Kinto

------------------

**Bug fixes**

- OpenID plugin used the same cache key for every access-token (fixes 1660)

------------------

**Internal changes**

- Correct spelling of GitHub.
- Upgrade to kinto-admin v1.17.2

------------------

**API**

- Batch endpoint now checks for and aborts any parent request if subrequest encounters 409 constraint violation (fixes 1569)

**Bug fixes**

- Fix a bug where you could not reach the last records via Next-Header when deleting with pagination (fixes 1170)
- Slight optimizations on the ``get_all`` query in the Postgres
storage backend which should make it faster for result sets that
have a lot of records (1622). This is the first change meant to
address 1507, though more can still be done.
- Fix a bug where the batch route accepted all content-types (fixes 1529)

**Internal changes**

- Upgrage to kinto-admin v1.17.1

------------------

**API**

- Introduce ``contains`` and ``contains_any`` filter operators (fixes 343).

API is now at version **1.19**. See `API changelog`_.

**Breaking changes**

- The storage class now exposes ``bump_timestamp()`` and ``bump_and_store_timestamp()`` methods
so that memory based storage backends can use them. (1596)

**Internal changes**

- Authentication policies can now hard code and override the name specified in settings

**Documentation**

- Version number is taken from package in order to ease release process (1594)
- Copyright year is now dynamic (1595)

**Internal changes**

- Upgrade the kinto-admin UI to `1.17.0 <https://github.com/Kinto/kinto-admin/releases/tag/v1.17.0>`_

------------------

**Security fix**

- Validate the account user password even when the session is cached (fixes 1583).
Since Kinto 8.2.0 the account plugin had a security flaw where the password wasn't verified during the session duration.

**New features**

- Add bucket and account creation permissions in the permissions endpoint (fixes 1510)

**Bug fixes**

- Reduce the OpenID state string length to fit in the PostgreSQL cache backend (fixes 1566)

**Documentation**

- Improve OpenID settings and API documentation

**Internal Changes**

- Now fully rely on Pyup.io (or contributors) to update the versions in the `requirements.txt` file (fixes 1512)
- Move from importing pip to running it in a subprocess (see https://github.com/pypa/pip/issues/5081).
- Remove useless print when using the OpenID policy (ref 1509)
- Try to recover from the race condition where two requests can delete the same record. (Fix 1557; refs 1407.)
- Fix a bug in the memory backend where paginating past the end of a list would restart pagination. (Refs 1584.)

------------------

**Internal changes**

- Fix kinto-admin dependency error in 8.2.1 to actually really upgrade it to `1.15.1 <https://github.com/Kinto/kinto-admin/releases/tag/v1.15.1>`_