3.4.1

Bug Fixes

• ignore errors when forcefully closing the socket (da851ec)
• use SameSite=Strict by default (001ca62)

Links

• Diff: 3.4.0...3.4.1
• Client release: 3.4.1
• ws version: ^7.1.2

v4.0.0-alpha.1

Links

• Diff: v4.0.0-alpha.0...v4.0.0-alpha.1
• Client release: v4.0.0-alpha.1
• ws version: ^7.1.2

v4.0.0-alpha.0

Features

• decrease the default value of maxHttpBufferSize (734f9d1)
• disable cookie by default and add sameSite attribute (a374471), closes /github.com/jshttp/cookie#options-1
• generateId method can now return a Promise (f3c291f)
• reverse the ping-pong mechanism (31ff875)
• use the cors module to handle cross-origin requests (61b9492)

BREAKING CHANGES

• the handlePreflightRequest option is removed by the change.

Before:

new Server({
  handlePreflightRequest: (req, res) => {
    res.writeHead(200, {
      "Access-Control-Allow-Origin": 'https://example.com',
      "Access-Control-Allow-Methods": 'GET',
      "Access-Control-Allow-Headers": 'Authorization',
      "Access-Control-Allow-Credentials": true
    });
    res.end();
  }
})

After:

new Server({
  cors: {
    origin: "https://example.com",
    methods: ["GET"],
    allowedHeaders: ["Authorization"],
    credentials: true
  }
})

• the syntax has changed from

new Server({
  cookieName: "test",
  cookieHttpOnly: false,
  cookiePath: "/custom"
})

to

new Server({
  cookie: {
    name: "test",
    httpOnly: false,
    path: "/custom"
  }
})

All other options (domain, maxAge, sameSite, ...) are now supported.

• v3.x clients will not be able to connect anymore (they will send a ping packet and timeout while waiting for a pong packet).

Links

• Diff: 3.4.0...v4.0.0-alpha.0
• Client release: v4.0.0-alpha.0
• ws version: ^7.1.2

Release 3.4.0

Features

• add additional debug messages (#586)

Bug fixes

• remove deprecated Buffer usage in dependency (#585)

Diff: 3.3.2...3.4.0
Client release: 3.4.0
ws version: ^7.1.2

3.3.2

#511 was reverted (see socketio/socket.io#3381)

Diff: 3.3.1...3.3.2
Client release: -

3.3.1

Bug fixes

• replace deprecated Buffer usage (#565)

Milestone: 3.3.1
Diff: 3.3.0...3.3.1
Client release: 3.3.1

3.3.0

Features

• allow configuration of Access-Control-Allow-Origin value (#511)

Milestone: 3.3.0
Diff: 3.2.1...3.3.0
Client release: 3.3.0

3.2.1

Bug fixes

• processing error code on abort connection (#562)

Milestone: 3.2.1
Diff: 3.2.0...3.2.1

3.2.0

Important note ⚠️

There are two non-breaking changes that are somehow quite important:

• ws was reverted as the default wsEngine (#550), as there was several blocking issues with uws. You can still use uws by running npm install uws --save in your project and using the wsEngine option:

var engine = require('engine.io');
var server = engine.listen(3000, {
  wsEngine: 'uws'
});

• pingTimeout now defaults to 5 seconds (instead of 60 seconds): #551

Milestone: 3.2.0
Diff: 3.1.5...3.2.0

3.1.5

Milestone: 3.1.5
Diff: 3.1.4...3.1.5