Added

• Improve the PGRST106 error when the requested schema is invalid by @laurenceisla in #4089
  • It now shows the invalid schema in the message field.
  • The exposed schemas are now listed in the hint instead of the message field.
• Improve error details of PGRST301 error by @taimoorzaeem in #4051

Fixed

• Fix logging the Haskell type instead of the listener error message directly by @laurenceisla in #3588
• Fix format of IPv6 address logged at PostgREST startup by @taimoorzaeem in #4291
• Fix empty enum in preferParams OpenAPI parameter by @laurenceisla in #4292

Fixed

• Fix OpenAPI broken docs link by @taimoorzaeem in #4048
• Fix OpenAPI specification incorrectly exposing GET methods for volatile functions by @joelonsql in #4174
• Fix empty spread embeddings return unexpected SQL error by @taimoorzaeem in #3887
• Fix /metrics endpoint not responding with Content-Type header by @taimoorzaeem in #4271

Fixed

• Fix regression that makes full-text search not work on domain types based on tsvector by @laurenceisla in #4135
• Fix jwt-aud config not failing when set to an invalid URI by @taimoorzaeem in #4132

Fixed

• Fix max-affected preference not failing with RPC when handling=strict by @taimoorzaeem in #4100
• Fix a property definition's type in OpenAPI not showing the correct base type of a recursive domain by @laurenceisla in #4136

Fixed

• Fix regression that makes ORDER BY with nulls-order not work alongside limits by @laurenceisla in #4109

Fixed

• Fix jwt error returning HTTP status 400 for invalid role by @taimoorzaeem in #3601
• Fix db-extra-search-path cannot be set to nothing by @taimoorzaeem in #4074
  • It can now be disabled by setting it to empty string.
  • Schema Cache load error is now logged including db-schemas and db-extra-search-path config values.

Features

API

• Spread to-many relationships by @laurenceisla in #3640

  • Using aggregates in spread to-many is not yet supported (ref).

• Automatic tsvector convertion on filters by @laurenceisla in #2255

• Improved performance when using RPCs via GET by @wolfgangwalther in #2858

  • The generated queries are tuned so indexes can be used in more cases.

• Allow using not_null as value for the is operator by @taimoorzaeem in #3747

Authentication

• Searching on an array for JWT Role Extraction by @taimoorzaeem in #1536.

Observability

• Proxy-Status header for error responses by @taimoorzaeem in #2967
• Content-Length header for traces on egress traffic by @laurenceisla in #4016
• SQL query logs by @laurenceisla in #1578
• Log resolved host in startup "Listening on ..." messages by @develop7 in #3560
• Log maximum pool size by @steve-chavez in #3727
• Log connection pool borrows on log-level=debug by @taimoorzaeem in #3903

Errors

• Improved JWT errors by @taimoorzaeem in #3600, #3926
  • PGRST301 is now returned when Bearer in the Authorization header is sent empty
  • PGRST303 is now returned when decoding JWT claims fails
  • Better diagnostic error messages instead of exposed internals messages
• Return PGRST125 instead of an empty json, when an invalid URL path is requested by @taimoorzaeem in #3906
• Return PGRST126 instead of an empty json, when OpenAPI is requested and it's disabled by @taimoorzaeem in #3906

Admin Server

• admin-server-host config to set the host for the admin server by @develop7 in #3558

Fixes

• Prevent spread embedding to allow aggregates when they are disabled by @laurenceisla in #3693
• A nested spread embedding now correctly groups by the fields of its top parent relationship by @laurenceisla in #3693
• Fix spread embedding errors when using the count() aggregate without a field by @laurenceisla in #3693
  • Fixed "column reference <col> is ambiguous" error when selecting ?select=...table(col,count())
  • Fixed "column <json_aggregate>.<alias> does not exist" error when selecting ?select=...table(aias:count())
• Clarify listener logs by @steve-chavez in #3727
• Clarify Accept: vnd.pgrst.object error message by @steve-chavez in #3795
• Handle queries on non-existing table gracefully by @taimoorzaeem in #3697, #3602
• Fix using order= in mutation requests by @taimoorzaeem in #3013
• Fix filtering on unselected columns in a table-valued function by @taimoorzaeem in #3965
• Fix schema cache loading duplicate objects with different object type but same oid by @taimoorzaeem in #4052
• Querying non-existent table now returns PGRST205 error instead of an empty json by @taimoorzaeem in #3697, #3602
• Fail to start when server-port and admin-server-port config options are the same by @develop7 in #3508
• Fail to start when the JWT secret is less than 32 characters long by @laurenceisla in #3607

Breaking Changes

• Drop support for Postgres EOL versions: 9.6, 10 and 11 by @wolfgangwalther in #2052.
• Drop support for Prefer: params=single-object by @joelonsql in #3757
  • This preference was deprecated in favor of Functions with an array of JSON objects
• Drop support for Limited updates/deletes by @steve-chavez in #3013
  • The feature was complex and had surprising behavior when using order on mutations.
  • If you'd like to limit affected rows on mutations, you can use the max-affected preference instead.
• Drop Runtime Configuration endpoint of admin server by @steve-chavez in #3956
  • The endpoint was at risk of being left unprotected when exposing it.
  • The accompanying admin-server-config-enabled config was also dropped.
• Fail to start on an invalid db-schemas or db-extra-search-path by @wolfgangwalther in #3644
  • Previously, this would silently return 200 - OK on the root endpoint, but don't provide any usable endpoints.
  • Note: This also applies when deleting the public schema - both config options default to that.
• PostgREST now validates the kid parameter of the JWT by @wolfgangwalther in #3598
  • If the JWT contains a kid parameter, PostgREST will look for the JSON Web Key in the jwt-secret.
  • If the JWT doesn't contain a kid, the behavior should be backwards compatible. PostgREST will try each key in the jwt-secret one by one until it finds one that works.

Fixed

• #3956, Fix exposing admin server /config by default - @steve-chavez
  • The above endpoint is now disabled unless the admin-server-config-enabled config is set to true

Fixed

• #4030, Fix regression with parameter charset=utf-8 in mediatype - @taimoorzaeem