13 KiB
Change Log
All notable changes to this project will be documented in this file. See Conventional Commits for commit guidelines.
v3.9.6 (2023-03-01)
Improvements:
- allow registration and sign in to be disabled on password strategies. (#218)
v3.9.5 (2023-02-23)
Improvements:
- support multiple otp apps w/resources (#209)
v3.9.4 (2023-02-22)
Improvements:
- PasswordConfirmationValidation: allow
strategy_name
to be passed as an option. (#208)
v3.9.3 (2023-02-19)
Bug Fixes:
- sign in preparation without identity resource (#198)
v3.9.2 (2023-02-12)
Bug Fixes:
- Password.Transformer: don't force users to define a
hashed_password
argument to the register action. (#192)
v3.9.1 (2023-02-12)
Bug Fixes:
-
select
hashed_password
on sign in preparation -
don't allow special purpose tokens to be used for sign in. (#191)
Improvements:
-
add select_for_senders (#189)
-
add select_for_senders
-
include metadata declaration on register action
v3.9.0 (2023-02-09)
Features:
- Add new "magic link" authentication strategy. (#184)
Bug Fixes:
-
validate uniqueness of strategy names. (#185)
-
resources can appear in multiple apis, so we need to uniq them here (#169)
-
put_add_on/2 was putting into strategies
Improvements:
-
Strategy.Custom: handle custom strategies as extensions. (#183)
-
improve error message for badly formed token secrets (#181)
-
add metadata declarations to actions that have a
token
(#164) -
validate signing secret is a string (#163)
v3.8.0 (2023-02-09)
Features:
- Add new "magic link" authentication strategy. (#184)
Bug Fixes:
-
validate uniqueness of strategy names. (#185)
-
resources can appear in multiple apis, so we need to uniq them here (#169)
-
put_add_on/2 was putting into strategies
Improvements:
-
Strategy.Custom: handle custom strategies as extensions. (#183)
-
improve error message for badly formed token secrets (#181)
-
add metadata declarations to actions that have a
token
(#164) -
validate signing secret is a string (#163)
v3.7.9 (2023-02-09)
Bug Fixes:
-
validate uniqueness of strategy names. (#185)
-
resources can appear in multiple apis, so we need to uniq them here (#169)
-
put_add_on/2 was putting into strategies
Improvements:
-
Strategy.Custom: handle custom strategies as extensions. (#183)
-
improve error message for badly formed token secrets (#181)
-
add metadata declarations to actions that have a
token
(#164) -
validate signing secret is a string (#163)
v3.7.8 (2023-02-08)
Bug Fixes:
-
resources can appear in multiple apis, so we need to uniq them here (#169)
-
put_add_on/2 was putting into strategies
Improvements:
-
Strategy.Custom: handle custom strategies as extensions. (#183)
-
improve error message for badly formed token secrets (#181)
-
add metadata declarations to actions that have a
token
(#164) -
validate signing secret is a string (#163)
v3.7.7 (2023-02-06)
Bug Fixes:
-
resources can appear in multiple apis, so we need to uniq them here (#169)
-
put_add_on/2 was putting into strategies
Improvements:
-
improve error message for badly formed token secrets (#181)
-
add metadata declarations to actions that have a
token
(#164) -
validate signing secret is a string (#163)
v3.7.6 (2023-01-30)
Bug Fixes:
-
resources can appear in multiple apis, so we need to uniq them here (#169)
-
put_add_on/2 was putting into strategies
Improvements:
-
add metadata declarations to actions that have a
token
(#164) -
validate signing secret is a string (#163)
v3.7.5 (2023-01-30)
Improvements:
-
add metadata declarations to actions that have a
token
(#164) -
validate signing secret is a string (#163)
v3.7.4 (2023-01-30)
Improvements:
- validate signing secret is a string (#163)
v3.7.3 (2023-01-18)
Bug Fixes:
- Password: validate fields using both methods of allowing nil input. (#151)
v3.7.2 (2023-01-18)
Improvements:
- AuthenticationFailed: store a
caused_by
value in authentication failures. (#145)
v3.7.1 (2023-01-18)
Improvements:
- update ash & switch to new docs patterns (#146)
v3.7.0 (2023-01-18)
Features:
- PasswordValidation: Add a validation which can check a password. (#144)
v3.6.1 (2023-01-15)
Bug Fixes:
-
don't call
hash_provider.valid?
onnil
values (#135) -
use configured hashed_password_field
Improvements:
-
set confirmed field to
nil
, for reconfirmation (#136) -
set confirmed field to
nil
, for reconfirmation -
only change
confirmed_at_field
if its not changing, and only on updates
v3.6.0 (2023-01-13)
Breaking Changes:
-
TokenResource: Store the token subject in the token resource. (#133)
-
TokenResource: Store the token subject in the token resource.
Bug Fixes:
-
don't call
hash_provider.valid?
onnil
values (#135) -
use configured hashed_password_field
v3.5.3 (2023-01-13)
Bug Fixes:
- Confirmation: send the original changeset to confirmation senders. (#132)
v3.5.2 (2023-01-12)
Improvements:
- add user context when creating tokens (#129)
v3.5.1 (2023-01-12)
Bug Fixes:
- missing icons in OAuth2 strategies. (#126)
v3.5.0 (2023-01-12)
Breaking Changes:
- GitHub: Add GitHub authentication strategy. (#125)
v3.4.2 (2023-01-12)
Bug Fixes:
- improve some error message/validation logic
Improvements:
-
add policy utilities and accompanying guide (#119)
-
add policy utilities and accompanying guide
-
fix build/warnings/dialyzer/format
v3.4.1 (2023-01-12)
Bug Fixes:
- Confirmation: correctly generate confirmation token subjects. (#124)
v3.4.0 (2023-01-11)
Features:
- Add token-required-for-authentication feature. (#116)
v3.3.1 (2023-01-09)
Improvements:
- Set Ash actor and tenant when executing internal plugs. (#115)
v3.3.0 (2023-01-09)
Features:
- Make strategy names optional where possible. (#113)
v3.2.2 (2023-01-08)
Improvements:
- Allow the strategy name to be passed for password validations and changes. (#102)
v3.2.1 (2022-12-16)
Improvements:
- add
icon
field to OAuth2 strategy. (#100)
v3.2.0 (2022-12-16)
Features:
- Auth0: Add a pre-configured Auth0 strategy. (#99)
v3.1.0 (2022-12-14)
Breaking Changes:
- Jwt: Use token signing secret into the DSL.
Features:
- Add option to store all tokens when they're created. (#91)
Improvements:
-
remove the need for a strategy in changeset/query contexts. (#89)
-
add transaction reason
-
try a simpler way of ensuring module is compiled
v3.0.4 (2022-12-08)
Improvements:
- update to latest ash version
v3.0.3 (2022-12-07)
Bug Fixes:
- break potential compiler dependency loops. (#64)
v3.0.2 (2022-12-05)
Improvements:
- supervisor: require that the user adds the supervisor to their OTP app. (#62)
v3.0.1 (2022-12-05)
Improvements:
- actions: All actions now take optional arguments for the underlying API call. (#61)
v3.0.0 (2022-12-04)
Breaking Changes:
- TokenResource: Move
TokenRevocation
->TokenResource
.
Improvements:
- Confirmation: Store confirmation changes in the token resource.
v2.0.1 (2022-11-24)
Improvements:
-
Confirmation: Confirmation is not a strategy. (#46)
-
Confirmation: Confirmation is not a strategy.
-
Confirmation: Support more than one confirmation entity.
v2.0.0 (2022-11-22)
Breaking Changes:
- Major redesign of DSL and code structure. (#35)
v1.0.0 (2022-11-15)
Breaking Changes:
- OAuth2Authentication: Make the
site
option runtime configurable. (#31)
v0.6.1 (2022-11-15)
Bug Fixes:
- OAuth2Authentication: Return the failure reason even if it's not a changeset. (#29)
v0.6.0 (2022-11-10)
Features:
- OAuth2Authentication: Add support for generic OAuth2 endpoints. (#28)
v0.5.0 (2022-11-04)
Features:
- Confirmation: Add extension that allows a user to be confirmed when created or updated. (#27)
v0.4.3 (2022-11-03)
Improvements:
- docs: Improve endpoint docs for PasswordAuthentication and PasswordReset.
v0.4.2 (2022-11-03)
Bug Fixes:
-
PasswordReset: Generate the reset token using the target action, not the source action. (#25)
-
PasswordReset: Generate the reset token using the target action, not the source action.
Improvements:
- PasswordReset: rework PasswordReset to be a provider in it's own right - this means it has it's own routes, etc.
v0.4.1 (2022-11-03)
Improvements:
- PasswordReset: A reset request is actually a query, not an update. (#23)
v0.4.0 (2022-11-02)
Features:
- PasswordReset: allow users to request and reset their password. (#22)
v0.3.0 (2022-10-31)
Features:
-
Ash.PlugHelpers: Support standard actor configuration. (#16)
-
Ash.PlugHelpers: Support standard actor configuration.
Improvements:
- docs: change all references to
actor
touser
.
v0.2.1 (2022-10-26)
Bug Fixes:
- deprecation warnings caused by use of
Macro.expand_literal/2
.
Improvements:
-
move subject_name uniqueness validation to compile time.
-
remove
generated: true
from macros.
v0.2.0 (2022-10-24)
Features:
- PasswordAuthentication: Registration and authentication with local credentials (#4)