You're Invited:Meet the Socket Team at BlackHat and DEF CON in Las Vegas, Aug 7-8.RSVP →
faye
Advanced tools
Changelog
1.4.0 / 2020-07-31
- Implement TLS certificate verification and enable it by default in the Ruby
client class
Faye::Client - Add a
:tlsoption to the Ruby client with sub-field:verify_peerfor configuring TLS verification - Officially support the
tlsoption in the Node.js client, whose contents are forward to thehttpsandtlsmodules as appropriate
Changelog
1.3.0 / 2020-06-08
- Support
user:pass@authorization in URIs and sendAuthorizationheaders from the Node HTTP transport - Support IPv6 hostnames in URIs
- Allow credentials (cookies and
Authorizationheaders) in cross-origin requests, by:- setting
Access-Control-Allow-Originto the value of theOriginheader (not*) - enabling
Access-Control-Allow-Credentials
- setting
- Enable credentials when sending cross-origin requests
- Don't disconnect WebSocket on page unload if
autodisconnectis turned off - Catch errors when creating a WebSocket, which happens when Content Security Policy blocks it, allowing other transports to be tried
- Fix a bug in the client where it handles messages from other clients as though
they're the server's response to its own messages, based on the
idfield; now we only treat messages as server responses if they containsuccessful: true - Stop sending an empty message list
[]from the WebSocket client as a keep-alive mechanism since CometD does not accept this message - Fix deprecation warnings for using the
new Buffer()constructor - Switch to the Apache 2.0 license
Changelog
1.2.5 / 2020-04-28
- Fix
/meta/*channel recognition bug in the server that enables authentication bypass- https://blog.jcoglan.com/2020/04/28/authentication-bypass-in-faye/
Changelog
1.1.3 / 2020-04-28
- Fix
/meta/*channel recognition bug in the server that enables authentication bypass- https://blog.jcoglan.com/2020/04/28/authentication-bypass-in-faye/
Changelog
1.0.4 / 2020-04-28
- Fix
/meta/*channel recognition bug in the server that enables authentication bypass- https://blog.jcoglan.com/2020/04/28/authentication-bypass-in-faye/
Changelog
1.2.4 / 2017-01-28
- Fix
RackAdapter#get_clientthat was failing due to a URI error - Define
Promise#catchin a safe way for old browsers - Log errors in the Node HTTP transport
Changelog
1.2.3 / 2016-10-11
- Return an error if the
datafield is missing on published messages - Fix errors that occur in the new
websocketutil when the browser does not support WebSocket
Changelog
1.2.0 / 2016-06-26
- Add
client.subscribe().withChannel()to yield the message channel for wildcard subscriptions - Restructure the JavaScript codebase around Node modules (require/exports) rather than globals
- Update the Promise shim to reflect the standard API, including
catch()andall() - Support connecting to servers that use SNI in the Ruby client
- Make the JavaScript client work inside React Native and Web Workers
- Remove JSON2; you should import a JSON shim yourself if necessary
- Handle errors that occur when a message is partially delivered via EventSource
- Reject requests with invalid (non-array or -object) top-level JSON values
- Make local client requests asynchronous to avoid re-entrant request handling errors
- Remove
Connection: Closefrom HTTP responses to allow use of keep-alive - Use
XMLHttpRequestin preference to the ActiveX API in IE10 - Fix bug where flushing large message batches puts promises in an invalid state