- Various CircleCI updates.
- Update README for (Rails, Ruby) versions tested.
- Drop support for old Ruby and Rails; add support for Rails 7.0.
- Implement support to additional special characters. #71
- several years worth of dependabot updates
With this release, the devise-secure_password gem drops official support for Rails < 5.1. Supported versions are now Rails 5.2 (current release) and Rails 5.1 (last release).
- Update README for Rails versions tested (5.2, 5.1).
- Update circleci config for Ruby and Rails versions.
- Update default dev build to Rails 5.2.
- Add test support for Rails 5.2.
- Remove test support for Rails 5.0.
- Update Dockerfile.prev ruby to 2.4.4.
- Update Dockerfile ruby to 2.5.1.
- Sort rake targets task list output.
- Add Codecov.io for coverage tracking
- Update README for ruby versions tested (2.5.1, 2.4.4).
- Update README for target reconfig instructions.
- Update README for test screenshot generation.
- Fix grammar for error messages.
- Fix empty new passwords skipping validation.
- Add tests for invalid empty and current passwords.
- Add total string length counting to character_counter.
- Add password confirmation equality validator.
- Add length validations to password fields.
- Add update_action hidden field to forced password change form.
- Refactor passwords_with_policy controller.
- Fix specs to use appropriate Rails version
- Update configuration to not include patch version for Rails
- Manage expiration in session to remove incompatability with authentication extensions
- Fix scoping for previous passwords returned through associations.
- Update rails-app-5_1_4 config for SQLite3Adapter changes.
- Update previous_password default_scope to be based on id.
- Configure more reasonable defaults.
- Update README regarding defaults and a users need to verify.
- Update README to include section on Displaying errors.
- Revert password freshness algorithm from 1.0.4.
- Fix for ignored redirect on expired passwords.
- Change password freshness algorithm to consider updated records.
- Skip enforcement checks unless User model requires a password.
- Update migration code to accomodate changes in underlying ActiveRecord.
- Update the default configuration to be less strict - users can enable individual features.
- Do not override global timeago strings.
- Fix the special character configuration parameter name and add specs.
- Update license.
- Refactor to simplify install and test commands.
- Fix typos in README.
- Update circleci badge token.
- Rename modules according to convention for Rails concerns.
- Implement code coverage.
- Support multiple rails versions for testing.
- Rename password_regular_update_enforcement_controller to dppe_passwords_controller.
- Implement password regular update
- Implement password frequent change enforcement.
- Implement password frequent reuse enforcement.
- Implement password content enforcement.