Cliquet

------------------

**Bug fixes**

- Fix crash on hello view when application is not deployed from Git
repository (fixes 382)
- Expose Content-Length header to Kinto.js (390)

----------------

**New features**

- Provide details about existing record in ``412`` error responses
(fixes mozilla-services/kinto122)
- Add ETag on record PUT/PATCH responses (fixes 352)
- Add StatsD counters for the permission backend

**Bug fixes**

- Fix crashes in permission backends when permission set is empty (fixes 368, 371)
- Fix value of ETag on record: provide collection timestamp on collection
endpoints only (fixes 356)
- Default resources do accept ``permissions`` attribute in payload anymore
- Default resources do not require a root factory (fixes 348)
- Default resources do not hit the permission backend anymore
- Default viewset was split and does not handle permissions anymore (fixes 322)
- Permissions on views is now set only on resources
- Fix missing ``last_modified`` field in PATCH response when no field
was changed (fixes 371)
- Fix lost querystring during version redirection (fixes 364)

**Internal changes**

- Document the list of public settings in hello view (mozilla-services/kinto133)

------------------

**Bug fixes**

- Fix permissions handling on PATCH /resource (358)

------------------

**New features**

* Add public settings in hello view (318)

**Bug fixes**

- Fix version redirection behaviour for unsupported versions (341)
- PostgreSQL dependencies are now fully optional in code (340)
- Prevent overriding final settings from ``default_settings`` parameter
in ``cliquet.initialize()`` (343)

**Internal changes**

- Fix installation documentation regarding PostgreSQL 9.4 (338, thanks elemoine!)
- Add detail about UTC and UTF-8 for PostgreSQL (347, thanks elemoine!)
- Remove UserWarning exception when running tests (339, thanks elemoine!)
- Move build_request and build_response to ``cliquet.utils`` (344)
- Pypy is now tested on Travis CI (337)

------------------

**New features**

- Cliquet does not require authentication policies to prefix
user ids anymore (fixes 299).
- Pypy support (thanks Balthazar Rouberol 325)
- Allow to override parent id of resources (333)

**Bug fixes**

- Fix crash in authorization on ``OPTIONS`` requests (331)
- Fix crash when ``If-Match`` is provided without ``If-None-Match`` (335)

**Internal changes**

- Fix docstrings and documentation (329)

------------------

**New features**

- Authentication and authorization policies, as well as group finder function
can now be specified via configuration (fixes 40, 265)
- Resources can now be protected by fine-grained permissions (288 via 291, 302)

Minor

- Preserve provided ``id`` field of records using POST on collection (293 via 294)
- Logging value for authentication type is now available for any kind of
authentication policy.
- Any resource endpoint can now be disabled from settings (46 via 268)

**Bug fixes**

- Do not limit cache values to string (279)
- When PUT creates the record, the HTTP status code is now 201 (298, 300)
- Add safety check in ``utils.current_service()`` (316)

**Breaking changes**

- ``cliquet.storage.postgresql`` now requires PostgreSQL version 9.4, since it
now relies on *JSONB*. Data will be migrated automatically using the ``migrate``
command.
- the ``crud`` decorator was replaced by ``register()`` (fixes 12, 268)
- Firefox Accounts code was removed and published as external package *cliquet-fxa*
- The *Cloud storage* storage backend was removed out of *Cliquet* and should
be revamped in *Kinto* repository (mozilla-services/kinto45)

API

- Resource endpoints now expect payloads to have a ``data`` attribute (254, 287)
- Resource endpoints switched from ``If-Modified-Since`` and ``If-Unmodified-Since``
to ``Etags`` (fixes 251 via 275), thanks michielbdejong!

Minor

- ``existing`` attribute of conflict errors responses was moved inside a generic
``details`` attribute that is also used to list validation errors.
- Setting ``cliquet.basic_auth_enabled`` is now deprecated.
Use `pyramid_multiauth <https://github.com/mozilla-services/pyramid_multiauth>`_
configuration instead to specify authentication policies.
- Logging value for authentication type is now ``authn_type`` (with ``FxAOAuth``
or ``BasicAuth`` as default values).

**Internal changes**

- Cliquet resource code was split into ``Collection`` and ``Resource`` (fixes 243, 282)
- Cleaner separation of concern between ``Resource`` and the new notion of ``ViewSet`` (268)
- Quickstart documentation improvement (271, 312) thanks N1k0 and brouberol!
- API versioning documentation improvements (313)
- Contribution documentation improvement (306)