* Remove observers from Model on end of the stream (Alexei Smirnov)
* Fix Model#settings.acls doc type signature (Farid Nouri Neshat)
* Use `localhost` instead of `::` for local (Daijiro Wachi)
* Fix API doc for Model class property type (Candy)
* Update package.json (sqlwwx)
* Support remoting adapters with no ctx.req object (Piero Maltese)
* update strong-error-handler (sqlwwx)
* Add new event "remoteMethodAdded" (Flavien DAVID)
* Forward options in prepareForTokenInvalidation (Miroslav Bajtoš)
* Check max password length in User.changePassword (Miroslav Bajtoš)
* Add User.changePassword(id, old, new, cb) (Miroslav Bajtoš)
* Propagate authorized roles in remoting context (ebarault)
* Run the latest Node.js 7 version on Travis again (Miroslav Bajtoš)
* Lock down Travis CI Node 7 version to 7.7.1 (Miroslav Bajtoš)
* README: add a link to our announcements list (Miroslav Bajtoš)
* Allow custom properties of Change Model (agriwebb build)
* Fix User.verify to convert uid to string (phairow)
* Pass options.verificationToken to templateFn (Hiran del Castillo)
* fix custom token model in token middleware (ebarault)
* Update runtime dependencies (Miroslav Bajtoš)
* Verify User and AccessToken relations at startup (Miroslav Bajtoš)
* Deep-clone model settings in lib/builtin-models (Miroslav Bajtoš)
* Use local registry in test/replication.rest.test (Miroslav Bajtoš)
* Fix test/access-token.test to use local registry (Miroslav Bajtoš)
* Fix context passing in OWNER role resolver (Benjamin Schuster-Boeckler)
* Fix Role.isOwner() for multiple user models (ebarault)
* Update ISSUE_TEMPLATE.md (Simon Ho)
* Upgrade supertest to 3.x (Miroslav Bajtoš)
* Fix creation of verification links (Miroslav Bajtoš)
* Enable multiple user models (Eric)
* Babelify juggler for Karma tests (Miroslav Bajtoš)
* Fix Karma config to babelify node_modules too (Miroslav Bajtoš)
* Add promise support to built-in model RoleMapping (ebarault)
* Add promise support to built-in model ACL (ebarault)
* Add nyc coverage, report data to coveralls.io (Miroslav Bajtoš)
* Upgrade eslint config, fix linter errors (Miroslav Bajtoš)
* Add missing type to Role properties definition (David Hernandez)
* Preserve sessions on User.save() making no changes (Miroslav Bajtoš)
* Fix logout to handle no or missing accessToken (Ritchie Martori)
* Promise-ify built-in Role model (Miroslav Bajtoš)
* Remove .jscsrc that's no longer used (Miroslav Bajtoš)
* Enable ES6/ES2015 goodness (Miroslav Bajtoš)
* Remove test/support.js from karma config (Miroslav Bajtoš)
* Use English when running Mocha tests (Miroslav Bajtoš)
* Update ISSUE_TEMPLATE (Simon Ho)
* Updating README - add cli and remove arc (Joe Sepi)
* Fix User methods to use correct Primary Key (Aris Kemper)
* Fix User.resetPassword to call createAccessToken() (João Ribeiro)
* Role model: resolves related models by name (Benjamin Kroeger)
* lib/registry: fix findModel for model ctor (Miroslav Bajtoš)
* Refer to licenses with a link (Sam Roberts)
* Fix user.resetPassword to fail on email not found (Simo Moujami)
* Fix typo in doc comment (Rand McKinney)
* Do not include redundant ports in verify links (Samuel Gaus)
* Set application's id property only if it's empty. (wusuopu)
* Check configs for shared method settings (Simon Ho)
* Add test fixtures for shared methods (Simon Ho)
* Clean up .jshintrc (Simon Ho)
* Update comment about user ACL to reflect implementation (Felipe Oliveira Carvalho)
* Add util methods to ACL and clean up related model resolutions (Raymond Feng)
* Promisify 'PersistedModel - replication' (Pradnya Baviskar)
* Promisify 'Application' model (Pradnya Baviskar)
* Allow methods filter for middleware config (Raymond Feng)
* Don't load Bluebird for createPromiseCallback (Miroslav Bajtoš)
* fix exit early when password is non-string closes#1437 (Berkeley Martinez)
* Promisify User model (Pradnya Baviskar)
* Add missing . to user model property descriptions (Richard Walker)
* Disable application model test for karma (Raymond Feng)
* Fix jsdocs for methods with where argument (Raymond Feng)
* Add link to createChangeStream docs (Ritchie Martori)
* Add PersistedModel.createChangeStream() (Ritchie Martori)
* Remove trailing whitespace from jsdoc (Ritchie Martori)
* Update model.js (Rand McKinney)
* Downgrade version of loopback-testing (Ritchie Martori)
* Auto-configure models required by `app.enableAuth` (Miroslav Bajtoš)
* Add loadBuiltinModels flag to loopback(options) (Miroslav Bajtoš)
* Add a unit-test for searchDefaultTokenKeys (Miroslav Bajtoš)
* access-token: add option "searchDefaultTokenKeys" (Owen Brotherwood)
* Fix the test case (Raymond Feng)
* Fix code standards issues (Tom Kirkpatrick)
* Add test case to highlight fatal error when trying to include a scoped relationship through a polymorphic relationship (Tom Kirkpatrick)
* add callback args for listByPrincipalType to jsdoc comment, pass explicit arguments to callback (Esco Obong)
* mark utiltiy function as private (Esco Obong)
* fix linting errors (Esco Obong)
* fix lint erros (Esco Obong)
* consolidate Role methods roles, applications, and users into one, add query param to allow for pagination and restricting fields (Esco Obong)
* fix implementation of Role methods: users,roles, and applications (Esco Obong)
* Use the new remoting.authorization hook for check access (Ritchie Martori)
* Define remote methods via model settings/config (Miroslav Bajtoš)
* Pass the full options object to the email send method in user verification process. (Alexandru Savin)
* un-document _findLayerByHandler (Rand McKinney)
* Gruntfile: disable debug & watch for CI builds (Miroslav Bajtoš)
* Update devDependencies to the latest versions (Miroslav Bajtoš)
* Remove trailing whitespace added by 242bcec (Miroslav Bajtoš)
* Update model.js (Rand McKinney)
* Improve error handling in replication (Miroslav Bajtoš)
* Add `loopback.runInContext` (Miroslav Bajtoš)
* Fix style issues (Raymond Feng)
* Document the new third callback arg of replicate() (Miroslav Bajtoš)
* Fix API doc for updateAll/deleteAll (Miroslav Bajtoš)
* Import subset of underscore.string scripts only (Miroslav Bajtoš)
* Use `ctx.instance` provided by "after delete" hook (Miroslav Bajtoš)
* Add conflict resolution API (Miroslav Bajtoš)
* Detect 3rd-party changes made during replication (Miroslav Bajtoš)
* Ability to pass in custom verification token generator This commit adds the ability for the developer to use a custom token generator function for the user.verify(...) method. By default, the system will still use the crypto.randomBytes() method if no option is provided. (jakerella)
* Remove unnecessary delay in tests. (Miroslav Bajtoš)
* Update README.md (Simon Ho)
* Remove duplicate cb func from getRoles and other doc cleanup (crandmck)
* Enhance the token middleware to support current user literal (Raymond Feng)
* Handling owner being a relation/function (Benjamin Boudreau)
* Run replication tests in the browser too (Miroslav Bajtoš)
* Add replication tests for conflict resolution (Miroslav Bajtoš)
* Fix an assertion broke by recent chai upgrade. (Miroslav Bajtoš)
* Static ACL support array of properties now (ulion)
* Add more integration tests for replication (Miroslav Bajtoš)
* Prevent more kinds of false replication conflicts (Miroslav Bajtoš)
* Upgrade deps (Raymond Feng)
* Fix "Issues" link in readme (Simon Ho)
* Add more debug logs to replication (Miroslav Bajtoš)
* Fixes#1158. (Jason Sturges)
* Checkpoint: start with seq=1 instead of seq=0 (Miroslav Bajtoš)
* Return new checkpoints in callback of replicate() (Miroslav Bajtoš)
* Create a remote checkpoint during replication too (Miroslav Bajtoš)
* Replication: fix checkpoint-related race condition (Miroslav Bajtoš)
* Support different "since" for source and target (Miroslav Bajtoš)