- fix: wtforms 3.2 breaking field_flags (#2279) [Daniel Vaz Gaspar]
- fix: hardcoded year removed from copyright (#2277) [Emad Rad]
- feat: add no cache directive to login forms (#2266) [Daniel Vaz Gaspar]
- chore: bump cryptography to 42.0.4 (#2238) [Daniel Vaz Gaspar]
- docs: Fixing broken link (#2252) [Chase Jones]
- fix: rate limiter key function (#2254) [Daniel Vaz Gaspar]
- chore: bump dnspython to fix vulnerability (#2255) [Daniel Vaz Gaspar]
- feat: REST API new select columns query param (#2242) [Daniel Vaz Gaspar]
- chore: bump werkzeug to 3.0.3 (#2237) [Daniel Vaz Gaspar]
- fix: Keycloak OAuth2, get groups as role_keys per default (#2235) [Andreas 'count' Kotes]
- fix: Check if Oauth login with OKTA is correct (#1926) [Hojjat Ali Mohammadi]
- docs: Update quickcharts.rst for typo gold to goal (#2217) [Abhinav Pareek]
- fix: user search list on stats (#2211) [Daniel Vaz Gaspar]
- fix: performance issues on user and roles list (#2209) [Daniel Vaz Gaspar]
- chore(deps): bump the github-actions group with 4 updates (#2201) [dependabot[bot]]
- fix: python versions setup.py (#2204) [Daniel Vaz Gaspar]
- ci: refactor requirements structure and improve dependabot config (#2198) [Daniel Vaz Gaspar]
- chore(deps): bump jinja2 from 3.0.3 to 3.1.3 (#2180) [dependabot[bot]]
- fix: authentik test (#2199) [Daniel Vaz Gaspar]
- feat: Added authentik as new identity provider (#2168) [Jasper Schoenmaker]
- chore(deps): bump requests from 2.26.0 to 2.31.0 (#2050) [dependabot[bot]]
- docs: updated Flask-Babel link and fix typo (#2166) [Gughanathan M]
- chore: bump several non base dependencies (#2197) [Daniel Vaz Gaspar]
- fix: Increase upper bound on marshmallow-sqlalchemy (#2191) [spike77453]
- chore: remove email_validator constraint (#2167) [Marcus Lim]
- chore: Upgrade to Pillow 10.0.1 (#2136) [Dosenpfand]
- chore(docs): Update i18n.rst for Turkish (#2187) [coteli]
- chore: upgrade werkzeug and Flask, deprecate OpenID and MongoEngine (#2196) [Daniel Vaz Gaspar]
- feat: Turkish translations (#2185) [coteli]
- feat: AUTH_REMOTE_USER_ENV_VAR config key for auth REMOTE_USER type (#2193) [Daniel Vaz Gaspar]
- fix: don't load inactive users with sessions (#2192) [Daniel Vaz Gaspar]
- fix: openID provider validation flow (#2186) [Daniel Vaz Gaspar]
- feat: support Auth0 OAuth2 (#2171) [Daniel Vaz Gaspar]
- fix: azure keep using upn if exists (#2163) [Daniel Vaz Gaspar]
- docs: Update shield of supported Python versions (#2156) [Dosenpfand]
- docs: update security policy (#2155) [Daniel Vaz Gaspar]
- docs: improve LDAP auth auth_roles_mapping (#2149) [Daniel Vaz Gaspar]
- docs: Update security docs to reflect LDAP casing issues (#2098) [Anders Bogsnes]
- fix: old API api column edit (#2134) [Daniel Vaz Gaspar]
- chore: add bootstrap min map (#2148) [Daniel Vaz Gaspar]
- chore: Add support for Python 3.10, 3.11, 3.12 and drop 3.7 (#2147) [Dosenpfand]
- chore: use npm for all frontend dependencies (#2144) [Daniel Vaz Gaspar]
- ci: create release script (#2142) [Daniel Vaz Gaspar]
- fix: wtforms compat on 3.1.0 (#2138) [Daniel Vaz Gaspar]
- docs: fix RTD config requirements (#2140) [Daniel Vaz Gaspar]
- docs: fix RTD config (#2139) [Daniel Vaz Gaspar]
- docs: add RTD required config (#2135) [Daniel Vaz Gaspar]
- fix: filter list UI spacing between elements (#2128) [Daniel Vaz Gaspar]
- fix: add github sponsor (#2130) [Daniel Vaz Gaspar]
- docs: add github sponsor (#2129) [Daniel Vaz Gaspar]
- fix: swagger include js and css on static (#2127) [Daniel Vaz Gaspar]
- fix: Remove erroring endpoint "/login/<provider>/<register>" from AuthOAuthView (#2120) [David Kalamarides]
- fix: azure user info claims and JWT decode (#2121) [Daniel Vaz Gaspar]
- fix: Validate Azure JWTs using authlib (#2112) [Daniel Wolf]
- docs(typo): "preform" -> "perform" x4 (#2123) [Sam Firke]
- fix: swagger missing nonce (#2116) [Daniel Vaz Gaspar]
- fix: increase email field length (#2102) [Daniel Vaz Gaspar]
- fix: release tests exclusion (#2093) [Daniel Vaz Gaspar]
- fix: make deletion in quicktemplates example work again (#2088) [Fabian Halkivaha]
- fix: MVC form action, broken reset my password (#2091) [Daniel Vaz Gaspar]
- chore: dont add 'tests' package to wheel (#2087) [cwegener]
- chore(deps): bump pygments from 2.13.0 to 2.15.0 (#2089) [dependabot[bot]]
- fix: select filters spacing, theme and operation select (#2079) [Daniel Vaz Gaspar]
- refactor: Refactored logging functions to consistently use lazy interpolation (#2071) [Bruce]
- feat: add optional flask-talisman and use csp nonce on scripts (#2075) [Daniel Vaz Gaspar]
- chore: improve tests and test data load (#2072) [Daniel Vaz Gaspar]
- fix: marshmallow enum by value keep compatibility (#2067) [Daniel Vaz Gaspar]
- fix: marshmallow new min version to 3.18 (#2066) [Daniel Vaz Gaspar]
- fix: select2-ajax-widget (#2052) [Nadir Can Kavkas]
- chore: remove marshmallow-enum dependency (#2064) [Daniel Vaz Gaspar]
- fix: Double escaping for next param in login with oauth (#2053) [Aleksandr Musorin]
- chore: remove RemovedInMarshmallow4 warnings (#2024) [Sebastian Liebscher]
- docs: Update docs/security.rst with Windows LDAP working Example (#2026) [verschlimmbesserer]
- fix(translations): better translation of the pt_BR language (#2061) [Lucas Gonzalez de Queiroz]
- fix: broken link to config.py template (#2056) [Alex Gordienko]
- fix: user registration menu name (#2051) [Daniel Vaz Gaspar]
- fix: CRUD MVC log message (#2045) [Daniel Vaz Gaspar]
- fix: deprecated method for getting value on select2 (#2039) [Viacheslav]
- chore: bump Flask and werkzeug (#2034) [Daniel Vaz Gaspar]
- ci: improve codeql configuration (#2032) [Daniel Vaz Gaspar]
- ci: add codeQL analysis (#2031) [Daniel Vaz Gaspar]
- fix: cli create app ask for initial secret key (#2029) [Daniel Vaz Gaspar]
- fix: using base_filters with FilterEqualFunction not working for relation fields (#2011) [ThomasP0815]
- ci: bump ubuntu version, remove mockldap (#2013) [Daniel Vaz Gaspar]
- fix(mvc): operation filters with new select2 (#2005) [Daniel Vaz Gaspar]
- fix(translations): misspell in ru translations (#2002) [Stepan]
- fix: disable rate limit by default (#1999) [Daniel Vaz Gaspar]
- fix: auth rate limit docs and default rate (#1997) [Daniel Vaz Gaspar]
- feat: Add rate limiter (#1976) [bolkedebruin]
- docs: Updated LDAP Documentation (#1988) [Alissa Gerhard]
- fix: Save next URL on failed login attempt (#1936) [Dosenpfand]
- fix: select2 theme use bootstrap (#1995) [Daniel Vaz Gaspar]
- fix: CI broken by pyodbc vs unixodbc (#1996) [Daniel Vaz Gaspar]
- ci: fix pyodbc install failure (#1992) [Daniel Vaz Gaspar]
- fix: Remove unused parameter from QuerySelectMultipleField instantiation (#1991) [Dosenpfand]
- fix: Make sure user input is not treated as safe in the oauth view (#1978) [Glenn Schuurman]
- fix: don't use root logger on safe decorator (#1990) [Igor Khrol]
- chore: upgrade Font Awesome to version 6 (#1979) [Daniel Vaz Gaspar]
- feat: add opt-in outer default load option to model REST API (#1971) [Daniel Vaz Gaspar]
- chore: Add more type annotation to REST API module (#1969) [Daniel Vaz Gaspar]
- fix: upgrade Select2 to 4.0.13 (#1968) [Nicola Gramola]
- fix: REST API one-to-one relationship (#1965) [Daniel Vaz Gaspar]
- fix(api): _info HTTP 500 when exists a defined invalid search field (#1963) [Daniel Vaz Gaspar]
- chore: Use implicit default loading rather than explicit joined eager loading (#1961) [John Bodley]
- chore: Increase upper-bound on apispec (#1903) [Tomáš Drtina]
- fix: replace deprecated attachment_filename (#1956) [Steve Embling]
- feat: add utility method on SM for fetching all roles and perms for a user (#1950) [Daniel Vaz Gaspar]
- fix: HTML label IDs for db and ldap login (#1935) [Dosenpfand]
- fix: OAuth state parameter (#1932) [Daniel Vaz Gaspar]
- docs: Fix a few typos (#1929) [Tim Gates]
- chore: Update compiled german translation, delete backup file (#1928) [Dosenpfand]
- fix: addon managers import (#1920) [Daniel Vaz Gaspar]
- chore: Redirect to prev url on login for AuthRemoteUserView (#1901) [Alexander Ryndin]
- chore: Bump upper bounds on wtforms and flask-wtf (#1904) [Tomáš Drtina]
- fix(mvc): related model view setting default related field value (#1898) [Daniel Vaz Gaspar]
- fix: DateTimePicker rendering in forms (#1698) [Federico Padua]
- test(fab_cli): tag tests that need internet so they can be skipped (#1880) [jnahmias]
- fix: fix a wrong 'next' URL in javascript (#1897) [Sansarun Sukawongviwat]
- chore: allow authlib > 1 updated docs (#1891) [Daniel Vaz Gaspar]
- docs: fix oauth example config (#1890) [Daniel Vaz Gaspar]
- docs: fix oauth example config (#1889) [Daniel Vaz Gaspar]
- fix: user stats view search (#1887) [Daniel Vaz Gaspar]
- fix: Do not render hidden form fields twice (#1848) [Dosenpfand]
- chore: Bump requirements pillow version, remove PIL from doc (#1873) [Dosenpfand]
- fix: custom menu option (#1884) [Daniel Vaz Gaspar]
- fix: FAB_INDEX_VIEW type check (#1883) [Daniel Vaz Gaspar]
- fix(api): register responses with apispec using components.response() (#1881) [jnahmias]
- docs: add responsible disclosure text to security (#1882) [Daniel Vaz Gaspar]
- chore: Improve german translation (#1872) [Dosenpfand]
- fix: populating permission and vm instead of just setting the id (#1874) [Zef Lin]
- fix: remove sqlite dbs from examples (#1853) [Daniel Vaz Gaspar]
- fix(MVC): discard excluded filters from query (#1862) [Daniel Vaz Gaspar]
- fix: custom security class import, bad cast (#1851) [Daniel Vaz Gaspar]
- fix: Set certificates before reconnecting to LDAP (#1846) [Sebastian Bernauer]
- docs: add FAB_ADD_SECURITY_API config option (#1840) [Daniel Vaz Gaspar]
- feat: add keycloak auth provider options (#1832) [nilivingston]
- docs: add Azure OAUTH example (#1837) [Mathew Wicks]
- fix: security api (#1831) [Daniel Vaz Gaspar]
- fix: dependency constraints, bump flask-login, flask-wtf (#1838) [Daniel Vaz Gaspar]
- fix: noop user update on Auth db, use set user model (#1834) [Daniel Vaz Gaspar]
- chore: bump postgres to 14 (#1833) [Daniel Vaz Gaspar]
- chore: Update and fix german translation (#1827) [Dosenpfand]
- chore: Enhance is_safe_redirect_url (#1826) [Geido]
- feat: Add CRUD apis for role, permission, user (#1801) [Mayur]
- docs: updated brackets in OAuth Authentication (#1798) [David Berg]
- chore: add Slovenian language (#1828) [dkrat7]
- fix: doc requirements (#1820) [Daniel Vaz Gaspar]
- chore: major bumps Flask, Click, PyJWT and flask-jwt-extended (#1817) [Daniel Vaz Gaspar] [Breaking changes]
- test: Add test for export-roles --indent's argument “duck casting” to int (#1811) [Étienne Boisseau-Sierra]
- fix: next url on login (OAuth, OID, DB) (#1804) [Daniel Vaz Gaspar]
- docs: Update doc i18 to flask_babel (#1792) [Federico Padua]
- feat(cli): allow export-roles to be beautified (#1724) [Étienne Boisseau-Sierra]
- fix: Support SQLAlchemy 1.4.X (#1786) [Daniel Vaz Gaspar]
- feat: allow multiple values for the same filter (#1737) [Will Rogers]
- fix: Only update user.last_login on successful authentication (#1775) [blag]
- chore: update jsonschema pip package (#1782) [Hugh A. Miles II]
- fix: openapi on and off config flag (#1770) [Daniel Vaz Gaspar]
- fix: data not defined in azure oauth (#1769) [Dalton Pearson]
- fix: Handle authorize_access_token exception (#1766) [Michał Konarski]
- fix: Set role and confirm password while adding user mandatory (#1758) [Mayur]
- fix: required roles on user form not showing error msg (#1772) [Daniel Vaz Gaspar]
- fix: make servers be actual servers on swagger, full endpoint paths (#1773) [Daniel Vaz Gaspar]
- docs: adds missing config key FAB_OPENAPI_SERVERS (#1776)
- chore: Use assertEqual instead of assertEquals for Python 3.11 compatibility (#1763) [Karthikeyan Singaravelan]
- chore: improve code quality and balance (#1761) [Daniel Vaz Gaspar]
- feat: Adding role_keys into Azure OAuth (#1744) [Michael Yee]
- docs: Fix small documentation issues (#1755) [Dosenpfand]
- fix: 1154 Add LOGOUT_REDIRECT_URL setting (#1749) [blag]
- fix: optional unauthorized status codes (#1753) [Daniel Vaz Gaspar]
- docs: Fix indentation of function content (#1752) [akettmann-e24]
- fix: optionally return HTTP 403 instead of 401 when unauthorized (#1748) [Daniel Vaz Gaspar]
- chore: Redirect to prev url on login (#1747) [Geido]
- docs: add aws cognito setup code examples (#1746) [Pin Jin]
- fix: Added sr-only class to icon only links (#1727) [Thomas Stivers]
- chore: [Deprecation] Use Markup instead of HTMLString (#1729) [Andrey Polegoshko]
- chore: pin down WTForms (#1735) [Daniel Vaz Gaspar]
- fix: ModuleNotFoundError from wtforms 3.0.0 (#1733) [Ke Zhu]
- fix: add .env for docker-compose (#1728) [Daniel Vaz Gaspar]
- fix: OAuth login flow (#1707) [Daniel Vaz Gaspar]
- chore: improve tests more coverage (#1713) [Daniel Vaz Gaspar]
- docs: fix requirements funcparserlib (#1703) [Daniel Vaz Gaspar]
- chore: improve schema validation (#1712) [Daniel Vaz Gaspar]
- chore: bump dependencies (#1697) [Daniel Vaz Gaspar]
- docs: fix requirements (#1702) [Daniel Vaz Gaspar]
- docs: fix issue 1700 (#1701) [Federico Padua]
- fix: related filters with bogus data (#1695) [Daniel Vaz Gaspar]
- chore: Bump flask-openid to 1.3.0 (#1693) [Daniel Vaz Gaspar]
- chore: bump JQuery to 3.6.0 (#1688) [Daniel Vaz Gaspar]
- chore: bump prison version (#1689) [Beto Dealmeida]
- feat: password complexity option on DB Auth (#1687) [Daniel Vaz Gaspar]
- fix: check if there is an email field in userinfo (#1663) [Yoshitaka Sakurai]
- fix: improve next URL on OAuth (#1668) [Daniel Vaz Gaspar]
- chore: Bump click to 8.0.1 (#1665) [Hugh A. Miles II]
- feat(cli): Add import/export of roles with permissions (#1662) [krsnik93]
- fix: Handle integrity fails if groups map to same roles (#1605) [Fred Thomsen]
- refactor: OAuth - redirect direct to provider if just one provider exists (#1618) [hyunjong.lee]
- feat: Allow using custom Swagger template for SwaggerView. (#1639) [Cristòfol Torrens]
- chore: Remove polyfill shims for browsers no longer supported (#1606) [Ryan Hamilton]
- docs: Missing self reference for my_custom (#1651) [Marek Šuppa]
- fix: add warning text to roles when AUTH_ROLES_SYNC_AT_LOGIN (#1642) [Daniel Vaz Gaspar]
- fix: auth balance (#1634) [Daniel Gaspar]
- feat: Support for conditional menu item rendering (#1631) [Ben Reinhart]
- docs: fix number of languages in i18n.rst (#1630) [Aleksandr Gordienko]
- feat: Add support for before_request hooks (#1629) [Ben Reinhart]
- docs: Typos and small changes in docs/templates.rst (#1625) [Federico Padua]
- fix: improve performance for get role permissions (#1624) [Daniel Gaspar]
- feat: get user permissions API (#1620) [Daniel Gaspar]
- fix: Ignore LDAP search referrals (#1602) [Fred Thomsen]
- fix: relax AzureAD mandatory fields (#1608) [hyunjong.lee]
- docs: fix, errors in BaseModelView docstring (#1591) [Xiaodong DENG]
- fix: load user info for okta (#1589) [QP Hou]
- docs: improve contributing run single test (#1579) [Daniel Vaz Gaspar]
- fix: sqlalchemy 1.4.0 breaking changes (#1586) [Daniel Vaz Gaspar]
- fix: issue 1469 error in filters (#1541) [Duy Nguyen Hoang]
- fix: showing excluded routes in server log (#1565) [runoutnow]
- refactor: AUTH_LDAP/AUTH_OAUTH + implement role mapping (#1374) [Mathew Wicks]
- fix(api): OpenAPI spec of nested components without auto generated names (#1547) [Daniel Vaz Gaspar]
- fix(mvc): action confirmation on single show view (#1539) [Daniel Vaz Gaspar]
- docs: improve docs around LDAP auth (#1526) [Daniel Vaz Gaspar]
- ci: tests for python 3.8 and 3.9 (#1525) [Daniel Vaz Gaspar]
- docs: fix, swagger path in readme (#1518) [Felix Rilling]
- fix: oauth #1511 (#1522) [Daniel Vaz Gaspar]
- fix: github actions (#1523) [Daniel Vaz Gaspar]
- fix: changelog (#1507) [Daniel Vaz Gaspar]
- fix: MVC order by related column use alias (#1504) [Daniel Vaz Gaspar]
- fix: remove unnecessary CSS class/styling from dropdowns (#1503) [Ryan Hamilton]
- deps: constraint pre 1 packages following semver (#1502) [Daniel Vaz Gaspar]
- fix: MVC order by on relation (#1500) [Daniel Vaz Gaspar]
- docs: add github actions badge (#1501) [Daniel Vaz Gaspar]
- fix: remove unnecessary classes from dropdowns (#1491) [Ryan Hamilton]
- ci: migrate from travis to github actions (#1497) [Daniel Vaz Gaspar]
- fix: lint (#1498) [Daniel Vaz Gaspar]
- fix: Improve UX by moving drop-down caret within clickable target (#1492) [Ryan Hamilton]
- style: use a clearer visual representation for "delete" actions (#1495) [Ryan Hamilton]
- fix: "actions" on ModelViews with composite primary keys (#1493) [Ash Berlin-Taylor]
- docs: migrate examples/quickhowto3 to version 3.x.x (#1488) [luizduma]
- fix: REST API inner joins eager loading (#1486) [Daniel Vaz Gaspar]
- Fix, sanitize the uploaded filename (#1482)
- Fix, add missing font file format for glyphicons (#1483)
- Docs, Remove incorrect possessive. list's => lists. (#1476)
- Fix, select2 readonly not working (#1467)
- Fix, improve type annotations on SQLAlchemy (#1458)
- New, Support for OpenShift OAuth (#1454)
- Fix, remove unnecessary strict option from schemas (#1466)
- Fix, check if locale exists before loading it (#1460)
- Fix, Update SQLAlchemy query for count_users (#1445)
- Docs, Contributing (#1440)
- Docs, improve, help contributions (#1438)
- Fix, google charts (#1431)
- Fix, del permission assertion on roles (#1434)
- Fix, swagger test (#1423)
- Fix, change openapi tags and swagger access URL (breaking) (#1422)
- Fix, replace deprecated flask-oauthlib with authlib (#1411)
- Refactor, interface query on m-m joins and select specific columns (#1398)
- Fix, docs on has_view_access (#1419)
- New, Examples/react api (#1071)
- Fix, action confirmation disabling (#1408)
- New, add API descriptions and examples to OpenAPI spec (#1396)
- New, Dynamic user registration role (#1410)
- Fix, typos and improved bit of the German translation (#1406)
- New, Added Dutch language to docs (#1393)
- New, Added Dutch translation (#1387)
- Fix, load options and limits for many to many truncating results (#1389)
- Fix, SQLAlchemyAutoSchema needs marshmallow-sqlalchemy>=0.22.0 (#1392)
- New, [api] support marshmallow 3 (#1334)
- Fix, hardcoded url on oauth (#1331)
- Fix, [examples] Update models.py (#1380)
- Fix: add a panel body to panel_begin/panel_end macros (#1377)
- Fix, name column resizing in ab_view_menu table #1367 (#1368)
- Fix, typos in the documentation (#1375)
- Fix, [api] SQL selects and many to many joins (#1361)
- Fix, [frontend] Revert "Bump jQuery to 3.5 (#1351)" (#1363)
- New, [cli] Fix, reset-password cli option (#1347)
- New, Bump jQuery to 3.5 (#1351)
- New, [menu] fix, add translation lookup in menu.get_data (#1352)
- Fix, [menu] add translation lookup in menu.get_data (#1352)
- Fix, [menu] translations on menu v2 (#1355)
- Fix, [dependencies] include email_validator for new wtforms (#1360)
- New, [deploy] Add release script
- New, [i18n] Add italian translation (#1324)
- New, [api] Add custom filters to search (#1327)
- Fix, [style] Better formatting on jinja template (#1321)
- New, [examples] integrate Dash by Plotly in FAB (#1330)
- Fix, [api] [mvc] Make like filters case insensitive (#1338)
[dependencies] Fix, marshmallow 3 breaks compat (#1333)
- New, [i18n] Add korean language (#1297)
- New, [api] support one to many relations (#1307)
- Fix, [mvc] reverts select2 to version 3.5.2 (#1308)
- Fix, [mvc] Upgrade to Jquery 3 and select2 4
- Fix, [api] List filters validation schema (#1303)
- Fix, [api] Soften marshmallow version restriction (#1295)
- Fix, [mvc] GET delete and action endpoints (#1294)
- Fix, [style] impose black code style (#1292)
- Fix, [docs] read the docs requirements (#1288)
- New, [mvc] [security] toggle pvm, perm and vm mvc views config options (#1259)
- Fix, [docs] Update actions.rst (#1277)
- Fix, [docs] changelog formatting (#1286)
- Fix, [mvc] Use os.path.join for downloads (#1281)
- Fix, [filemanager] Fix, use a sane mode for directories (#1282)
- Fix, [docs] add missing import (#1278)
- Fix, [mvc] Use formatters_columns with show_fieldsets (#1280)
- Fix, [dependencies] update requirements (#1272)
- Fix, [dependencies] Update version of Flask-Babel to support Werkzeug 1.0 (#1266)
- Fix, [api] set api jwt user on flask g (#1270)
- Fix, [api] make REST API easier to override (#1264)
- New, [auth] make CI optional (#1263)
- New, [auth] make CI optional (#1263)
- Fix, [api] many to many filters (#1256)
- New, [api] override merge openapi docs specs (#1252)
- Fix, [mvc] List page's pagination start with 1 (#1216)
- Fix, AttributeError in manager.py when a permission is null (#1217)
- Fix, [api] using default method name when unspecified in method_permission_name (#1235)
- New, [api] New, http 403 forbidden on default responses (#1237)
- New, [mvc] [api] exclude and include route methods (#1234)
- New, [mvc] [security] make userstatschartview optional (#1239)
- New, [mvc] Disable old API flag and tests (#1244)
- Fix, [mvc] jinja2 crashes with defined actions and removed action routes (#1245)
- Fix, [api] OpenAPI method and config exclusions (#1211)
- Fix, [mvc] default page size out of sync with jinja macro (#1209)
- New, [api] Support for json encoded content on URI parameter (#1205)
- Fix, [api] Re-allow filtering by booleans (default generated list) (#1204)
- Fix, [api] [menu] openapi spec (#1203)
- New, [api] Exclude route methods from ModelRestApi (#1202)
- Fix, [api] Don't crash on invalid filters (#1200)
- Fix, authentication error when using oracle (#1193)
- Fix, [api] openapi spec for the info endpoint (#1197)
- Fix, New, Show widget template: Add some basic blocks (#1158)
- New, State reason for LDAP login failure (#1164)
- Fix, [docs] Get list result (#1196)
- Fix, [examples] Update views.py (#1165)
- Fix, create filters even when search_columns is empty (#1173)
- Fix, jwt refresh endpoint should return new access_token (#1187)
- Fix, #1157 Improve API get menu data performance
- Fix, #1143 [mvc] pagination UI bug
- Fix, #1147 [babel] crash with empty LANGUAGES config key
- New, #1116 Expose menu data as serializable objects
- Fix, #1127 MSSQL issue with pagination
- Fix, #1132 Add autofocus for login screen (#1132)
- Fix, #1125 Support absence of the public role (#1125)
- New, #1124 hide tabs when only 'Detail' (no related_views)
- Fix, #1119 ldap: safely retrieve error object when loggin exception
- Fix, #1105 Has access query fails on MySQL < 8
- Fix, #1104 Preserve custom property return type on ModelRestApi
- Fix, #1096 Bootstrap and Bootswatch bump to 3.4.1
- Fix, #1097 python version restriction on setup > 3.6 < 4
- Fix, #1095 OAuth set fallback when next url in state is empty
- Fix, #1092 Has access query fails on MSSQL
- Fix, #1079 Make it possible to override register_views when using FAB_ADD_SECURITY_VIEWS
- Fix, #1078 API unlimited page size with unlimited max_page_size issues SQL with negative LIMIT
- Fix, #1077 API Info not translating labels and description
- Fix, #1069 API label_columns for get item returning labels for list columns
- Fix, #1072 API max_page_size class property override for FAB_API_MAX_SIZE
- Fix, #1065 setup version cap on apispec, jsonschema, marshmallow-sqlalchemy, prison
- Fix, #1050 Catch exceptions on populating forms
- Fix, #1046 API include openapi security spec on paths
- Fix, #1048 API include refresh token on openapi security specs
- Fix, #1045, #1044 Performance improvement on permission checks
- New, #1040, #1041 Bump prison to 0.1.2 and remove requests dependency
- Fix, #1042 is_item_visible confusing behaviour with base_permissions when perm is still on DB
- Fix, #1027 API dotted notation joins to same table
- Fix, #1012 API default resource name must be lower case
- Fix, #1013 Use csrf exempt by default when CSRFProtect is registered has a Flask extension
- Fix, #1007 API Support for property decorated functions has models fields
- Fix, #1002 Permission mapping
- New, #1010 Support for UUID sqlalchemy fields has string fields on WTForms
- Fix, Index view override on class instantiation is discarded
- Fix, #993 App factory pattern, AppBuilder object can be fully configured using config keys
- Fix, #994 If builtin role don't check db also, higher permission on DB would allow access
- Fix, #991 Make Admin builtin optional, only if declared on config
- New, #977 flask-sqlalchemy bump to 2.4.0 (new config options)
- New, #986 Builtin roles using regex, Admin role is now one of these
- New, #969 Override class and method permission names and procedure to converge/migrate
- Fix, #985 Deprecation warning EOL version was wrong
- New, #976 pRison version bump
- Fix, #966 Change the default email value for auth_remote_user in security manager
- BREAKING CHANGES, Python 3.6+ is now required
- Fix, #951 M-M fields are always required, now they default to not required with optional required flag on col info dict
- Fix, #885 list view ordering problem of related model with dotted notation, fixes #884
- Fix, #946 Factory app pattern
- (DEPRECATION) New, command line integrated with Flask cli, fabmanager is deprecated and will be removed on 1.16.X
- New, config key, FAB_SECURITY_MANAGER_CLASS to declare custom SecurityManager classes.
- New, sub command 'create-permissions' to create all permissions when update_perms is False.
- New, config key, FAB_UPDATE_PERMS to flag FAB to update or not update permissions.
- Fix, #955 Find permission view menu superset issue #1944
- Fix, new version location, removed deprecated imp package from setup
- New, CRUD RESTful API and custom API
- Fix, #928 Copy role modal not showing
- Fix, #911 fabmanager missing session rollback() when user add fails
- Fix, #910 Next page on OAuth
- Fix, #762 Instantiate AdminActions only after DOM finishes loading
- New, #883 Changed templates so that is possible to use Jinja2 StrictUndefined
- Fix, #891 Missing import reduce python3 compatibility
- Fix, #862 fabmanager appbuilder parameter is now working
- Fix, #832 don't install examples as a package with flask-appbuilder
- Fix, #760 Select all checkbox, in related view, selects checkboxes from all related views
- New, #833 LDAPS TLS config options
- New, #829 Aditional filtering in LDAP search
- New, #826 Greek support i18n
- New, #813 Dependencies unpinned
- Fix, #828 list and form widget rendering html InLine, regression from #797
- Fix, #797 Remove safe filter from template
- New, #911 BREAKING CHANGES, bumped Flask-Login dependency to >=0.3,<0.5
- Fix, Unlock flask required version, new 0.12.4. does not cause issues anymore
- New, #615 Azure AD as Oauth provider
- New, #678 fabmanager create-user command
- Fix, #628 Remove double-instantiation of declarative base, problem with flask-migrate
- New, #735 Added french translations
- Fix, minor typo EMail to Email
- Fix, #712 improvement on parsing timezone dates
- Fix, #701 permission deletion
- Fix, #700 Non unique associations on security models
- New, #694 Accept SQLAlchemy custom types defined by TypeDecorator
- New, #686 Removed support for python 2.6
- Fix, #663 Allow remote user to be auto registered.
- New, #639 Composite key support for SQLAlchemy.
- New, #661 Add feature to allow form to be processed prior to populating model.
- New, #655 add feature to allow form prefill.
- New, #631 add sqlalchemy support for binary types.
- New, #626 support for traditional Chinese.
- New, #626 possible to disable update permissions on startup.
- New, #596 font-awesome from 4.3 to 4.7.
- Fix, #544 for possible sql injection on order by clauses.
- Fix, #550 check whether session_form_edit_pk still exist in db, on CompactCRUDMixin.
- Fix, #553 for AttributeError when edit_columns on a view in related_views does not include relationship.
- New, #562 Bump flask-babel version to 0.11.1, and pin.
- Fix, #444 Create LDAP user firstname/lastname may return as bytes instead of str.
- Fix, Fix divergence on versions between setup and requirements, pinned versions.
- New, #528 support for enum type (SQLA only).
- Fix, Possible sql injection vulnerability.
- Fix, #489 python3 compatibility fix for unicode api_read.
- Fix, #491 [api/update] only update keys specified in POST data.
- Fix, #492 [cosmetics] making row button (show/edit/delete) not primary.
- Fix, #493 [cosmetic] left-align the text in dropdowns.
- New, #508 Updated bootswatch to version 3.3.7 five new themes included.
- New, #512 Docs now use readthedocs theme.
- New, #503 FileUploadField: process_on_store() and process_on_delete().
- Fix, #511 Added new parameter to fabmanager babel-extract to include aditional keywords, defaults to lazy_gettext, gettext, _, __
- New, #483 new parameter for LDAP username formatting AUTH_LDAP_USERNAME_FORMAT.
- Fix, Decorator oauth_user_info_getter was not according the docs, parameter bug.
- Fix, #474 Missing menu deviders
- Fix, #472 Prevent masquerade attacks through oauth providers.
- New, Optional TLS for LDAP Authentication.
- Fix, Factory setup was failing when babel get locale was being called.
- New, Bootstrap updated to version 3.3.7.
- New, flask-sqlalchemy updated to version 2.1.
- New, #453 Added support for users to login with their username or email address.
- Fix, #467 two instances of urls being generated wrongly when running under a prefix.
- Fix, redirect to actual index view rather than '/' on logout for DBAuthView.
- Fix, form actions not working under a prefix for CompactCRUDMixin.
- Fix, #457 Don't overwrite csrf_token on form fill.
- Fix, #453 [rest api] improve error messages, and return item object upon create/update.
- New, flask-babel update.
- Fix, #409 Google Oauth login and self registration.
- New, #402 column_formatters to ModelView.
- New, #374 default autosizing to app image (if any).
- New, #393 More sensible default page size.
- Fix, #397 security: don't crash on oauth errors.
- Fix, #395 flask_wtf.Form has been renamed to FlaskForm.
- Fix, #354 Improved spanish translation.
- Fix, #352 some i18n related bugs.
- Fix, #341 for supporting multiple select2 fields.
- Fix, #340 Better chinese translations.
- New, #338 Support of Mongoengine Document inheritance.
- New, Support for python 3.5, now uses flask-babel instead of flask-babelpkg.
- Fix, REST API endpoints for fetching related data columns crashed.
- Fix, #332 Realign deprecated references to flask.ext.
- New, REST API endpoints for fetching related data columns.
- New, REST endpoint for fetching data with simple output (select2 to consume).
- New, AJAX select fields.
- New, AJAX select fields that can be setup to be related, when the user chooses on master, the slave show only related data.
- Fix, Filters were broken on 1.6.2, impact on searches and Unique validators.
- New, Support for Japanese. Thanks to @giyokun.
- Fix, #312 Solves String encoding causing column labels to be prefixed with 'b' in Python 3x.
- Fix, #322 Solves Error on Inline cookie cached, when a record is deleted and it's pk is on the edit cookie.
- Fix, Bug with numeric filters, converting to correct python type.
- New, Allowing apps to alter title using a jinja block #284
- Fix, Prevented user's password being written to debug.
- New, Added login failed message to log.
- Fix, Fixes #273 by not registering a view that will not exist for LDAP
- New, added missing filters for date types for generic models.
- New, #316, Adding FilterInFunction to models.sqla.filters.
- New, AUTH_LDAP_APPEND_DOMAIN to always append a certain domain on LDAP user's login.
- Fix, GenericInterface.get(pk) bug created on 1.5.0 correction, missing optional extra base_filter parameter
- New, Simple addon system. Possible modular instalation of views, models and functionality.
- New, #261, possible for the user to edit their first name and last name.
- Fix, #251, record url from some user can be accessed by any user, show, edit and delete are now constrained by base_filter.
- Fix, #265, Fixed double word in views.rst
- Fix, #247, bug when ordering view columns where None values are in.
- Fix, pinned flask-sqlalchemy to version 2.0.
- New, type checks disables on AuditMixin, it allows the use of this mixin when extending the User model.
- New, possible to filter fields using dot notation, automatic joins of other models.
- Fix, actions on user profile to resetmypasswordview made generic, the view can be safely override.
- Fix, actions on user profile to resetpasswordview made generic, the view can be safely override.
- New, #228 new property, search_form_query_rel_fields to filter combo lists on search related fields.
- Fix, #223 Proxy support.
- Fix, #219 Making the inline crud stateless, CompatCRUDMixin.
- Fix, #216 English issues found during translation.
- New, config key, FILE_ALLOWED_EXTENSIONS, issue #221.
- New, #217, Polish translations.
- Fix, flask-login version pin on 0.2.11.
- Fix, #211, UTF-8 encoding for the json label strings. REST API bug.
- Fix, #209, Several improvements to queries on MongoDB.
- Fix, #206, registration form fields aren't being validated.
- Fix, #205, self.registeruser_model rather than RegisterUser.
- Fix, #195, Silent failure of validators_columns on CompactCRUDMixin.
- Fix, #197, 'Mixed Content' message when behind an https reverse proxy
- Fix, Bug fixed for problem with columns that drilldown model.model.name.
- New, Support for Numeric SQLAlchemy type.
- Fix, #188 but fix created a display bug on empty queries with related views.
- Fix, #186 LDAP configuration - Invalid DN syntax on OpenLDAP. Introduced AUTH_LDAP_BIND_USER and AUTH_LDAP_BIND_PASSWORD
- New, decorator for mapping custom Model property to real db property, supports sorting on custom properties. @renders.
- New, various new filters for generic models. #193.
- Fix, #188 fix bug, actions return access denied on actions for lists."
- New, search_form_extra_fields property.
- New, SimpleFormView and PublicFormView form_post can return a flask response.
- New, ListLinkWidget, replaces the show buttom by a link on the first table col.
- New, ListWidget, ListItem, ListThumbnail, ListBlock templates inherite from base_list.html.
- Fix, MultipleView javascript bug with 2 (or more?) charts #177.
- New, baselib.html was replaced by navbar.html, navbar_menu.html, nabar_right.html.
- Fix, #168 fixed output when fabmanager is unable to import app.
- Fix, Moved userXXXmodelview properties to BaseSecurityManager.
- Fix, Copied XXX_model properties to BaseSecurityManager.
- New, SimpleFormView and PublicFormView now subclass BaseFormView.
- New, class method for BaseView's get_default_url, returns the default_view url.
- New, OAuth authentication method.
- New, Search for role with a particular set of permissions on views or menus.
- New, Possible to filter MongoEngine ObjectId's.
- Fix, MongoEngine (MongoDB) ObjectId's not included in search forms.
- Fix, Menu html and icons rework.
- New, add_exclude_columns.
- New, edit_exclude_columns.
- New, show_exclude_columns.
- New, exclude_columns on tests.
- New, docs for exclude_columns.
- New, remove id warning for MongoDB on filters.
- Fix, missing translations.
- Fix, Changed length of username model field from 32 to 64 characters.
- Fix, Changed LDAP Auth and registration logic.
- Fix, Removed LDAP auth indirect bind.
- Fix, Redirect update missing on chart views
- Fix, Charts with unicode data.
- New, add_user on data interfaces accepts new parameter for hashed_password.
- SimpleFormView.form_post can return null to redirect back or a Flask response (render or redirect).
- Changed the way related views are initialized, no bind to the related_views property.
- #144 New MultipleView for rendering multiple BaseViews on the same page.
- Can now import all views from flask_appbuilder.
- Issue #115, Modal text is now html instead of text.
- Issue #119, confirm HTML is included at the begining of body see baselayout.html.
- BaseInterface.get_values changed to iterator (does not return list but list iterator).
- REST CRUD API added.
- Interface datamodels do not flash messages, they log messages on public property tuple 'message'.
- Issue #113, changed html5shiv and respond to import after bootstrap.
- Issue #117, added FilterEqualFunction to MongoDB filters.
- Issue #118, SQLAlchemy version 0.9.9 does not have as_declarative decorator, temp fix by fixing to 0.9.8.
- New, json exposed method was removed from ModelView you must use API now.
- #90 Py3 compact fix for urllib and StringIO.
- Fix, Group by chart with multiple series not displaying data.
- New, block template head_js on init.html, affects all templates, better js override or add.
- New, base_template parameter on AppBuilder to override the top template, better css and js inclusion.
- Fix, fixed menu brand with image (APP_ICON), better display.
- New, included boostrap-theme THEME.
- Fix, internal API change, BaseIterface/SQLAInterface method get_model_relation new name: get_related_model.
- New, internal QuerySelectField QuerySelectMultipleField based on BaseInterface.
- New, edit_form_query_rel_fields, add_form_query_rel_fields changed, accepts dict instead of list (BREAKING CHANGE).
- Fix, Filter rework datamodel is no longer optional for construct (BREAKING CHANGE).
- Fix, Filter methods no longer require datamodel parameter (BREAKING CHANGE).
- Fix, All SQLAlchemy Filter's moved to flask_appbuilder.models.sqla.filters.
- New, All Filters are accessible from datamodel class, ex: datamodel.FilterEqual
- New, Charts will be database ordered (better performance), and can accept dotted cols on relations.
- Fix, on menus with dividers if next item has no permission, divider was shown.
- New, Bootstrap update to 3.3.1
- New, Select2 update to 3.5.1
- New, support for many to many relations on ModelView related_view.
- New, AppBuilder.add_link supports endpoint names on href parameter, internally will try to use url_for(href).
- Fix, Zero division catch on aggregate average function.
- New, added form validators for field min and max length.
- New, Image size can be configured per column, ImageColumn support size and thumbnail size parameters.
- Fix, New auth REMOTE_USER bug, always logged in Admin user, db query filter bug.
- Fix, BaseInterface new property for overriding filter converter class, better interface for new classes.
- Fix, search_widget property changed from BaseCRUDView to BaseModelView.
- Fix, Openid auth rework, no hacking done.
- Fix, exclude possible order by for columns that are functions. #67
- Fix, BaseFilter, FilterRelation, BaseFilterRelation changed module from flask.ext.appbuilder.models.base to flask.ext.appbuilder.models.filter. (BREAKING CHANGE)
- Fix, sqla filters changed from flask.ext.appbuilder.filters to flask.ext.appbuilder.sql.filters. (BREAKING CHANGE)
- New, AUTH_TYPE = 4 Web server auth via REMOTE_USER enviroment var.
- Fix, #71 set_index_view removed, doc correction.
- Fix, #72 improved german translations.
- Fix, #69 added SQLAlchemy Sequence to pk's to support ORACLE.
- Fix, #69 improved chinese translations.
- Fix, #66 improved spanish translations.
- Fix, User role column was not translated, since 1.1.2.
- Fix, when only one language setup, menu dropdown was not correct.
- Fix, theme default generates 404, issue #60.
- Fix, use of reduce as builtin, python3 problem, issue #58.
- Fix, changing language was redirecting back.
- New, allows order on relationships by implicit declaration of col with dotted notation.
- New, get_order_columns_list receives optional list_columns to narrow search and auto include dotted cols.
- New, dotted columns are also automatically pretty labeled.
- Fix, is<Type col> on SQLInterface handles exceptions for none existing cols.
- Fix, back special URL included on a new View called UtilView, removes bug: when replacing IndexView the back crashes.
- Fix, changed WTForm validator Required to DataRequired.
- Fix, changed WTForm TextField to StringField.
- New, AUTH_USER_REGISTRATION for self user registration, on ldap it's used automatic registration based on ldap attrs.
- New, AUTH_USER_REGISTRATION for auth db will present registration form, send email with configurable html for activation.
- New, AUTH_USER_REGISTRATION for auth oid will present registration form, send email with configurable html for activation.
- New, Added property to AppBuilder that returns the frameworks version.
- New, User extension mixin (Beta).
- New, allows dotted attributes on list_columns, to fetch values from related models.
- New, AuthOIDView with oid_ask_for and oid_ask_for_optional, for easy dev override of view.
- New, Access Denied log a warning with info.
- Fix, OpenID login improvement.
- Fix, field icon for date and datetime that selects calendar, changes mouse cursor to hand.
- New, render_field changed, could be a breaking feature, if you wrote your own forms. no more <td> on each field.
- New, pull request #44, ldap bind options.
- Fix, pull request #48, bug with back button url not working when using uwsgi under sub-domain.
- New, AppBuilder accepts new parameter security_manager_class, useful to override any security view or auth method.
- New, dynamic package version from python file version.py.
- New, extra_args property, for injecting extra arguments to templates.
- Fix, Removed footer with link "Powered by F.A.B.".
- Fix, Added translation for "Access is denied". ES,GE,RU,ZH
- New, Yes and no questions with bootstrap modal.
- Fix, Added multiple actions support on other list widgets.
- Fix, missing translations for "User info" and "Audit info".
- Fix, actions break on MasterDetail or related views.
- New, Support for multiple actions.
- Fix, Russian translations from pull request #39
- Fix, merge problem. issue #38
- Fix, inserted script in init.html moved to ab.js on static/js.
- Fix, performance improvement on edit, only one form initialization.
- New, New back mechanism, with 5 history records. issue #35.
- New, json endpoint for model querys, with same parameters has list endpoint.
- New, support for boolean columns search, filter with FilterEqual or FilterNotEqual.
- Fix, get order columns was including relations.
- New, possibility to include primary key and foreign key on forms and views.
- Fix, python 3 errors on GenericModels, metaclass compatibility.
- New, decorator '@permission_name' to override endpoint access permission name.
- Fix, edit_form_query_rel_fields error only on 0.10.0, issue #30.
- Fix, only add permissions to methods with @has_access decorator.
- Fix, prevents duplicate permissions.
- New, template block on add.html template, add_form.
- New, template block on edit.html template, edit_form.
- New, template block on show.html template, show_form.
- New, template block on show_cascade.html template, relative_views.
- New, template block on edit_cascade.html template, relative_views.
- New, API Change, DataModel is now BaseInterface and on flask.ext.appbuilder.models.base
- New, API Change, SQLAModel is now SQLAInterface
- New, API Change, SQLAInterface inherits from BaseInterface (not DataModel)
- New, API Change, SQLAInterface is on flask.ext.appbuilder.models.sqla.interface
- New, API Change, Filters for sqla are on flask.ext.appbuilder.models.sqla.filters
- New, API Change, BaseFilter is on flask.ext.appbuilder.model.base
- Fix, nullable Float and Integer bug issue #26
- New, default model sqlalchemy support on forms (issue #26). static and callable value
- Fix, DateTimeField Fix issue #22.
- New, bootstrap updated to version 3.1.1.
- New, fontawesome updated to version 4.1.0.
- Fix, label for 'username' was displaying 'Failed Login Count', Chart definition override.
- New, Support for application factory init_app (Flask ext approved guide line).
- New, Flexible group by charts with multiple series and formatters, no need for ChartView or TimeChartView.
- New, internal AppBuilder rebuild.
- New, class name change 'BaseApp' to 'AppBuilder', import like: from flask.ext.appbuilder import AppBuilder
- New, can import expose decorator like: flask.ext.appbuilder import expose
- New, Changed 'Base' declarative name to 'Model' no need to add BaseMixin.
- New, No automatic dev's model creation, must invoke appbuilder.create_db()
- New, Change GeneralView to ModelView.
- Fix, Multiple database support correction.
- New, security cleanup method, useful if you have changed a menu's name or view class name.
- Fix, internal security management optimization.
- New, security management method security_cleanup, will remove unused permissions, views and menus.
- Fix, removed automatic migration from version 0.3.
- New, adding views has classes without configuring the views db.session, session will
- be the same has the security tables.
- Fix, Security menu with wrong label and view association on 'Permission Views/Menu'.
- Fix, js for remembering latest accordion was working like toggle (bs bug?).
- Portuguese Brazil translations
- Fix, possible to register on the menu different links to the same view class.
- Fix, init of baseapp missing init of baseviews list.
- New, Python 3 partial support (babel will not work, caused by the babel package itself).
- Fix, Removed Flask-wtf requirement version limitation.
- New, test suite with nose.
- New, Language, Simplified Chinese support.
- New, Language, Russian support.
- New, Language, German support.
- Fix, various translations.
- Fix,New support for virtual directory no need to install on root url, relative urls fixes.
- New, login form style.
- Fix, Auto creation of user's models from Base.
- Fix, Removed double flash message on reset password form.
- New, support for icons on menu categories.
- New, remove "-" bettwen icons and menu labels.
- New, added optional parameter "label" and "category_label" for menu items. better security and i18n.
- Fix, removed unnecessary log output.
- Fix, TimeChartView not ordering dates correctly.
- New, charts can be included has related views, can use it has tab, collapse and master-detail templates.
- Fix, login ldap, double message login failed correction.
- Fix, search responsive correction.
- New, accordion related view will record last choice on cookie.
- New, footer page, this can be overridden.
- New, internal change, list functional header on lib.
- Fix, removed audit columns from user info view. Only shown on security admin.
- Fix, removed forced cast to int on json conversion for DirectChartView. Better support for float.
- New, List for simple master detail, master works like a menu on the left side.
- Fix, fixed buttons size for show, edit, delete on lists. Buttons will not adapt to vertical.
- Fix, if no permissions for show, edit, delete, no empty cell is shown <th> or <td>.
- New, internal change, crud buttons on lib.
- Fix, reported issue #15. Order by causes error on postgresql.
- New, DirectChart support for xcol datetime.date type (Date or DateTime Model type).
- Fix, base_order property for DirectChartView.
- New, ListBlock with pagination.
- New, Menu separator raises exception if it does not have a correct category.
- New, ShowBlockWidget different show detail presentation.
- Fix, login failed was not displaying error message.
- New, password is saved hashed on database.
- New, better database exceptions on security module
- New, User model columns: last_login, login_count, fail_login_count.
- New, User model column AuditMixin columns (created_on, changed_on, created_by_fk, changed_by_fk).
- New, AuditMixin allows null on FK columns.
- Fix, Add user on non sqlite db, failed if no email provided. Unique db constraint.
- Fix, form convert field exception handling (for method fields).
- New, support for "one to one" relations and "one to many", on forms, and filters (beta).
- Fix, ChartView unicode correction.
- New, DirectChartView to present database queries on numeric columns with multiple series.
- Fix, Adds all missing permissions to the role admin. Allways
- Fix, Removed User.active from possible search.
- New, unicode review for future python 3 support.
- Fix, url on time chart views to allow search on every group by column.
- New, support for float database type.
- BaseChartView group_by_columns empty list validation.
- Fix, url's for charts were changed to allow search on every group by column.
- New, get_file_orginal_name helper function to remove UUID from file name.
- Fix, bug on related views was not adding new models. Impossible to insert on related views.
- Fix, Chart month bug, typo on code.
- Fix, template table display not showing top first line.
- Fix, search widget permits dropdowns with overflow.
- Fix, removed style tag on init.html.
- New, ab.css for F.A.B custom styles.
- New, search widget with dropdown list of column choices, instead of buttons.
- Fix, LDAP server key was hardcoded.
- New, LDAP Authentication type, tested on MS Active Directory.
- New, automatic support for required field validation on related dropdown lists.
- Fix, does not allow empty passwords on user creation.
- Fix, does not allow a user without a role assigned.
- Fix, OpenID bug. Needs flask-openID > 1.2.0
- Fix, allow to filter multiple related fields on forms. Support for Many to Many relations.
- Field widget removed from forms module to new fieldwidgets, this can be a breaking feature.
- Form creation code reorg (more simple and readable).
- New, form db login with icons.
- New, No need to define menu url on chart views (when registering), will work like GeneralViews.
- New, related form field filter configuration, add_form_query_rel_fields and edit_form_query_rel_fields.
- Fix, Add and edit form will not surpress fields if filters come from user search. will only surpress on related views behaviour.
- New, added pagination to list thumbnails.
- Fix, no need to have a config.py to configure key for image upload and file upload.
- New, new config key for resizing images, IMG_SIZE.
- New, compact view with add and edit on the same page has lists. Use of CompactCRUDMixin Mixin.
- Break, GeneralView (BaseCRUDView) related_views attr, must be filled with classes intead of instances.
- Fix, removed Flask-SQlAlchemy version constraint.
- Fix, TimeChartView resolved error with null dates.
- Fix, registering related_views with instances will raise proper error.
- Fix, filter not supported with report a warning not an error.
- Fix, ImageColumn and FileColumn was being included has a possible filter.
- New, package using python's logging module for correct and flexible logging of info and errors.
- Fix, list_block, list_thumbnail, list_item, bug on set_link_filter.
- New, group by on time charts returns month name and year.
- Fix, better redirect, example: after delete, previous search will be preserved.
- New, widgets module reorg.
- Fix, add and edit with filter was not remving filtered columns, with auto fill.
- Fix, missing import on baseviews, flask.request
- Fix, security.manager api improvement.
- New, property for default order list on GeneralView.
- Fix, actions not permitted will not show on UI.
- Fix, BaseView, BaseModelView, BaseCRUDView separation to module baseviews.
- Fix, Flask-SQlAlchemy requirement version block removed.
- Fix, Auto remove of non existent permissions from database and remove permissions from roles.
- New, top menu support, no need to create category with submenus.
- New, reverse flag for navbar on Menu property.
- New, update bootwatch.
- fix, security userinfo without has_access decorator.
- fix, encoding on search widget (List users breaks on portuguese).
- New, safe back button.
- fix, oid authentication failed.
- New, Change flask-babel to flask-babelpkg to support independent extension translations.
- fix, login forms with complete translations.
- New, actions on records use @action decorator.
- New, support for primary keys of any type.
- New, Font-Awesome included
- New, Search (filter) with boolean types.
- New, Added search to users view.
- New, page size selection.
- New, filter Relation not equal to.
- Removed constraint in flask-login requirement for versions lower than 0.2.8, can be used 0.2.7 or lower and 0.2.9 and higher.
- fix, BaseCRUDView init properties correction.
- fix, delete user generates general error key.
- Changed default page_size to 10.
- fix, page was "remenbered" by class, returned empty lists on queries and inline lists.
- New Filters class and BaseFilter with many subclasses. Restructing internals to enable feature.
- New UI for search widget, dynamic filters showing the possibilities from filters. Starts with, greater then, etc...
- New possible filters for dates, greater then, less, equal filters.
- Restructuring of query function, simplified.
- Internal class inherit change: BaseView, BaseModelView, BaseCRUDView, GeneralView.
- Internal class inherit change: BaseView, BaseModelView, BaseChartView, (ChartView|TimeChartView).
- Argument URL filter change "_flt_<index option filter>_<Col name>=<value>"
- New, no need to define search_columns property, if not defined all columns can be added to search.
- New, no need to define list_columns property, if not defined only the first orderable column will be displayed.
- New, no need to define order_columns property, if not defined all ordered columns will be defined.
- fix, class init properties correction
- New property base_filters to always filter the view, accepts functions and values with current filters
- Babel actualization for filters in spanish and portuguese
- fix, Redirect to login when access denied was broken.
- fix, Reset password form
- Html non compliance corrections
- Charts outside panel correction
- New property add_form_extra_fields to inject extra fields on add form
- New property edit_form_extra_fields to inject extra fields on edit form
- Add and edit form order correction, order in add_columns, edit_columns or fieldsets
- Correction of bootstrap inclusion
- Bootstrap css and js included in the package
- Jquery included in the package
- Google charts jsapi included in the package
- requirement and setup preventing install for flask-login 0.2.8 only 0.2.7 or earlier, bug on init.html
- New config key APP_ICON to include an image to the navbar.
- Removed "Home" on the menu
- New Widget for displaying lists of items ListItem (Widget)
- New widget for displaying lists on blocks thumbnails
- Logout translation on portuguese and spanish
- Chart views with equal presentation has list views.
- Chart views with search possibility
- BaseMixin with automatic table name like flask-sqlalchemy, no need to use db.Model.
- Pre, Post methods to override, removes decorator classmethod
- AUTH_ROLE_ADMIN, AUTH_ROLE_PUBLIC not required to be defined.
- UPLOAD_FOLDER, IMG_UPLOAD_FOLDER, IMG_UPLOAD_URL not required to be defined.
- AUTH_TYPE not required to be defined, will use default database auth
- Internal security changed, new internal class SecurityManager
- No need to use the base AppBuilder-Skeleton, removed direct import from app directory.
- No need to use init_app.py first run will create all tables and insert all necessary permissions.
- Auto migration from version 0.2.X to 0.3.X, because of security table names change.
- Babel translations for Spanish
- No need to initialize LoginManager, OID.
- No need to initialize Babel (Flask-Babel) (since 0.3.5).
- General import corrections
- Support for PostgreSQL
- Pagination on lists.
- Inline (panels) will reload/return to the same panel (via cookie).
- Templates with url_for.
- BaseApp injects all necessary filter in jinja2, no need to import.
- New Chart type, group by month and year.
- No need to define route_base on View Classes, will assume class name in lower case.
- No need to define labels for model's columns, they will be prettified.
- No need to define titles for list,add,edit and show views, they will be generated from the model's name.
- No need to define menu url when registering a BaseView will be infered from BaseView.defaultview.
- OpenID pictures not showing.
- Security reset password corrections.
- Date null Widget correction.
- list filter with text
- Removed unnecessary keys from config.py on skeleton and examples.
- Simple group by correction, when query does not use joined models.
- Authentication with OpenID does not need reset password option.