CHANGELOG.md

Changelog

v5.0.0-beta.0 (May 9th, 2019)

Pull Requests

• #163 Universal Login support by Xaser Acheron
• #168 Remove JWT Authorizer by Robert Schaefer and Xaser Acheron

v4.2.0 (May 8th, 2019)

Silent Authentication! FastBoot! Huzzah!

• Added native support for Silent Authentication for automatic token renewal!
• Added FastBoot support!
• Bugfixes! Probably.
• A ton of README.md updates. Should be much more up-to-date and easier to use now.

Pull Requests

• #148 Added issue template. by Conrad Sopala

v4.2.0-beta.4 (January 25th, 2019)

Pull Requests

• #145 Added Fastboot support. by Aidan Nulman

v4.2.0-beta.3 (September 19th, 2018)

Pull Requests

• #141 Re-fixed React production build by Xaser Acheron
• #142 Add Authorize method to Auth0 Service by Xaser Acheron

v4.2.0-beta.2 (September 17th, 2018)

Pull Requests

• #139 Added logoutReturnToPath config option for root-relative logout URL support by Xaser Acheron

v4.2.0-beta.1 (September 17th, 2018)

Pull Requests

• #138 Support silentAuth.redirectPath option, and remove auth0-silent-auth authenticator. by Mike Fotinakis

v4.2.0-beta.0 (September 4th, 2018)

Pull Requests

• #137 Add native support for Silent Authentication by Xaser Acheron

v4.1.1 (August 8th, 2018)

Pull Requests

• #134 Fixed autoClose=true causing promise to reject by Xaser Acheron

v4.1.0 (July 30th, 2018)

Say Hello to ember-auto-import!

• Replaced broccoli-webpack with ember-auto-import -- the build is now 100% more sane!
• The change should be transparent in consuming apps, though this does fix some recently-reported build issues so you may wish to upgrade anyway.

Pull Requests

• #121 allow for a logoutUrl override by Miguel Andrade
• #123 update ember-cli [tests, linting, modules api, etc] by Miguel Andrade
• #126 use ember-auto-import by Miguel Andrade
• #130 Fix failed login causing promise to never resolve by Xaser Acheron

v4.0.2 (April 4th, 2018)

Pull Requests

• #118 Fix another zero-second-expiration bug by Xaser Acheron

v4.0.1 (April 4th, 2018)

Bugfixes

• Session no longer expires instantly when ID Token not present (e.g. OIDC Conformant workflows without id_token in the responseType option.)
• Expired tokens are no longer restored when reloading apps
• Fixed session expiration causing tests to hang

Pull Requests

• #117 Fix token expiration glitchiness by Xaser Acheron

v4.0.0 (April 2nd, 2018)

Lock 11 is here!

• Lock has been updated to v11. See README.md for instructions on migrating.
• auth0-lock-passwordless has been removed in favor of Lock 11's native Passwordless support.
• Bugfixes, as always.

v4.0.0-beta.3 (March 29th, 2018)

Pull Requests

• #113 Add tutorial how to stub the authenticator by Robert Schaefer
• #115 Fix "Last time you logged in with..." button in Passwordless mode by Xaser Acheron

v4.0.0-beta.2 (March 16th, 2018)

Pull Requests

• #108 Add enableImpersonation flag by Xaser Acheron

v4.0.0-beta.1 (March 15th, 2018)

Pull Requests

• #106 Remove auth0-lock-passwordless in favor of Lock 11 support by Xaser Acheron

v4.0.0-beta.0 (March 13th, 2018)

Pull Requests

• #96 Upgrade Lock to v11 by Xaser Acheron
• #102 Remove deprecated default lock options by Xaser Acheron
• #103 Fix URL Hash errors by Xaser Acheron
• #105 Fix the way _expiresAt is calculated by Marius Leustean

v3.1.0 (November 22nd, 2017)

Auth0.js and Lock are now installed via NPM/Yarn

• Auth0 dependencies are now installed via NPM/Yarn. No Bower Required™.
• It is now safe to remove the auth0-js, auth0-lock, and auth0-lock-passwordless dependencies from bower.json.

Pull Requests

• #69 Added 'socialOrMagiclink' support by Robert Schaefer
• #71 Upgrade Ember dependencies to v2.13 by Chris Watts
• #68 Install Auth0 dependencies via NPM/Yarn by Xaser Acheron
• #81 Fixed incompatible engine error on yarn install by Robert Schaefer
• #87 Use Headless Chrome for tests by Xaser Acheron

v3.0.1 (March 12th, 2017)

Added Deprecations

• By default this addon would pass in the following block into the auth0 lock constructor. However, in 4.0.0 it will no longer do this, you will have to pass in the options yourself.

The default options were as follows:

let defaultOptions = {
  autoclose: true,
  auth: {
    redirect: false,
    params: {
      scope: 'openid'
    },
  }
};

Now you will have to pass them in manually if you want the same behavior:

let lockOptions = {
  autoclose: true,
  auth: {
    redirect: false,
    params: {
      scope: 'openid'
    },
  }
};

get(this, 'session').authenticate('authenticator:auth0-lock', lockOptions);

Pull Requests

• #66 chore: Add deprecations by Chris Watts

v3.0.0 (February 25th, 2017)

Breaking Changes

• The addon no longer navigates to the auth0 logout url when the session is invalidated through ember-simple-auth session. You have to manually call session.navigateToLogoutURL()
• Use idToken instead of jwt on the authenticated object when making requests to the backend.
• Use idTokenPayload.exp instead of exp to figure out when the token is about to expire
• USe logoutReturnToURL instead of logoutURL in the environment config. This will be used when calling navigateToLogoutURL()
• Remove redirectURI from the environment config.

Pull Requests

• #46 enhacenement: Add yarn by Chris Watts
• #52 enhancement: Remove deprecations by Chris Watts
• #54 enhancement: Add api demo by Chris Watts
• #55 fix: Semver dependency by Chris Watts
• #58 docs: Update readme with examples by Chris Watts
• #57 fix: correct Lock object init/fn call order of operations by James Martinez

v2.3.0 (February 18th, 2017)

Pull Requests

• #42 enhancement: Update ember-simple-auth v1.2.0 by Chris Watts
• #45 enhancement: Add eslint by Chris Watts
• #41 enhancement: Add ability to use v8 of auth0.js by Chris Watts
• #40 enhancement: Change auth0-impersonation authenticator to auth0-url-hash by Chris Watts

v2.2.1 (January 22nd, 2017)

Pull Requests

• #33 bugfix: Fix issue with latest version of auth0-lock by Chris Watts

v2.2.0 (December 28th, 2016)

Pull Requests

• #23 enhancement: upgrade dependencies by Chris Watts
• #28 enhancement: Improve ability to show the auth0 lock so that it can be overriden during acceptance tests by Chris Watts

v2.1.4 (December 5th, 2016)

Pull Requests

• #20 fix: issue where the session would not be invalided when the token is expired by Chris Watts

v2.1.3 (December 5th, 2016)

• #19 fix: deprecation warnings to display correctly by @seawatts

v2.1.2 (November 30th, 2016)

• #17 fix: Remove string interpolation by @seawatts

v2.1.1 (November 30th, 2016)

• #16 fix: Don't use es6 feature in index.js by @seawatts

v2.1.0 (November 18th, 2016)

• #15 enhancement: backwards compatibility for data.authenticated block by @seawatts

v2.0.0 (November 14th, 2016)

Breaking Changes

• The profile that is returned from lock.js getProfile is now scoped under the profile property on the session. See readme for updated session object

v1.0.3 (November 4th, 2016)

• #10 fix: Only run beforeSessionExpire if we are not in testing by @seawatts

v1.0.2 (November 3rd, 2016)

• #9 fix: issue where jwt authorizer wasn't adding the jwt to the block by @seawatts
• Fixed an issue where ember install or ember generate would fail because rsvp was in devDependencies instead of dependencies

v1.0.1 (November 3rd, 2016)

• #8 fix: issue where after auth would not redirect correctly by @seawatts

v1.0.0 (November 2nd, 2016)

Breaking Changes

• The session data object is now unified into one object instead of split between the user profile and the jwt info

{
  "authenticated": {
    "authenticator": "authenticator:auth0-impersonation",
    "email": "[email protected]",
    "impersonated": true,
    "impersonator": {
      "user_id": "google-oauth2|108251222085688410292",
      "email": "[email protected]"
    },
    "appMetadata": {
    },
    "userMetadata": {
    },
    "emailVerified": true,
    "clientID": "YwDY9D433veMHC2e27j2BESjlnwF7ry8",
    "updatedAt": "2016-11-02T23:28:06.864Z",
    "userId": "auth0|da71a38d-3d2a-4281-8dfa-504ed0acd598",
    "identities": [
      {
        "user_id": "da71a38d-3de2-4281-8dfa-504ed0acd598",
        "provider": "auth0",
        "connection": "DB",
        "isSocial": false
      }
    ],
    "createdAt": "2016-04-01T21:03:24.847Z",
    "globalClientId": "I22jtMbdaRIz0pOwPdN2Ciuh2uIdzfy2",
    "accessToken": "OfevAkQ5ar42HA2j",
    "idToken": "aaaa.bbb.cccc",
    "idTokenPayload": {
      "iss": "https://domain.auth0.com/",
      "sub": "auth0|da71a382-3dea-2281-8dfa-204ed0acd598",
      "aud": "Yw2Y9D433veMHCred7j0BESjlnwF7r28",
      "exp": 1478629287,
      "iat": 1478129287
    }
  }
}

Bug Fixes

• beforeExpired would never fire. This is now moved into the application-route-mixin and can be overridden by beforeSessionExpired
• auth0.js and lock.js were not being installed correctly

Enhancements

• Added ember-simple-auth as a dependency