- Adds Cache-Control:'no-cache' header to 304 responses to ensure that browsers will not cache responses client side
1.2.1
- The CSRF Middleware is now by default disabled. - The ``CSRF_SECRET_SALT`` now defaults to ``invenio-csrf-token``. - Added a new configuration variable: ``CSRF_FORCE_SECURE_REFERER``.
1.2.0
- Centralize dependency management via Invenio-Base.
1.1.3
- Set upper limit version of webargs, lower than 6.0.0.
1.1.2
- Bumps webargs to 5.5.0 (provides support for marshmallow 3).
1.1.1
- Bumps marshmallow to 2.15.2 (minimum required by webargs).