Bug Fixes

• oauth2: restore callback handling on static sites (#453) (06165a0)

Bug Fixes

• core: set loggedIn after user (#449) (458d60b)

Bug Fixes

• Move body-parser to dependencies (#441) (@nzakas)

Bug Fixes

• utilities: avoid send xxx=undefined in query (#387) (7c79fd4)
• regression from #385 when callback is set to false (#391) (4605681)
• oauth2: correctly handle callback with hash (#394) (9cf304f)

Bug Fixes

• don't redirect to login page if in guest mode (#385) (3ee609d)

Features

• oauth2: support server-side callback (#381) (af550d4)

4.7.0 (2019-06-13)

Features

• oauth2: support access_type=offline to enable refresh tokens from google (#303) (9553f5c) (@elson)

Docs

• add logout info about auth0 (#378) (@bcnzer)

Bug Fixes

• set-cookie header contains undefined value (#372) (323346e) (@Yama-Tomo)

Bug Fixes

• fix typo in serializedCookie (648fdc9)

Bug Fixes

• server side Set-Cookie always set an array. (#367) (4d3feff)

Improvements

• module: warn if default strategy is not valid (#365) (@motia)

Improvements

• module: warn if default strategy is not valid (#365) (@motia)

Bug Fixes

• storage: accept expires as a number for cookie (dd92ec8)

Bug Fixes

• Add audience to requests (#222, #239) (@kazazes)
• Set extended for body-parser urlencoded to prevent the deprecation warning (#199) (@tobyryuk)
• Remove trailing slash from redirect paths (#235) (@sghgh1996)
• Handle mounted errors during init (#234) (@gotoin)
• Prevent loggedIn being incorrectly set to true (#346) (@glennjacobs, @alexbonhomme, @t-matsu-j)
• Replace deprecated process.browser with process.client (#269) (@sschadwick)
• Preserve query params when redirecting (#193) (@mathieutu)

New Features

• Add resetOnError (#197) (@ishitatsuyuki)
• Add setUserToken (#278) (@dgwight)
• Use strategy tokenName for requestWith (#301) (@terion-name, @farnabaz)
• Support passing extra query params (#358) (@rchl)
• Generate nounce for id_token response type (#298) (@jefer590)
• Add guest option in auth middleware (#264) (@ricardogobbosouza)
• Accept state and nonce as login args (e5579e9)
• Support onRedirect hook (#185) (@paulgv)
• Improve storage and support server-set cookies (#360) (huge thanks to @MathiasCiarlo)

Docs

Thanks to @3vilArthas, @af12066, @ansidev, @aretw0, @chettapong, @drewjbartlett, @f213, @farnabaz, @jahangirahmad, @LeCoupa, @NinthAutumn, @PJLindsay, @potato4d, @rodgarcia, @sgarner, @shadowlion, @sobolevn, @timmyg, @tomsaleeba for contributing to the docs ❤️

4.5.1 (2018-05-21)

Bug Fixes

• module: allow watchLoggedIn (471d59f)

4.5.0 (2018-05-21)

Bug Fixes

• auth: start watching loggedIn state after current strategy is fully mounted (#80) (2497cc0)
• docs: add comma following _scheme value (#189) (d993e01)

Features

• add watchLoggedIn option to optionally disable it (#80) (16a7904)

4.4.0 (2018-05-18)

Bug Fixes

• storage: use false value for unsetting token/user (#160) (0450b57), closes nuxt-community/auth-module#133

Features

• oauth2: set axios token (#175) (6206803)

Reverts

• revert #158 due to conflicts (2afe9ca)

4.2.1 (2018-04-27)

Bug Fixes

• storage cookie get on client side (#153) (8275e60)
• watch loggedIn: disable redirect on direct page loads (#158) (0386eb9)

4.3.0 (2018-04-28)

Bug Fixes

• github provider (#159) (8b1819f)

Features

• laravel passport provider (#157) (9b09459)

4.2.0 (2018-04-20)

Bug Fixes

• add check for req object on getCookie (#132) (7d17f75)
• don't redirect callback to login when using 'auth' globally (#131) (08d86cb)
• docs: update redirect in options.md (#146) (19de22b)
• fullPathRedirect with query support (#149) (a37d599)
• logout locally before logging in. fixes #136. (#151) (b6cfad4)

Features

• oauth2: support authorization code grant and refresh token (#145) (18ecca5)
• add support for custom token key in request header (#152) (f7576e3)