Express 4.14 released
hacksparrow
The 4.14.0 minor release is a bunch of bug fixes, performance improvements, and minor feature additions. The most salient points are listed below.
This version onwards, Express supports Node.js 6.x.
res.sendFilenow accepts two new options,acceptRangesandcacheControl.You can use
acceptRanges, which defauts totrue, to enable or disable accepting ranged requests. Disabling it will not sendAccept-Rangesand ignore the contents of theRangerequest header.cacheControl, which defaults totrue, can be used to enable or disable settingCache-Controlresponse header. Disabling it will ignore themaxAgeoption.res.sendFilehas also been updated to handleRangeheader and redirections better.res.locationandres.redirectwill now URL encode the URL, if it is not already.You will notice great improvement in the performance of
res.jsonandres.jsonpin most cases.Apart from a number of improvements in the cookie module, it now adds a
sameSiteoption to let you specify the SameSite cookie attribute.Note that, the
SameSitecookie attribute is an attribute that has not yet been fully standardized, and may change in the future. This also means many clients may ignore this attribute until they understand it.The possible value for the
sameSiteoption are:true, which sets theSameSiteattribute toStrictfor strict same site enforcement.false, which does not set theSameSiteattribute.'lax', which sets theSameSiteattribute toLaxfor lax same site enforcement.'strict', which sets theSameSiteattribute toStrictfor strict same site enforcement.
Absolute path checking on Windows, which was incorrect for some cases, has been fixed now.
IP address(es) resolution with proxies has been greatly improved.
The
req.rangeoptions object now includes acombineoption (falseby default), which whentrue, combines overlapping and adjacent ranges and return as if they were specified that way in the header.
For a complete list of changes in this release, you can refer to its entry in History.md.
