Skip to content

Releases: pow-auth/assent

v0.2.0

01 Mar 16:41
@danschultzer danschultzer
v0.2.0
9e5162e
Compare
Choose a tag to compare
v0.2.0

This release consists of breaking changes.

In previous Assent.Stategy.Slack strategy, the sub user id field consisted of {SUB}-{TEAM}. Slack has migrated to OpenID Connect, and the response has been conformed to OIDC. The sub will now only consists of the sub id, and not include team id. To succesfullly migrate to this release all slack identity records storing the sub user id field has to be updated.

If you wish to continue using the previous sub user id a custom OIDC strategy can be used instead:

defmodule Slack do
  use Assent.Strategy.OIDC.Base

  alias Assent.Strategy.Slack

  defdelegate default_config(config), to: Slack

  def normalize(config, user) do
    user = Map.put(user, "sub", "#{user["https://slack.com/user_id"]}-#{user["https://slack.com/team_id"]}")

    Slack.normalize(config, user)
  end
end
  • Assent.Strategy.OIDC.fetch_user/2 now removes the ID token specific keys from the user claims instead of normalizing #100
  • Assent.Strategy.OIDC.Base now adds normalize/2 to the macro that will include the full user claims in the user params #100
  • Assent.Stategy.Slack now uses OpenID connect instead of legacy OAuth 2.0, please note that the sub value may have changed #97
Assets 2
Loading

v0.1.28

30 Sep 16:40
@danschultzer danschultzer
v0.1.28
294f43b
Compare
Choose a tag to compare
v0.1.28
  • Assent.Strategy.OIDC bug fixed so it handles unreachable urls correctly #95
Assets 2
Loading

v0.1.27

21 Aug 17:37
@danschultzer danschultzer
v0.1.27
ac8c092
This commit was signed with the committer’s verified signature. The key has expired.
danschultzer Dan Schultzer
GPG key ID: 398EE094F9A269F7
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.1.27
  • Assent.Strategy.OIDC bug fixed for normalize/2 macro callback #92
Assets 2
Loading

v0.1.26

27 May 19:15
@danschultzer danschultzer
v0.1.26
473f7ef
This commit was signed with the committer’s verified signature. The key has expired.
danschultzer Dan Schultzer
GPG key ID: 398EE094F9A269F7
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.1.26
  • Assent.constant_time_compare/2 no longer outputs a deprecation warning for OTP 24 #87
Assets 2
Loading

v0.1.25

09 Apr 15:43
@danschultzer danschultzer
v0.1.25
90da25f
This commit was signed with the committer’s verified signature. The key has expired.
danschultzer Dan Schultzer
GPG key ID: 398EE094F9A269F7
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.1.25

Changes

  • Assent.Strategy.Apple has been fixed to handle the JSON encoded user in callback params #86
Assets 2
Loading

v0.1.24

22 Mar 16:52
@danschultzer danschultzer
v0.1.24
2d5a793
This commit was signed with the committer’s verified signature. The key has expired.
danschultzer Dan Schultzer
GPG key ID: 398EE094F9A269F7
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.1.24

Changes

  • Assent.Strategy.OIDC.Base.authorize_url/2 now has correct type specs #83
Assets 2
Loading

v0.1.23

01 Mar 21:28
@danschultzer danschultzer
v0.1.23
780fe5a
This commit was signed with the committer’s verified signature. The key has expired.
danschultzer Dan Schultzer
GPG key ID: 398EE094F9A269F7
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.1.23

Changes

Updated to support OTP 24 and no longer support OTP < 22.1 #80

  • Assent.Strategy.OIDC now handles missing id_token in token params #81
Assets 2
Loading

v0.1.22

09 Feb 03:11
@danschultzer danschultzer
v0.1.22
99627bc
This commit was signed with the committer’s verified signature. The key has expired.
danschultzer Dan Schultzer
GPG key ID: 398EE094F9A269F7
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.1.22

Changes

  • Assent.Strategy.OAuth2.fetch_user/4 now accepts headers in arguments #77
  • Assent.Strategy.AzureAD bug fixed so it now uses the RS256 alg #78
Assets 2
Loading

v0.1.21

29 Dec 20:15
@danschultzer danschultzer
v0.1.21
dbaaef9
This commit was signed with the committer’s verified signature. The key has expired.
danschultzer Dan Schultzer
GPG key ID: 398EE094F9A269F7
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.1.21

Changes

  • Assent.Strategy.OAuth now handles missing params in callback phase #75
  • Assent.Strategy.Twitter now handles access denied callback #75
Assets 2
Loading

v0.1.20

10 Dec 18:03
@danschultzer danschultzer
v0.1.20
3ab2d7e
This commit was signed with the committer’s verified signature. The key has expired.
danschultzer Dan Schultzer
GPG key ID: 398EE094F9A269F7
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v0.1.20

Changes

  • Assent.Strategy.Stripe added #70
  • Assent.Strategy.to_url/3 now handles nested query params #70
  • Assent.Strategy.OAuth2 no longer removes padding for base64 encoding authorization header #71
  • Assent.Strategy.OIDC.validate_id_token/2 now supports dynamic OpenID configuration #73
  • Assent.Strategy.OIDC.fetch_userinfo/2 now supports dynamic OpenID configuration #73
Assets 2
Loading