search

team-alembic / ash_authentication_phoenix

Drop-in authentication support for Phoenix apps using AshAuthentication.
MIT License
52 stars 23 forks source link

chore(deps): bump ash from 3.0.0 to 3.0.1 #448

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps ash from 3.0.0 to 3.0.1.

Changelog

Sourced from ash's changelog.

v3.0.1 (2024-05-14)

Features:

  • [Ash.Resource.Change.Builtins] Add cascade_destroy to builtin changes.

Bug Fixes:

  • [calculations] calculation eager evaluation bug caused exists to eager evaluate when we didn't actually have the related data

  • [field policies] fix field policy rewrite errors on non-success cases (#1163)

  • [embedded resources] fix embedded resource authorization (#1159) (#1160)

  • infinite recursion if query is empty (#1158)

  • [Ash.DataLayer.Ets] ensure that changeset filters are honored in ETS destroy/update_query

  • [update/destroy actions] don't rollback transactions on stale records, ignore stale records in bulk actions

  • [bulk creates] don't check required belongs to fields until after setting them in bulk creation

  • [code interface] check require_reference? when generating update code interface (#1152)

v3.0.0

3.0

We are starting the changelog fresh. See documentation/2.0-CHANGELOG.md in GitHub for the old changelogs.

Breaking Changes:

For a guide on adjusting to these breaking changes, see the upgrade guide

  • [Ash.Api] has been renamed to Ash.Domain, and references to the concept have been renamed as well, i.e in options and in the DSL
  • [Ash] we now call functions on this, isntead of the domain. i.e Ash.create and Ash.read. The generated functions are now marked as deprecated
  • [Ash] remove process context functionality. You can no longer store the actor/tenant in the context with Ash.set_actor and so on
  • [private?] deprecate private?: false in favor of the more explicit public?: true
  • [default_accept] default default_accept is now []
  • [action lifecycle] after transaction hooks cannot be added from inside of other lifecycle hooks
  • [Ash.NotLoaded] use %Ash.NotLoaded{} for unselected values, instead of nil
  • [require_atomic?] now defaults to true, requiring opt-out of atomic behavior
  • [authorization] default api.authorization.authorize to :by_default
  • [Ash.Registry] has been removed
  • [actions] domain must always be known when constructing changesets
  • [Ash.Notifier] requires_original_data?/2 callback defaults to false
  • [Ash.Notifier.PubSub] default to previous_values?: false, allowing notifications to be sent for atomic updates

... (truncated)

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)