Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

release: version packages #792

Merged
merged 1 commit into from
Sep 18, 2024
Merged

release: version packages #792

merged 1 commit into from
Sep 18, 2024

Conversation

silverhand-bot
Copy link
Collaborator

@silverhand-bot silverhand-bot commented Sep 10, 2024
edited
Loading

This PR was opened by the Changesets release GitHub action. When you're ready to do a release, you can merge this and the packages will be published to npm automatically. If you're not ready to do a release yet, that's fine, whenever you add more changesets to master, this PR will be updated.

Releases

@logto/nuxt@1.0.0

Major Changes

  • 5f4de8c: add support for secure cookie storage in Nuxt SDK and improve security handling

    This is a breaking change that enhances security but requires manual configuration:

    • Introduce new cookieSecure configuration option to set whether Logto cookie should be secure
    • Remove automatic HTTPS detection based on Request URL and headers
    • No longer trust x-forwarded-proto or similar headers by default for security reasons

    Previously, the SDK would automatically determine whether to use secure cookies based on the Request URL and headers. This automatic detection has been removed to prevent potential security vulnerabilities, especially in environments using reverse proxies or load balancers.

    Now, users must explicitly configure the cookieSecure option based on their deployment environment. This change gives users more control and ensures that secure cookies are used only when explicitly configured.

    It's strongly recommended to set cookieSecure to true when using HTTPS, especially in production environments.

    Usage example:

    // nuxt.config.ts
export default defineNuxtConfig({
  modules: ["@logto/nuxt"],
  logto: {
    cookieSecure: true, // Enable secure cookie in HTTPS environments
  },
});

Minor Changes

  • 71f3b53: support custom redirect base url settings for nuxt SDK

Patch Changes

  • @logto/node@2.5.7

@logto/browser@2.2.18

Patch Changes

  • Updated dependencies [e92940f]
    • @logto/client@2.8.1

@logto/capacitor@2.0.4

Patch Changes

  • @logto/browser@2.2.18

@logto/chrome-extension@0.1.12

Patch Changes

  • @logto/browser@2.2.18

@logto/client@2.8.1

Patch Changes

  • e92940f: add react-native package export condition

    Enabling package export in react-native is unstable and can cause issues.

    Replace the exports in @logto/client package.json with the react-native condition.

    {
  "react-native": "./lib/shim.js"
}

    So the shim.js module can be used in react-native projects, without enabling the unstable package export feature.

@logto/express@2.3.16

Patch Changes

  • @logto/node@2.5.7

@logto/next@3.6.1

Patch Changes

  • @logto/node@2.5.7

@logto/node@2.5.7

Patch Changes

  • Updated dependencies [e92940f]
    • @logto/client@2.8.1

@logto/react@3.0.16

Patch Changes

  • @logto/browser@2.2.18

@logto/remix@2.2.6

Patch Changes

  • @logto/node@2.5.7

@logto/sveltekit@0.3.6

Patch Changes

  • @logto/node@2.5.7

@logto/vue@2.2.17

Patch Changes

  • @logto/browser@2.2.18

@logto/browser-sample@2.0.18

Patch Changes

  • @logto/browser@2.2.18

@logto/express-sample@2.0.16

Patch Changes

  • @logto/express@2.3.16

@logto/next-app-dir-sample@2.1.20

Patch Changes

  • @logto/next@3.6.1

@logto/next-sample@2.1.20

Patch Changes

  • @logto/next@3.6.1

@logto/next-server-actions-sample@2.3.2

Patch Changes

  • @logto/next@3.6.1

@logto/react-sample@2.1.17

Patch Changes

  • @logto/react@3.0.16

@logto/vue-sample@2.1.16

Patch Changes

  • @logto/vue@2.2.17

@charIeszhao charIeszhao reopened this Sep 18, 2024
@xiaoyijun xiaoyijun merged commit 9a104f8 into master Sep 18, 2024
22 checks passed
@xiaoyijun xiaoyijun deleted the changeset-release/master branch September 18, 2024 06:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@charIeszhao charIeszhao charIeszhao approved these changes

@wangsijie wangsijie Awaiting requested review from wangsijie wangsijie is a code owner

@gao-sun gao-sun Awaiting requested review from gao-sun gao-sun is a code owner

Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@silverhand-bot @charIeszhao @xiaoyijun