3.7.0

• FIX: Prevent linkWith sessionToken from generating new session #5801, thanks to Diamond Lewis
• GraphQL: Improve session token error messages #5753, thanks to Douglas Muraoka
• NEW: GraphQL { functions { call } } generic mutation #5818, thanks to Antonio Davi Macedo Coelho de Castro
• NEW: GraphQL Custom Schema #5821, thanks to Antonio Davi Macedo Coelho de Castro
• NEW: GraphQL custom schema on CLI #5828, thanks to Antonio Davi Macedo Coelho de Castro
• NEW: GraphQL @mock directive #5836, thanks to Antonio Davi Macedo Coelho de Castro
• FIX: GraphQL _or operator not working #5840, thanks to Antonio Davi Macedo Coelho de Castro
• NEW: Add "count" to CLP initial value #5841, thanks to Douglas Muraoka
• NEW: Add ability to alter the response from the after save trigger #5814, thanks to BrunoMaurice
• FIX: Cache apple public key for the case it fails to fetch again #5848, thanks to Antonio Davi Macedo Coelho de Castro
• NEW: GraphQL Configuration Options #5782, thanks to Omair Vaiyani
• NEW: Required fields and default values #5835, thanks to Antonio Davi Macedo Coelho de Castro
• FIX: Postgres safely escape strings in nested objects #5855, thanks to Diamond Lewis
• NEW: Support PhantAuth authentication #5850, thanks to Ivan SZKIBA
• FIX: Remove uws package #5860, thanks to Zeal Murapa

3.6.0

• SECURITY FIX: Address Security Advisory of a potential Enumeration Attack 73b0f9a, big thanks to Fabian - Strachanski for identifying the problem, creating a fix and following the vulnerability disclosure guidelines
• NEW: Added rest option: excludeKeys #5737, thanks to Raschid J.F. Rafeally
• FIX: LiveQuery create event with fields #5790, thanks to Diamond Lewis
• FIX: Generate sessionToken with linkWith #5799, thanks to Diamond Lewis

3.5.0

• NEW: GraphQL Support #5674 thanks to Antonio Davi Macedo Coelho de Castro. Check out the GraphQL Guide
• NEW: Sign in with Apple #5694 thanks to Diamond Lewis
• NEW: AppSecret to Facebook Auth #5695 thanks to Diamond Lewis
• NEW: Postgres: Regex support foreign characters #5598 thanks to Jeff Gu Kang
• FIX: Winston Logger string interpolation #5729 thanks to Diamond Lewis

3.4.4

Fix: Commit changes that were intended to be in 3.4.3

3.4.3

Fix: Use changes in master to travis configuration to enable pushing to npm and gh_pages. See diff for details.

3.4.2

Fix: In my haste to get a Security Fix out, I added 8709daf to master instead of to 3.4.1. This commit fixes that. Arthur Cinader

3.4.1

Security Release to address: GHSA-2479-qvv7-47qq

3.4.0

Full Changelog

• NEW: Aggregate supports group by date fields #5538 thanks to Antonio Davi Macedo Coelho de Castro
• NEW: API for Read Preferences #3963 thanks to Antonio Davi Macedo Coelho de Castro
• NEW: Add Redis options for LiveQuery #5584 thanks to Diamond Lewis
• NEW: Add Direct Access option for Server Config #5550 thanks to Diamond Lewis
• FIX: updating mixed array in Postgres #5552 thanks to Diamond Lewis
• FIX: notEqualTo GeoPoint Query in Postgres #5549 thanks to Diamond Lewis
• FIX: put the timestamp back in logs that was lost after Winston upgrade #5571, thanks Steven Rowe and Arthur Cinader
• FIX: Validates permission before calling beforeSave #5546 thanks to Antonio Davi Macedo Coelho de Castro
• FIX: Remove userSensitiveFields default value. #5588 thanks to William George
• FIX: Decode Date JSON value in LiveQuery. #5540 thanks to ananfang

3.3.0

Full Changelog

• NEW: beforeLogin trigger with support for auth providers (#5445), thanks to Omair Vaiyani
• NEW: RFC 7662 compliant OAuth2 auth adapter (#4910), thanks to Müller Zsolt
• FIX: cannot change password when maxPasswordHistory is 1 (#5191), thanks to Tulsi Sapkota
• FIX (Postgres): count being very slow on large Parse Classes' collections (#5330), thanks to CoderickLamar
• FIX: using per-key basis queue (#5420), thanks to Georges Jamous
• FIX: issue on count with Geo constraints and mongo (#5286), thanks to Julien Quéré

3.2.3

Full Changelog

• Correct previous release with a patch that is fully merged