0.11.3 (2025-09-05)
- update dependencies to fix security vulnerabilities
- update various dev-dependencies
0.11.2 (2025-03-04)
- Reverted
CurrentUserCheckergeneric
0.11.1 (2025-02-18)
- Fixed
Renderdecorator for Koa
0.11.0 (2025-02-14)
cookiepackage updated to1.0.2from0.5.0globpackage updated to11.0.0from10.2.2reflect-metadatapackage updated to0.2.2from0.1.13- Introduced
UnprocessableEntityError - Dropped support for node versions below 20
0.10.4 (2023-04-17)
globpackage updated to10.1.0from10.2.2
- Fixed koa trailing slash handling
- Fixed controller method inheritance
0.10.3 (2023-04-17)
globpackage updated to10.1.0from8.1.0koapackage updated to2.14.2from2.14.1koa-bodyparsepackage updated to4.4.0from4.3.0- updated various dev dependencies
- Fixed koa uploaded file accessor
0.10.2 (2023-03-06)
globpackage updated to8.1.0from8.0.3body-parserpackage updated to1.20.2from1.20.1multerpackage updated to1.4.5-lts.1from1.4.4- Note: This fixes vulnerability CVE-2022-24434
- updated various dev dependencies
- Added normalization to glob pattern resolver to fix Windows paths
0.10.1 (2023-01-13)
class-validatorpackage updated to0.14.0from0.13.2- Note: class-validator 0.14.0 enables
forbidUnknownValuesby default, but this is overridden in routing-controllers to prevent a breaking change. You can still enable it like before.
- Note: class-validator 0.14.0 enables
koapackage updated to2.14.1from2.13.4- updated various dev dependencies
0.10.0 (2022-12-9)
isArrayoption for@QueryParam
class-transformerpackage updated to0.5.1from0.3.1class-validatorpackage updated to0.13.2from0.12.2cookiepackage updated to0.5.0from0.4.0globpackage updated to8.0.3from7.1.4expresspackage updated to4.18.2from4.17.1and moved tooptionalDependenciesexpress-sessionpackage updated to1.17.1from1.17.3and moved tooptionalDependenciesbody-parserpackage updated to1.20.1from1.19.0multerpackage updated to1.4.4from1.4.2koapackage updated to2.13.4from2.8.2koa-multerpackage replaced with@koa/multerkoa-routerpackage replaced with@koa/router- updated various dev dependencies
- Fixed parsing uuid as route parameter
- Fixed
targetproperty not set during controller inheritance - Fixed
NaNcheck for number route parameters - Added missing null value handling in parameters
- Fixed middlewares not using the defined route prefix
- Add support for wildcard "all" routes (ref [#536])
- Controller inheritance - Added missing tests, code samples, and updated documentation (ref [#578][#301])
- Added a useResponseClassTransformer global option (ref [#329])
- Through [#329], it should now be possible to use classTransformer only for input (ref [#179])
- Added support for controller inheritance (ref [#147])
- Update all dependencies and changed it to use npm auto-update patches and minor versions (ex.: "class-validator": "^0.12.2", instead of "class-validator": "0.12.2" (ref [#550])
- Updated project tooling (ref [##618])
- Input-validation bypass vulnerability (ref [#518])
- Fixed issue that would cause multiple route executions per request (ref [#568])
- Fixed export of SessionParam at index (ref [#526])
- Through [#536], it should now prevent conflicts in routes names (ref [#547])
- Through [#568], it should now prevent a single request triggering multiple route executions that would cause Error [ERR_HTTP_HEADERS_SENT]: Cannot set headers after they are sent to the client issue. (ref [#491])
- Fixed order of global interceptors (ref [#543])
- Fixed incorrect handling of rejected promises from Middleware.use() (ref [#438])
- Through [#329], it should fix performance issue with big json result (ref [#226])
- Through [#329], it should fix problem with mongoose model serialization (ref [#149])
- Local ValidationOptions are not overwriting global defaults (ref [#618])
- Added TypeDI service decorator to example in README (ref [#643])
- Translate document to Chinese (ref [#574])
- Fix typo in README (ref [#571])
- Add another example for using the response directly (ref [#546])
- class-transformer and class-validator are now peer dependencies.
- extract generic
@Session()deocorator into@SessionParam()and@Session()(ref [#335][#348][#407]) - restore/introduce
@QueryParams()and@Params()missing decorators options (ref [#289][#289]) - normalize param object properties (for "queries", "headers", "params" and "cookies"), with this change you can easily validate query/path params using
class-validator(ref [#289][#289]) - improved params normalization, converting to primitive types is now more strict and can throw ParamNormalizationError (e.g. when number is expected but an invalid string (NaN) has been received) (ref [#289][#289])
- feat(ErrorHandling): add support for custom toJSON method in errors (ref #325)
- fixed inconsistent roles parameter in authorizationChecker (ref #308)
- fixed bugs with undefined result code behaviour
- fixed bugs with undefined result code behaviour
- fixed bugs with undefined result code behaviour
- Support for returning Buffer and streams from action handler (controller's method) (ref #285)
- Custom driver support (ref #276)
- Directly calling response bug (ref #286)
- Missing parameter in @BodyParam error message (ref #284)
- Sync and async auth checker bug (ref (ref #283)
- Handling different content-type responses in JsonController (ref #277)
- Using
@Authorizationdecorator with Koa caused 404 responses (ref #240) - Allow throwing custom errors in
authorizationChecker(ref #233) - check auth permissions before accepting files for upload (ref #251)
- some routing-controllers options has been changed and renamed
- returned validation error value signature has changed
- controllers and middlewares now can be specified in routing-controllers options
MiddlewareInterfacewas removed and insteadExpressMiddlewareInterfaceorKoaMiddlewareInterfaceshould be usedErrorMiddlewareInterfacewas renamed toExpressErrorMiddlewareInterface- per-controller and per-action middlewares used in
@UseBeforeand@UseAfternow should not be marked with@Middlewaredecorator @MiddlewareGlobalBefore()and@MiddlewareGlobalAfter()were removed and instead new signatures should be used:@Middleware({ type: "before" })and@Middleware({ type: "after" })- named some decorator parameter names
- added few new decorators to get all parameters like
@QueryParams,@Params,@HeaderParamsetc. - added
@Authorizedand@CurrentUserdecorators - added new
@Ctxdecorator to use context with koa @NullResultCodehas been renamed to@OnNull, now supports error classes@UndefinedResultCodehas been renamed to@OnUndefined, now supports error classes@EmptyResultCodehas been removed. Use@OnUndefineddecorator instead and return concrete types in your controllers.- added ability to create custom decorators
- enabled validation by default
- multiple bug fixes
- codebase refactoring
- removed
JsonResponseandTextResponsedecorators
- added integration with
class-transform-validatorfor deserialization and auto validation request parameters
- made interceptors to support promises
- added interceptors support
- middleware and error handlers support
- everything packed into "routing-controllers" main export
- added few more new decorators
- fixed multiple issues with param decorators
- fixed multiple bugs
- refactored core
- removed
parseJsonfrom@Bodydecorator - removed
ActionOptions - removed
responseTypefrom action options and added@JsonResponseand@TextResponsedecorators
- renamed package from
controllers.tstorouting-controllers - added integration with
constructor-utilsfor serialization and deserialization