Releases

v4.8.4
Released 5 days ago

Bug Fixes

  • oauth2: restore callback handling on static sites (#453) (06165a0)
v4.8.3
Released 7 days ago

Bug Fixes

v4.8.2
Released 12 days ago

Bug Fixes

  • Move body-parser to dependencies (#441) (@nzakas)
v4.8.1
Released 3 months ago

Bug Fixes

  • utilities: avoid send xxx=undefined in query (#387) (7c79fd4)
  • regression from #385 when callback is set to false (#391) (4605681)
  • oauth2: correctly handle callback with hash (#394) (9cf304f)
v4.8.0
Released 3 months ago

Bug Fixes

  • don't redirect to login page if in guest mode (#385) (3ee609d)

Features

  • oauth2: support server-side callback (#381) (af550d4)
v4.7.0
Released 3 months ago

4.7.0 (2019-06-13)

Features

  • oauth2: support access_type=offline to enable refresh tokens from google (#303) (9553f5c) (@elson)

Docs

  • add logout info about auth0 (#378) (@bcnzer)
v4.6.6
Released 3 months ago

Bug Fixes

  • set-cookie header contains undefined value (#372) (323346e) (@Yama-Tomo)
v4.6.5
Released 3 months ago

Bug Fixes

  • fix typo in serializedCookie (648fdc9)
v4.6.4
Released 3 months ago

Bug Fixes

  • server side Set-Cookie always set an array. (#367) (4d3feff)
v4.6.3
Released 4 months ago

Improvements

  • module: warn if default strategy is not valid (#365) (@motia)
v4.6.2
Released 4 months ago

Improvements

  • module: warn if default strategy is not valid (#365) (@motia)
v4.6.1
Released 4 months ago

Bug Fixes

  • storage: accept expires as a number for cookie (dd92ec8)
v4.6.0
Released 4 months ago

Bug Fixes

  • Add audience to requests (#222, #239) (@kazazes)
  • Set extended for body-parser urlencoded to prevent the deprecation warning (#199) (@tobyryuk)
  • Remove trailing slash from redirect paths (#235) (@sghgh1996)
  • Handle mounted errors during init (#234) (@gotoin)
  • Prevent loggedIn being incorrectly set to true (#346) (@glennjacobs, @alexbonhomme, @t-matsu-j)
  • Replace deprecated process.browser with process.client (#269) (@sschadwick)
  • Preserve query params when redirecting (#193) (@mathieutu)

New Features

  • Add resetOnError (#197) (@ishitatsuyuki)
  • Add setUserToken (#278) (@dgwight)
  • Use strategy tokenName for requestWith (#301) (@terion-name, @farnabaz)
  • Support passing extra query params (#358) (@rchl)
  • Generate nounce for id_token response type (#298) (@jefer590)
  • Add guest option in auth middleware (#264) (@ricardogobbosouza)
  • Accept state and nonce as login args (e5579e9)
  • Support onRedirect hook (#185) (@paulgv)
  • Improve storage and support server-set cookies (#360) (huge thanks to @MathiasCiarlo)

Docs

Thanks to @3vilArthas, @af12066, @ansidev, @aretw0, @chettapong, @drewjbartlett, @f213, @farnabaz, @jahangirahmad, @LeCoupa, @NinthAutumn, @PJLindsay, @potato4d, @rodgarcia, @sgarner, @shadowlion, @sobolevn, @timmyg, @tomsaleeba for contributing to the docs ❤️

v4.5.1
Released a year ago

4.5.1 (2018-05-21)

Bug Fixes

  • module: allow watchLoggedIn (471d59f)
v4.5.0
Released a year ago

4.5.0 (2018-05-21)

Bug Fixes

  • auth: start watching loggedIn state after current strategy is fully mounted (#80) (2497cc0)
  • docs: add comma following _scheme value (#189) (d993e01)

Features

  • add watchLoggedIn option to optionally disable it (#80) (16a7904)
v4.4.0
Released a year ago

4.4.0 (2018-05-18)

Bug Fixes

Features

Reverts

v4.2.1
Released a year ago

4.2.1 (2018-04-27)

Bug Fixes

  • storage cookie get on client side (#153) (8275e60)
  • watch loggedIn: disable redirect on direct page loads (#158) (0386eb9)
v4.3.0
Released a year ago

4.3.0 (2018-04-28)

Bug Fixes

Features

v4.2.0
Released a year ago

4.2.0 (2018-04-20)

Bug Fixes

  • add check for req object on getCookie (#132) (7d17f75)
  • don't redirect callback to login when using 'auth' globally (#131) (08d86cb)
  • docs: update redirect in options.md (#146) (19de22b)
  • fullPathRedirect with query support (#149) (a37d599)
  • logout locally before logging in. fixes #136. (#151) (b6cfad4)

Features

  • oauth2: support authorization code grant and refresh token (#145) (18ecca5)
  • add support for custom token key in request header (#152) (f7576e3)
v4.1.0
Released a year ago

4.1.0 (2018-04-09)

Features

  • scheme/oauth2: add option to use IdToken instead of AccessToken (#121) (554a042)
  • add support for logging out without an API endpoint (#124) (6189c6d)
26 releases found.