.. toctree:: :maxdepth: 2 versioning 1.x/index
- New
/accounts/{user id}/validate/{validation key}endpoint to validate a created account when theaccount validationoption is enabled for the accounts plugin. See :ref:`account validation <accounts-validate>` (#1973) - New
/accounts/{user id}/reset-passwordendpoint to request a temporary reset password by email when theaccount validationoption is enabled for the accounts plugin. See :ref:`account validation <accounts-validate>` (#1973)
- The
Total-Recordsheader is no longer included in any GET request. Only available in HEAD requests. Also, the name of that header is deprecated, but kept, in favor ofTotal-Objects(#1624, #710)
- JSON schemas can now be defined in the bucket metadata and will apply to every underlying collection, group or record (#1555)
- New contains_ and contains_any filter operators (fixes #343)
- When a record is pushed with an older timestamp, the collection timestamps is not dumped anymore. (#1361)
- Filtering with like can now contain wild chars (eg.
?like_nobody=*you*) It is thus now impossible to search for the*character with this operator. - New
has_filter operator (fixes #344). - JSON values are now accepted as filter values (fixes #1215, #1216, and #1217).
- Groups can now be created with a simple
PUT(fixes #793) - Batch requests now raise
400on unknown attributes (#1163).
If-MatchandIf-None-Matchprecondition headers now check the ETag for strict equality. Previous versions would allow requests if they seemed to be more recent than the current version.If-Matchnow raises412if a record doesn't exist.- A |status-409| error response is now returned when some backend integrity constraint is violated (instead of |status-503|).
- Add an OpenAPI 2.0 specification on
GET /__api__endpoint.
- Add
DELETEto the history endpoint. - Add a
basicauthcapability when activated on the server
- Add a list of
principalstohelloview. detailsattribute present in response of 404 errors.- Add support of JSON patch format to
PATCHendpoints when usingContent-Type: application/json-patch+json(as in RFC 6902). For more details, see JSON-Patch Format. - Add support of JSON merge format to
PATCHendpoints when usingContent-Type: application/merge-patch+json(as in RFC 7396). which allows to remove attributes by passingnullvalues.
- Parent attributes are now readable if children creation is allowed
- Return an empty list on the plural endpoint instead of |status-403| if the
createpermission is allowed - Now returns a |status-412| instead of a |status-403| if the
If-None-Match: *header is provided and thecreatepermission is allowed - The
permissionsattribute is now empty in the response if the user does not have the permission to write.
- Add substring query to filtering on plural endpoints (e.g
?like_person=Tim)
- Add new endpoint
GET /__version__to retrieve the information about the deployed version. - Allow sub-object filtering on plural endpoints (e.g
?person.name=Eliot) - Allow sub-object sorting on plural endpoints (e.g
?_sort=person.name)
- Add new endpoint
GET /v1/permissionsto retrieve the list of permissions granted on every kind of object.
- Allow record IDs to be any string instead of just UUID.
- Added the
GET /contribute.jsonendpoint for open-source information.
- Allow groups to get arbitrary attributes.
- Allow bucket to get arbitrary attributes.
- Delete every (writable) buckets using
DELETE /v1/buckets - Delete every (writable) collections using
DELETE /v1/buckets/<bucket-id>/collections - URLs with trailing slash are redirected only if the current URL does not exist
- Partial responses can now be specified for nested objects.
For example,
/records?_fields=address.street. - List responses are now sorted by last_modified descending by default
- Return 415 error response if client cannot accept JSON response
- Return 415 error response if client does not send JSON request
- Add the
GET /v1/__lbheartbeat__endpoint, for load balancer membership test
Note
The capabilities object in the :ref:`root URL <api-utilities>` response
now contains some flush_endpoint, schema, and default_bucket entries
if the features are enabled in settings (#270).
- Forward slashes (
/) are not escaped anymore in JSON responses (#537) - The API capabilities can be exposed in a
capabilitiesattribute in the root URL (#628). Clients can rely on this to detect optional features on the server (e.g. enabled plugins).
- Fields can be filtered in GET requests using
_fields=f1,f2in querystring - New collections can be created via
POSTrequests
- Renamed fields in the :ref:`root URL view <api-utilities>`
- Added user information like user id and default bucket id in :ref:`root URL view <api-utilities>`
- Initial working version.