Skip to content

Release v1.1.0

Latest
Latest

Choose a tag to compare

View all tags
@github-actions github-actions released this 02 Jan 09:21
· 1 commit to main since this release
v1.1.0
5d2b0cb

Added

  • Trusted proxy support for rate limiting and IPv6 CIDR matching.
  • Database and Redis throttle storages with atomic increments.
  • AtomicThrottleStorageInterface and atomic RateLimiter::attempt() flow.
  • Throttle presets with login (IP + account) support and RateLimit-* headers.
  • Migration for throttle table and optional E2E tests for MySQL/Redis.

Changed

  • Rate limiting key now uses request path (without query) by default.
  • csrf_field() respects configured input key; csrf_token() tries DI container when available.

Removed

  • LoginThrottleRequests middleware (use ThrottleRequests with login preset).

Upgrade notes

  • If you used LoginThrottleRequests, switch to ThrottleRequests with the login preset.
  • For multi-node deployments, configure storage as database or redis.
  • If you set a custom table name, ensure the migration uses security.throttle.table.
Assets 2
Loading