Changelog

v1.1.54 — 2026/04/11

Feature Admin view

Admin — permissions: removed from admin!{}: The permissions: [...] field is no longer accepted by the admin!{} macro. Remove it from all resource declarations — access control is now fully managed from the admin panel via scoped permissions. See the Permissions documentation.

Fix Admin view

search & filters (HTMX): Fetch-based admin list view with filter persistence. Includes search bar functionality, partially powered by HTMX.

Feature Admin view

Supports grouped/permission for actions (e.g. bulk delete/edit) in the admin view.

Fix Admin view

Admin — CSRF on login with DB sessions: Fixed CSRF token validation on the admin login page when using database-backed sessions.

Fix Macro search

Macro wrapping sea-orm queries, simplified and intuitive syntax

Fix Deriv_form

Modified — Procedural macro deriv_form to support Sea-ORM relations Updated — search! macro to align with deriv_form changes

Fix Logout

logout (session not cleared): Fixed an issue where users remained authenticated after logout. The session is now properly invalidated server-side, and the cookie is correctly cleared.

Fix Migration

table relationship order: Fixed table relationship ordering issues during creation. The CLI now generates migrations in the correct dependency order.

Fix Admin view

resource-level permissions system: Replaces static permissions: [...] with a database-driven system managed from the admin panel. Scoped permissions use resource_key and access_type (view / write). Write access is enforced server-side before every POST operation.

Fix Admin view

configure {} block in admin!{}: Allows configuring display options (list_display, list_exclude, list_filter) for any registered resource, including builtins. Admin — builtin resources (users, droits, groupes): Automatically registered with full CRUD support. No manual admin!{} declaration required.

Fix Admin view

resource_order([...]) allows controlling navigation order in the admin panel.

Fix Admin view

user creation flow: Users are created inactive and activated only after password setup via email reset flow. Login is blocked until activation is complete. separate create_form: support: Allows defining a dedicated form for creation, enabling password reset flow integration.

Fix Logger

Configurable logging (log_error, log_db, log_security, etc.) with builder error

Fix Macro search

up to take a relationship declaration

← Newer 9 / 13 Older →
Full CHANGELOG ← Back home