Skip to content

Releases: zaikio/zaikio-oauth_client

v0.21.2

18 Oct 08:59
@jalyna jalyna
v0.21.2
87f9e23
This commit was signed with the committer’s verified signature.
jalyna Jalyna
GPG key ID: 77480DC641C77630
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.21.2 Latest
Latest
  • Fix: Use latest access token instead of first valid one in case user granted new permissions
Assets 2
Loading

v0.21.1

13 Oct 09:23
@jgwmaxwell jgwmaxwell
v0.21.1
ecb2a69
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.21.1

Bugfix release to improve null handling of access tokens.

Assets 2
Loading

v0.21.0

10 Oct 09:15
@PolinaStamenova PolinaStamenova
v0.21.0
beab6fe
Compare
Choose a tag to compare
v0.21.0

  • Refactor Zaikio::OAuthClient.client_name to be thread-safe

  • Support :app_name and :redirect_uri parameters with subscription flow

Assets 2
Loading

v0.20.0

08 Aug 13:30
@jalyna jalyna
v0.20.0
cac1e96
This commit was signed with the committer’s verified signature.
jalyna Jalyna
GPG key ID: 77480DC641C77630
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.20.0
  • Support prefilled person and organization data
Assets 2
Loading

v0.19.3

03 Aug 14:41
@jalyna jalyna
v0.19.3
be2dd38
This commit was signed with the committer’s verified signature.
jalyna Jalyna
GPG key ID: 77480DC641C77630
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.19.3
  • Fix: only include valid or refreshable access token in find_active_access_token
Assets 2
Loading

v0.19.2

03 Aug 10:49
@jalyna jalyna
v0.19.2
bc94993
This commit was signed with the committer’s verified signature.
jalyna Jalyna
GPG key ID: 77480DC641C77630
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.19.2
  • Fix logged_in_as to return access token ID
Assets 2
Loading

v0.19.1

03 Aug 10:30
@jalyna jalyna
v0.19.1
8f055c3
This commit was signed with the committer’s verified signature.
jalyna Jalyna
GPG key ID: 77480DC641C77630
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.19.1
  • Fix logged_in_as helper to create a proper access token
Assets 2
Loading

v0.19.0

03 Aug 08:50
@jalyna jalyna
v0.19.0
e04fb32
This commit was signed with the committer’s verified signature.
jalyna Jalyna
GPG key ID: 77480DC641C77630
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.19.0
  • Do not store refresh tokens from client credentials flow to improve security (until they are removed by the hub)
  • Do not redeem refresh tokens in get_access_token instead use client credentials flow so that only users redeem refresh tokens
  • Automatically revoke access token on logout (security)
  • Add Zaikio::OAuthClient.find_active_access_token( session[:zaikio_access_token_id]) that should be used to find the latest valid access token. If the (redirect) access token e.g. was revoked (user disconnected, security breach, ...) the user shall be logged out.
  • Add Zaikio::AccessToken#revoke!
Assets 2
Loading

v0.18.1

29 Apr 09:26
@nickcampbell18 nickcampbell18
v0.18.1
c00df09
Compare
Choose a tag to compare
v0.18.1
  • Relax dependency on zaikio-jwt_auth, allow versions 2.x
Assets 2
Loading

v0.18.0

26 Apr 06:57
@jalyna jalyna
v0.18.0
c242781
This commit was signed with the committer’s verified signature.
jalyna Jalyna
GPG key ID: 77480DC641C77630
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.18.0
  • BREAKING: Encrypt token & refresh_token with Active Record Encryption:
    1. Run rails db:encryption:init per environment and copy the values to your encrypted credentials
    2. Add config.active_record.encryption.encrypt_fixtures = true to environments/test.rb
    3. Run rails zaikio_oauth_client:install:migrations and rails db:migrate to encrypt stored access tokens
Assets 2
Loading