1.4.1

What's Changed

• Fix the reset_password_token_created signal to be fired even when no token have been created. by @emickiewicz in #188

New Contributors

• @emickiewicz made their first contribution in #188

Full Changelog: 1.4.0...1.4.1

1.4.0

What's Changed

• add postgres workflow tests by @anx-mfischer in #168
• issue154: add reset_password_token to pre/post reset signals by @anx-abruckner in #169
• Add DRF 3.14 to Compatibility Matrix by @jonahgeorge in #179
• Add translations to Brazilian Portuguese by @silasvasconcelos in #159
• Increase max_length of user_agent to 512 by @nezhar in #182
• Implemented the possibility to return the username and email address when validating a token by @mikelandzelo173 in #184
• Added logic and test cases for generating and clearing tokens programmatically by @mikelandzelo173 in #181
• Updated CHANGELOG.md and workflows for 1.4.0 release by @nezhar in #187

New Contributors

• @jonahgeorge made their first contribution in #179
• @silasvasconcelos made their first contribution in #159
• @mikelandzelo173 made their first contribution in #184

Full Changelog: 1.3.0...1.4.0

1.3.0

What's Changed

• Allow password reset without being authenticated by @nittolese in #148
• Update readme, compatibility matrix, prepare new release by @nezhar in #167

New Contributors

• @nittolese made their first contribution in #148

Full Changelog: 1.2.1...1.3.0

1.2.1

Fixed

• CVE-2019-19844 potentials

1.2.0

Added

• Support for Django 3.x, DRF 3.1x

Changed

• Dropped support for Python 2.7 and 3.4, Django 1.11, 2.0 and 2.1, DRF < 3.10

1.1.0 release

Update license and setup.py

Validate a token, nullable fields

• Added an endpoint to "just" validate a token (good for SPAs, see issue #45) - big thanks to @Hall-Erik for MR #60 (and #59)
• Nullable fields for user agent and remote address are now a thing - see MR #58 and issue #34
• Use urandom as a "better" random number generator for RandomNumbertokenGenerator - see commit 96e2341#diff-acc725a3d6fc8d27d175f0008640b15e
• Several updates to the README

Anti Information Leakage

• Added ability to always return 200: OK, even though the email address was not found #54 - thanks to @stan-sack
• Added ability to toggle between "user requires to have a usable password" #55 - thanks to @stan-sack
• A typo in README was fixed #51 - thanks to @wencakisa

Dynamic Lookup Field

• Added dynamic lookup field for email - thanks to @iagocanalejas for PR #31
• Safe .get() key function for request.META - thanks to @talbenbasat for PR #40
• Docu updates

Browsable API, Password validations, and more

Integrated Pull Request #24 which adds:

• Proper validation errors
• Password validations (based on Djangos Built-in validate_password function)
• Browsable API Support

Thanks to @thapabishwa for PR #22 and PR 27 as well as @maljuboori91 for PR #21 which inspired those changes.

Also integrated PR #20 which allows to customize Token Generation (e.g., RandomNumberTokenGenerator).
Thanks for @rtiwarihr and @iagocanalejas for their proposals and help.

Also integrated PR #18 by @iagocanalejas which adds a management command for clearing expired tokens as well as some refactoring work.

Fixed some codestyle errors (using pycodestyle).

Added basic Support Django 2.2

Added instance to the password_reset_token_created signal (based on Django signals that have sender and instance).

Thanks to all contributors.