mozilla-services / dependency-observatory

Mozilla's Dependency Observatory
Mozilla Public License 2.0
2 stars 6 forks source link

build(deps): bump flask-httpauth from 4.1.0 to 4.2.0 in /depobs #597

Closed dependabot-preview[bot] closed 4 years ago

dependabot-preview[bot] commented 4 years ago

Bumps flask-httpauth from 4.1.0 to 4.2.0.

Changelog

Sourced from flask-httpauth's changelog.

Flask-HTTPAuth change log

Release 4.2.0 - 2020-11-16

  • Allow error response to return a 200 status code #114 (commit)
  • Add optional argument to MultiAuth class #115 (commit) (thanks pryankster and Michael Wright!)
  • Remove python 3.5 and add python 3.9 to build (commit)

Release 4.1.0 - 2020-06-04

  • Basic authentication with custom scheme (commit)

Release 4.0.0 - 2020-04-26

  • Return user object from verify callbacks (commit)
  • New role authorization support (commit) (thanks gemerden!)
  • Add a custom token authorization header option (commit) (thanks Mohamed Feddad!)
  • Support an optional=True argument in login_required decorator (commit) (thanks Saif Almansoori!)
  • Pass HTTP status code to error callback (commit)
  • More secure example of basic auth in the documentation (commit)
  • Fix broken links in CHANGES.md and changelog template #85 (commit) (thanks Katie Smith!)

Release 3.3.0 - 2019-05-19

  • Use constant time string comparisons #82 (commit1, commit2) (thanks Brendan Long!)
  • Edited and changed the usage of JWT, because in fact the code and documentation uses JWS tokens. #79 (commit) (thanks unuseless!)
  • Documentation fix #78 (commit)
  • Documentation improvements #77 (commit)
  • helper release script (commit)

Release 3.2.4 - 2018-06-17

  • Refactored HTTPAuth login_required #74 (commit) (thanks nestedsoftware!)
  • remove incorrect references to JWT in example application #69 (commit)
  • Fix typo in docs #70 (commit) (thanks Grey Li!)
  • Fix documentation #67 (commit) (thanks Eugene Rymarev!)
  • correct spelling mistake #56 (commit) (thanks Edward Betts!)
  • travis build fix for py36 (commit)

Release 3.2.3 - 2017-06-05

  • Include docs and tests in pypi source tarball #55 (commit) (thanks Chandan Kumar!)

Release 3.2.2 - 2017-01-30

  • Validate authorization header in multi auth #51 (commit)
  • index.rst: Add a missing variable in a code snippet #49 (commit) (thanks Baptiste Fontaine!)

Release 3.2.1 - 2016-09-04

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)