actix-web-httpauth: v0.8.1

• Implement From<Basic> for BasicAuth.
• Minimum supported Rust version (MSRV) is now 1.68.

actix-cors: v0.6.4

• Add Cors::allow_private_network_access() behind an unstable flag (draft-private-network-access). [#297]

actix-cors: v0.6.3

• Minimum supported Rust version (MSRV) is now 1.59 due to transitive time dependency.
• Add Cors::block_on_origin_mismatch() option for controlling if requests are pre-emptively rejected. #286

actix-session: v0.7.2

• Set SameSite attribute when adding a session removal cookie. #284
• Minimum supported Rust version (MSRV) is now 1.59 due to transitive time dependency.

actix-limitation: v0.4.0

• Add Builder::key_by for setting a custom rate limit key function.
• Implement Default for RateLimiter.
• RateLimiter is marked #[non_exhaustive]; use RateLimiter::default() instead.
• In the middleware errors from the count function are matched and respond with INTERNAL_SERVER_ERROR if it's an unexpected error, instead of the default TOO_MANY_REQUESTS.
• Minimum supported Rust version (MSRV) is now 1.59 due to transitive time dependency.

actix-protobuf: v0.9.0

• Added application/x-protobuf as an acceptable header.
• Updated prost dependency to 0.11.

actix-cors: v0.6.2

• Fix expose_any_header to return list of response headers. #273
• Minimum supported Rust version (MSRV) is now 1.57 due to transitive time dependency.

actix-settings: v0.6.0

• Update Actix Web dependencies to v4 ecosystem.
• Rename actix.ssl settings object to actix.tls.
• NoSettings is now marked #[non_exhaustive].

actix-session: v0.7.1

• Fix interaction between session state changes and renewal. #265

actix-web-httpauth: v0.8.0

• Removed AuthExtractor trait; implement FromRequest for your custom auth types. #264
• BasicAuth::user_id() now returns &str. #249
• BasicAuth::password() now returns Option<&str>. #249
• Basic::user_id() now returns &str. #264
• Basic::password() now returns Option<&str>. #264
• Bearer::token() now returns &str. #264