Changelog
- Visualize presentable multiple
relationfields (#7260). - Support
Ed25519in the optional OIDCid_tokensignature validation (#7252; thanks @shynome). - Added
ApiScenario.DisableTestAppCleanupoptional field to skip the auto test app cleanup and leave it up to the developers to do the cleanup manually (#7267). - Added
FileDownloadRequestEvent.ThumbErrorfield that is populated in case of a thumb generation failure (e.g. unsupported format, timing out, etc.), allowing developers to reject the thumb fallback and/or supply their own custom thumb generation (#7268). - Disallow client-side filtering and sorting of relations where the collection of the last targeted relation field has superusers-only List/Search API rule to further minimize the risk of eventual side-channel attack.
