0.31.7

• Added more helpful error when user starts app without valid HTTPS certs.
• Updated dependencies.

0.31.6

• Fixed hardcoded express 4 dependency mistakenly set to express 5.
• Updated dependencies.

0.31.5

• Added SWAP_HTTPS_TO_HTTP env var which switches from https to http.
• Added DISABLE_HTTP env var which disables http.
• Updated dependencies.

0.31.4

• Fixed a bug in the CSRF handler.
• Updated dependencies.

0.31.3

• Added warning to the debug markup on 403 "forbidden" POST error pages instructing the user to include the CSRF token in their request.
• Fixed a bug that could cause undefined to print on error pages in certain circumstances.
• Updated dependencies.

0.31.2

• Fixed bug that caused cookie parser to not load under certain circumstances.
• Updated dependencies.

0.31.1

• Changed expressSession default to true so that csrfProtection's default being true will actually function.
• Updated dependencies.

0.31.0

• Breaking: npm run generate-csrf-secret script removed, as it is no longer necessary due to an internal switch of Roosevelt's CSRF dependency from csrf-csrf to csrf-sync. You should delete any csrfSecret.json files in your secrets directory after upgrading Roosevelt, as the file is no longer needed. You should also remove the npm run generate-csrf-secret from your package.json.
• Added expressVersion param which lets you decide which version of Express to use. Choose between either 4 or 5. This option exists because there are significant differences between Express 4 and Express 5. Default: 5.
• Added glob pattern support to CSRF route exemption param.
• Removed enableCLIFlags param which has been obsolete for some time and didn't actually do anything.
• Changed the deprecation checker to only run in development mode and added a new param deprecationChecks that will let you disable it entirely.
• Updated dependencies.

0.30.7

• Added new onBeforeControllers event.
• Added new html.folderPerPage param.
• Made it easier to debug HTML validation errors on static sites.
• Fixed bugs associated with the stopServer() method.
• Fixed bugs associated with using a roosevelt.config.json file in your app.
• Fixed a bug that could cause middleware errors not to flow through the middleware stack correctly.
• Copyedited documentation significantly.
• Updated dependencies.

0.30.6

• Added onBeforeStatics event.
• Altered makeBuildArtifacts log to be a warning.
• Fixed writing JS file log to be properly classified as info instead of log.
• Fixed a bug that could cause the static site generator to not write new files even if the file has changed.
• Updated dependencies.