v1.312.2

What's Changed

• bug(test-reports) Give accounts-rate-limit a unique jest output direc… by @nshirley in #18904
• task(settings): Optimize sentry bundle and add webpack analyzer by @dschom in #18906
• chore(perf): load LegalWithMarkdown lazily by @chenba in #18908
• fix(auth): Correctly store MetricsContext in third party auth component by @vbudhram in #18911
• feat(webchannel): Add support for SYNC_PREFERENCES command by @vpomerleau in #18915
• chore(l10n): Add group comment end by @bcolsson in #18916
• fix(payments): clear previous access token on signin by @StaberindeZA in #18907
• task(settings): Disable fetching of nimbus-experiments by @dschom in #18903
• test(function): add back skipped syncV3 test and fix flaky test by @nshirley in #18919
• bug(session): Ensure that the session matches account on destroy by @chenba in #18922
• fix(settings): make tooltip text start-aligned instead of centered by @MagentaManifold in #18923
• task(content-server): remove intern by @toufali in #18905
• task: audit yarn resolutions – tap/typescript by @toufali in #18926
• polish(payments-next): remove unused code, clean up linting rules by @david1alvarez in #18879
• fix(payments-next):Truncated price in upgrade page by @elizabeth-ilina in #18918
• feat(react): navigate to RPs without adding to browser history by @StaberindeZA in #18909
• fix(payments-next): Add localization to page metadata by @elizabeth-ilina in #18910
• fix(payments-ui): Remove coupon from URL params by @xlisachan in #18930
• feat(2fa): Update design of DataBlock and GetDataTrio components by @MagentaManifold in #18912
• task: audit yarn resolutions – moment by @toufali in #18927
• fix(payments): Update error message for customers with active IAP subscription by @xlisachan in #18928
• feat(settings): Enable changing recovery phone by @vpomerleau in #18913
• feat(payments-next): Improve payments-next logging by @david1alvarez in #18869
• task(auth,graphql): Configure separate redis instance for rate limiting by @dschom in #18938
• feat(oauth): redirect on prompt=none and return_on_error=false by @chenba in #18940
• feat(recovery): Add reset password recovery phone views and functionality by @vbudhram in #18929
• fix(payments-next): SP3 invalid coupon code not localized by @elizabeth-ilina in #18932
• feat(metrics): Add more glean metrics for signup code view by @vbudhram in #18944
• fix(perf): change css link tag's initial rel attr to preload by @chenba in #18933
• feat(payments-next): improve getCart response time by @david1alvarez in #18942
• feat(payments-next): Enable no-charge payments with stripe by @david1alvarez in #18874
• task(settings): Improve webpack chunking by @dschom in #18934
• task(settings): Lazy load pages by @dschom in #18936
• Revert "fix(perf): change css link tag's initial rel attr to preload" by @chenba in #18955
• task: audit yarn resolutions – browserid-crypto by @toufali in #18949
• task(settings): Target sentry tracing to capture metrics for index by @dschom in #18937
• task: audit yarn resolutions – http-proxy by @toufali in #18950
• task: audit yarn resolutions – terser by @toufali in #18951
• feat(settings): new FlowSetup2faBackupCodeDownload component by @MagentaManifold in #18941
• fix(payments-next): Component appears larger during loading state in Chrome by @xlisachan in #18939
• fix(payments): Customers with saved card and no active subs should see PayPal privacy policy link on Checkout by @xlisachan in #18948
• fix(payments-paypal): Customer cannot purchase another product with their saved PayPal account by @xlisachan in #18956
• fix(next): resolve CSP and console errors by @StaberindeZA in #18920
• feat(customs): Use checkAuthenticated in /session/verify_code route by @vbudhram in #18965
• task: Resolve vulnerability – multer by @toufali in #18958
• task: audit yarn resolutions – @svgr/webpack by @toufali in #18961
• task: audit yarn resolutions – node-forge by @toufali in #18962
• task: audit yarn resolutions – fbjs/isomorphic-fetch by @toufali in #18963
• fix(payments-next): resolve linting error by @david1alvarez in #18968
• chore: update nx to 21 by @julianpoy in #18946
• New FlowSetup2faApp component by @vpomerleau in #18921
• fix(next): undefined tax location results in error by @StaberindeZA in #18967
• task(auth,gql): Configure default limiting rules by @dschom in #18952
• bug(auth): The rule for verifySessionCode should have been on uid by @dschom in #18971
• polish(auth): Remove stray console.log by @dschom in #18974
• bug(auth): Fix broken functional tests due to rate-limiting by @dschom in #18975
• fix(metrics): Set flowId when user verifies totp session by @vbudhram in #18973
• feat(next): add auth statsd and error page by @StaberindeZA in #18966
• feat(settings): new FlowSetup2faBackupCodeConfirm component by @MagentaManifold in #18964
• fix(payments-next):Applied coupon code before sign-in does not remain on checkout page after signing in by @elizabeth-ilina in #18943
• bug(auth): unblockEmail rule was missing by @dschom in #18984
• fix(prompt): Support prompt=none with 2FA, don't send two authorization reqs by @vbudhram in #18985
• bug(auth, graphql): Localized retry message had incorrect time. by @dschom in #18979
• SVCSE-2374 Removing references to deprecated CDN by @steveprokopienko in #18914
• task(auth): Use customs.checkAuthenticated where possible by @dschom in #18977
• fix(auth): Send email when changing recovery phone by @vpomerleau in #18987
• Fix error on signin with multiple accounts by @dschom in #18988
• Train 312 uplift main by @vbudhram in #18990

New Contributors

• @steveprokopienko made their first contribution in #18914

Full Changelog: v1.311.0...v1.312.2

v1.305.0

Train release v1.305.0

v1.304.7

Train release v1.304.7

v1.304.6

Train release v1.304.6

v1.304.5

Train release v1.304.5

v1.304.4

Train release v1.304.4

v1.304.3

Full Changelog: v1.304.2...v1.304.3

v1.304.2

Full Changelog: v1.304.1...v1.304.2

v1.304.1

Full Changelog: v1.304.0...v1.304.1

v1.304.0

What's Changed

• Rename duplicate ftl string in 2FA recovery flow by @vpomerleau in #18305
• task(auth): Handle second and final account delete notifications by @dschom in #18302
• fix(copy): Update fallback text/FTL to handle '1 code remaining' by @LZoog in #18311
• feat(tests): Add functional tests for sms flows by @vbudhram in #18287
• feat(inactive-accts): use one task queue per email type by @chenba in #18314
• fix(metrics): account for snake case of metrics context query params by @chenba in #18315
• fix(inactives): Don't hard navigate when redirectTo is 'settings' by @LZoog in #18323
• chore(deps): bump the npm_and_yarn group with 2 updates by @dependabot in #18288
• chore(deps): bump chalk from 5.3.0 to 5.4.1 by @dependabot in #18310
• chore(deps): bump @next/bundle-analyzer from 15.0.3 to 15.1.6 by @dependabot in #18309
• fix(l10n): Fix mismatched or missing l10n by @vpomerleau in #18318
• Fix broken destroy tests by @dschom in #18326
• feat(paypal): Send country code with paypal transactions by @david1alvarez in #18313
• fix(auth): update bounce config defaults by @jonalmeida in #18319
• feat(payments): Do not allow duplicate subscriptions to the same offering and interval by @xlisachan in #18322
• feat(next): Clean up artifacts from checkout process on checkout failure by @david1alvarez in #18316
• chore(deps): bump the open-telemetry group across 1 directory with 2 updates by @dependabot in #18334
• task(recovery-phone): Handle error retrieveving Twilio lookup by @dschom in #18339
• fix(settings): Clear error messages on submit SigninTokenCode/ConfirmSignupCode by @vpomerleau in #18324
• feat(libs): Update libs for subscription upgrades by @xlisachan in #18304
• task(auth): Have totp/destroy remove recovery phone by @dschom in #18337
• bug(admin-server): Broken logs by @dschom in #18336
• fix(payments): Coupons - Handle error when currency for coupon and cart do not match by @xlisachan in #18351
• Add custom rate limiting for sms confirm and setup by @vbudhram in #18344
• feat(keys): Update key stretching to optionally use session token on password change by @vbudhram in #18317
• feat(metrics): Add metrics when the bounce check blocks an email by @jonalmeida in #18347
• fix(settings): Fix bug with disconnecting an "unknown" service by @vbudhram in #18333
• fix(settings) - Navigate to settings in a password-reset/sync flow by @jonalmeida in #18353
• chore(db): add more email types by @chenba in #18362
• feat(auth): cleanup old carts script by @julianpoy in #18352
• task(recovery-phone): Add check for sms pumping risk by @dschom in #18356
• task(ci): Make runs consistent by @dschom in #18354
• feat(sms): Add localized body text to SMS by @vpomerleau in #18312
• feat(sms): Revoke old recovery phone codes when sending new code by @vbudhram in #18363

Full Changelog: v1.303.5...v1.304.0