Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[WIP] Do not pass root attribute if empty #1

Open
wants to merge 325 commits into
base: master
Choose a base branch
from
Open

[WIP] Do not pass root attribute if empty #1

wants to merge 325 commits into from

Conversation

martijnvermaat
Copy link

@martijnvermaat martijnvermaat commented Feb 1, 2021
edited
Loading

The API does not accept empty string or null for root attributes, which is a problem when that attribute is optional.

Change made on top of 11.27.2 release commit.

choncou
choncou approved these changes Feb 2, 2021
View reviewed changes
Copy link

@choncou choncou left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

👏🏽 I think this should do it

Steve Hobbs and others added 28 commits October 6, 2021 15:21
[SDK-2823] Fix password reset when using custom connection resolver (a…
804389e 
…uth0#2048)

* Delete build assets

* Remove es-check from precommit

This command fails if `build/` folder is not present.

* Copy username to email field for password reset if using custom connection resolver
Add forceAutoHeight ui config property
7a211f8
Revert "Add forceAutoHeight ui config property"
9b88692 
This reverts commit 7a211f8.
[SDK-2295] Add forceAutoHeight property to UI config (auth0#2050)
c4ded65 
* Revert the revert of the forceAutoHeight property

This reverts commit 9b88692.

* Add docs to readme
Add build assets to source control (auth0#2049)
6c9c270
Release v11.31.0 (auth0#2054)
fd0284b
@snyk-bot
fix: upgrade blueimp-md5 from 2.18.0 to 2.19.0 (auth0#2055)
be3b0de 
Snyk has created this PR to upgrade blueimp-md5 from 2.18.0 to 2.19.0.

See this package in npm:


See this project in Snyk:
https://app.snyk.io/org/auth0-sdks/project/42f9738c-6d9c-4c05-9008-8b4db478c2af?utm_source=github&utm_medium=referral&page=upgrade-pr
@karlhorky
Fix missing closing curly braces (auth0#2056)
df77f34
[ESD-16401] Ensure Captcha is completed before authenticating with en…
067fa60 
…terprise connection (auth0#2060)

* Ensure captcha is completed before sso login

* Add test for invalid captcha on enterprise connections
Guard references to window on module load (auth0#2057)
44968ea 
* Guard references to window on module load

* Rebuild

* Reverse logic of window check in header.jsx
Release 11.31.1 (auth0#2062)
d137b82
@dependabot
Bump validator from 13.6.0 to 13.7.0 (auth0#2063)
06b1f4c 
Bumps [validator](https://github.com/validatorjs/validator.js) from 13.6.0 to 13.7.0.
- [Release notes](https://github.com/validatorjs/validator.js/releases)
- [Changelog](https://github.com/validatorjs/validator.js/blob/master/CHANGELOG.md)
- [Commits](validatorjs/validator.js@13.6.0...13.7.0)

---
updated-dependencies:
- dependency-name: validator
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@snyk-bot
fix: upgrade node-fetch from 2.6.5 to 2.6.6 (auth0#2069)
f9053f3 
Snyk has created this PR to upgrade node-fetch from 2.6.5 to 2.6.6.

See this package in npm:


See this project in Snyk:
https://app.snyk.io/org/auth0-sdks/project/42f9738c-6d9c-4c05-9008-8b4db478c2af?utm_source=github&utm_medium=referral&page=upgrade-pr
Add ID attributes to password field + submit button (auth0#2072)
c692eb6 
* Password input now has an ID

* Submit button now has an ID
@snyk-bot
fix: upgrade auth0-js from 9.16.4 to 9.18.0 (auth0#2073)
f13a5ab 
Snyk has created this PR to upgrade auth0-js from 9.16.4 to 9.18.0.

See this package in npm:


See this project in Snyk:
https://app.snyk.io/org/auth0-sdks/project/42f9738c-6d9c-4c05-9008-8b4db478c2af?utm_source=github&utm_medium=referral&page=upgrade-pr

Co-authored-by: Steve Hobbs <[email protected]>
@adamjmcgrath
[SDK-2970] Remove captcha for enterprise SSO connections (auth0#2071)
6e5b27d 
* Hide captcha for SSO connections in login pane

* Add tests for sign-up pane + captcha

* Add tests for login pane + captcha

* Modify browserstack settings (rolls in auth0#2065)

Co-authored-by: Adam Mcgrath <[email protected]>
@snyk-bot
fix: upgrade qs from 6.10.1 to 6.10.2 (auth0#2077)
4ca0e71 
Snyk has created this PR to upgrade qs from 6.10.1 to 6.10.2.

See this package in npm:


See this project in Snyk:
https://app.snyk.io/org/auth0-sdks/project/42f9738c-6d9c-4c05-9008-8b4db478c2af?utm_source=github&utm_medium=referral&page=upgrade-pr
@snyk-bot
fix: upgrade dompurify from 2.3.3 to 2.3.4 (auth0#2078)
b3dd8a9 
Snyk has created this PR to upgrade dompurify from 2.3.3 to 2.3.4.

See this package in npm:


See this project in Snyk:
https://app.snyk.io/org/auth0-sdks/project/42f9738c-6d9c-4c05-9008-8b4db478c2af?utm_source=github&utm_medium=referral&page=upgrade-pr

Co-authored-by: Steve Hobbs <[email protected]>
Release v11.32.0 (auth0#2079)
3c7791c
@dependabot
Bump follow-redirects from 1.14.4 to 1.14.7 (auth0#2081)
b66d284 
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.14.4 to 1.14.7.
- [Release notes](https://github.com/follow-redirects/follow-redirects/releases)
- [Commits](follow-redirects/follow-redirects@v1.14.4...v1.14.7)

---
updated-dependencies:
- dependency-name: follow-redirects
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
Bump engine.io from 4.1.1 to 4.1.2 (auth0#2082)
0fc50fe 
Bumps [engine.io](https://github.com/socketio/engine.io) from 4.1.1 to 4.1.2.
- [Release notes](https://github.com/socketio/engine.io/releases)
- [Changelog](https://github.com/socketio/engine.io/blob/4.1.2/CHANGELOG.md)
- [Commits](socketio/engine.io@4.1.1...4.1.2)

---
updated-dependencies:
- dependency-name: engine.io
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Steve Hobbs <[email protected]>
@snyk-bot
fix: upgrade prop-types from 15.7.2 to 15.8.0
6b7e117 
Snyk has created this PR to upgrade prop-types from 15.7.2 to 15.8.0.

See this package in npm:


See this project in Snyk:
https://app.snyk.io/org/auth0-sdks/project/42f9738c-6d9c-4c05-9008-8b4db478c2af?utm_source=github&utm_medium=referral&page=upgrade-pr
@evansims
Merge pull request auth0#2083 from auth0/snyk-upgrade-0542c3d29b5b5a7…
4755e6c 
…85cef377dd6ca1cab
@evansims
Bump node-fetch to 2.6.7 (auth0#2085)
67e8cf4
@dependabot
Bump log4js from 6.3.0 to 6.4.0
8fc2ca6 
Bumps [log4js](https://github.com/log4js-node/log4js-node) from 6.3.0 to 6.4.0.
- [Release notes](https://github.com/log4js-node/log4js-node/releases)
- [Changelog](https://github.com/log4js-node/log4js-node/blob/master/CHANGELOG.md)
- [Commits](log4js-node/log4js-node@v6.3.0...v6.4.0)

---
updated-dependencies:
- dependency-name: log4js
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@evansims
Merge pull request auth0#2087 from auth0/dependabot/npm_and_yarn/log4…
61897c8 
…js-6.4.0
Update auth0-js and support legacySameSiteCookie option (auth0#2089)
63b224e 
* Bump auth0-js to 9.18.1

* Bump auth0.js to 9.19.0

* Support passing 'legacySameSiteCookie' to auth0-js

* Update snapshots
Release v11.32.1 (auth0#2090)
016d117
dependabot bot and others added 29 commits April 24, 2023 13:40
@dependabot @stevehobbsdev
chore(deps-dev): bump webpack-dev-server from 4.13.2 to 4.13.3 (auth0…
655af62 
…#2319)

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Steve Hobbs <[email protected]>
@dependabot
chore(deps-dev): bump karma-chrome-launcher from 3.1.1 to 3.2.0 (auth…
71c3124 
…0#2322)

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump webpack-cli from 5.0.1 to 5.0.2 (auth0#2323)
8321460 
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump webpack from 5.79.0 to 5.80.0 (auth0#2320)
a0d930f 
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump prettier from 2.8.7 to 2.8.8 (auth0#2326)
fc18110 
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot @Widcket
chore(deps-dev): bump karma from 6.4.1 to 6.4.2 (auth0#2325)
50ed9fe 
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Rita Zerrizuela <[email protected]>
@Widcket
Replace the bug report issue template with an issue form [SDK-4158] (a…
7a1c5b7 
…uth0#2324)
@dependabot
chore(deps-dev): bump webpack from 5.80.0 to 5.81.0 (auth0#2327)
3403fc3 
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump @babel/preset-env from 7.21.4 to 7.21.5 (auth0#…
373616e 
…2329)

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump @babel/core from 7.21.4 to 7.21.5 (auth0#2328)
2218856 
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump @babel/core from 7.21.5 to 7.21.8 (auth0#2330)
79a50cd
@dependabot
chore(deps-dev): bump webpack from 5.81.0 to 5.82.0 (auth0#2331)
d87427d 
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump core-js from 3.30.1 to 3.30.2 (auth0#2332)
783cc9f 
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump webpack-dev-server from 4.13.3 to 4.15.0 (auth0…
c45ca95 
…#2334)
@dependabot
chore(deps-dev): bump webpack-cli from 5.0.2 to 5.1.1 (auth0#2335)
8a98190
@dependabot
chore(deps): bump socket.io-parser from 4.2.2 to 4.2.3 (auth0#2340)
3c9492d 
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump qs from 6.11.1 to 6.11.2 (auth0#2338)
e74400d 
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump webpack from 5.82.0 to 5.83.1 (auth0#2339)
1d1d27c 
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump webpack from 5.83.1 to 5.84.0 (auth0#2341)
b851218 
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump auth0-js from 9.20.2 to 9.21.0 (auth0#2342)
032cd28 
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump @babel/preset-env from 7.21.5 to 7.22.4 (auth0#…
db07388 
…2348)

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump @babel/plugin-proposal-decorators from 7.21.0 t…
951ab70 
…o 7.22.3 (auth0#2346)

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump webpack from 5.84.0 to 5.84.1 (auth0#2343)
0c7d418 
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump @babel/core from 7.21.8 to 7.22.1 (auth0#2344)
a2944af 
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump @babel/preset-react from 7.18.6 to 7.22.3 (auth…
af3f5d7 
…0#2345)
@dependabot
chore(deps-dev): bump webpack from 5.84.1 to 5.85.0 (auth0#2349)
c0463ae 
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump webpack-cli from 5.1.1 to 5.1.3 (auth0#2350)
2812af7 
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump webpack from 5.85.0 to 5.85.1 (auth0#2351)
ab315f1 
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@haseebsaeed
Merge pull request #11 from auth0/master
25ea656 
upgrade lock.js from 11.27.2 to 12.0.2
github-advanced-security[bot]
github-advanced-security bot found potential problems Jun 8, 2023
View reviewed changes
src/core/index.js
? 'https://cdn.' + parts[parts.length - 3] + DOT_AUTH0_DOT_COM
: AUTH0_US_CDN_URL;
// prettier-ignore
if (endsWith(hostname, DOT_AUTH0_DOT_COM)) { // lgtm [js/incomplete-url-substring-sanitization]

Check failure

Code scanning / CodeQL

Incomplete URL substring sanitization

'[.auth0.com](1)' can be anywhere in the URL, and arbitrary hosts may come before or after it.
src/utils/format.js
}

function isObject(arg) {
return typeof arg === 'object' && arg !== null;

Check warning

Code scanning / CodeQL

Comparison between inconvertible types

Variable 'arg' is of type date, object or regular expression, but it is compared to [an expression](1) of type null.
src/utils/format.js
for (var x = args[i]; i < len; x = args[++i]) {
if (x === null || !isObject(x)) {
str += ' ' + x;
} else if (x !== null) {

Check notice

Code scanning / CodeQL

Unneeded defensive code

This guard always evaluates to true.
src/__tests__/testUtils.js
@@ -1,11 +1,25 @@
import React from 'react'; // eslint-disable-line
import renderer from 'react-test-renderer';
import ShallowRenderer from 'react-test-renderer/shallow';
import { JavascriptModulesPlugin } from 'webpack';

Check notice

Code scanning / CodeQL

Unused variable, import, function or class

Unused import JavascriptModulesPlugin.
src/ui/input/email_input.jsx
@@ -11,14 +33,15 @@
}

shouldComponentUpdate(nextProps, nextState) {
const { invalidHint, isValid, value, onChange } = this.props;
const { invalidHint, isValid, value, disabled, onChange } = this.props;

Check notice

Code scanning / CodeQL

Unused variable, import, function or class

Unused variable onChange.
src/ui/input/username_input.jsx
@@ -11,14 +28,15 @@
}

shouldComponentUpdate(nextProps, nextState) {
const { invalidHint, isValid, value, onChange } = this.props;
const { invalidHint, isValid, value, disabled, onChange } = this.props;

Check notice

Code scanning / CodeQL

Unused variable, import, function or class

Unused variable onChange.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@choncou choncou choncou approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.