From d39fbfac0192fc9a2dc825dc17ede29776863f5f Mon Sep 17 00:00:00 2001 From: Jordan Cook Date: Sun, 10 Apr 2022 12:15:46 -0500 Subject: Add default list of ignored_parameters for most common authentication params/headers --- HISTORY.md | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) (limited to 'HISTORY.md') diff --git a/HISTORY.md b/HISTORY.md index a9aea84..663062e 100644 --- a/HISTORY.md +++ b/HISTORY.md @@ -14,7 +14,7 @@ * The constant `requests_cache.DO_NOT_CACHE` may be used to completely disable caching for a request **Backends:** -* Add `wal` parameter for SQLite backend to enable write-ahead logging +* SQLite: Add a `wal` parameter to enable write-ahead logging **Other features:** * All settings that affect cache behavior can now be accessed and modified via `CachedSession.settings` @@ -27,6 +27,8 @@ * Populate `cache_key` and `expires` for new (non-cached) responses, if it was written to the cache * Add return type hints for all `CachedSession` request methods (`get()`, `post()`, etc.) * Always skip both cache read and write for requests excluded by `allowable_methods` (previously only skipped write) +* Ignore and redact common authentication params and headers (e.g., for OAuth2) by default + * This is simply a default value for `ignored_parameters`, to avoid accidentally storing credentials in the cache **Dependencies:** * Replace `appdirs` with `platformdirs` -- cgit v1.2.1