Version 0.61.4 (April 2026)
Released: April 1, 2026
This release improves WebSocket reconnection, hardens credential handling, and fixes the two-factor authentication flow.
1. NEW FEATURES
Capped Reconnect Backoff (max_reconnect_backoff)
The _MistWebsocket client now supports a max_reconnect_backoff parameter to cap the exponential backoff delay during reconnection attempts:
ws = mistapi.websockets.sites.DeviceStatsEvents(
apisession,
site_ids=["<site_id>"],
auto_reconnect=True,
max_reconnect_backoff=60.0 # Cap backoff at 60 seconds
)Unlimited Reconnect Attempts
Setting max_reconnect_attempts=0 now enables unlimited reconnection attempts:
ws = mistapi.websockets.sites.DeviceStatsEvents(
apisession,
site_ids=["<site_id>"],
auto_reconnect=True,
max_reconnect_attempts=0 # Reconnect indefinitely
)2. IMPROVEMENTS
Credential Override Logging
APISession now logs INFO-level messages when credentials (host, email, password, API token) are overridden by:
- Constructor parameters overriding environment variables
- Vault secrets overriding previously loaded values
- Keyring credentials overriding previously loaded values
Security: Password Cleared After Login
The stored password is now cleared from memory immediately after successful login authentication.
User Attribute Handling
APISession._getself() now only sets a fixed set of known user-related attributes instead of setting every response key as an object attribute.