-
-
Notifications
You must be signed in to change notification settings - Fork 358
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
release: version packages #5684
Merged
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
silverhand-bot
requested review from
gao-sun,
simeng-li and
wangsijie
as code owners
April 11, 2024 09:23
COMPARE TO
|
Name | Diff |
---|---|
.changeset/afraid-stingrays-perform.md | 📈 +116 Bytes |
.changeset/chilled-pugs-notice.md | 📈 +181 Bytes |
.changeset/cuddly-buses-obey.md | 📈 +136 Bytes |
.changeset/dull-frogs-perform.md | 📈 +104 Bytes |
.changeset/fluffy-steaks-flow.md | 📈 +341 Bytes |
.changeset/forty-grapes-relax.md | 📈 +281 Bytes |
.changeset/four-goats-rush.md | 📈 +299 Bytes |
.changeset/funny-books-sell.md | 📈 +436 Bytes |
.changeset/green-cougars-behave.md | 📈 +212 Bytes |
.changeset/green-phones-visit.md | 📈 +88 Bytes |
.changeset/grumpy-cougars-perform.md | 📈 +217 Bytes |
.changeset/healthy-knives-draw.md | 📈 +325 Bytes |
.changeset/itchy-eels-remain.md | 📈 +258 Bytes |
.changeset/loud-mice-divide.md | 📈 +1.03 KB |
.changeset/metal-lions-swim.md | 📈 +209 Bytes |
.changeset/nasty-dots-lie.md | 📈 +81 Bytes |
.changeset/nine-turtles-learn.md | 📈 +1.54 KB |
.changeset/popular-chicken-share.md | 📈 +146 Bytes |
.changeset/pretty-mirrors-peel.md | 📈 +380 Bytes |
.changeset/rare-lamps-worry.md | 📈 +694 Bytes |
.changeset/real-camels-cheat.md | 📈 +168 Bytes |
.changeset/smart-melons-shop.md | 📈 +318 Bytes |
.changeset/soft-stingrays-beam.md | 📈 +109 Bytes |
.changeset/ten-steaks-melt.md | 📈 +76 Bytes |
.changeset/thick-carrots-tickle.md | 📈 +203 Bytes |
.changeset/thirty-cameras-explain.md | 📈 +906 Bytes |
packages/app-insights/CHANGELOG.md | 📈 +164 Bytes |
packages/app-insights/package.json | 0 Bytes |
packages/cli/CHANGELOG.md | 📈 +282 Bytes |
packages/cli/package.json | 0 Bytes |
packages/connectors/connector-github/CHANGELOG.md | 📈 +385 Bytes |
packages/connectors/connector-github/package.json | 0 Bytes |
packages/connectors/connector-huggingface/CHANGELOG.md | 📈 +196 Bytes |
packages/connectors/connector-huggingface/package.json | 0 Bytes |
packages/connectors/connector-oauth2/CHANGELOG.md | 📈 +231 Bytes |
packages/connectors/connector-oauth2/package.json | 0 Bytes |
packages/connectors/connector-oidc/CHANGELOG.md | 📈 +299 Bytes |
packages/connectors/connector-oidc/package.json | 0 Bytes |
packages/console/CHANGELOG.md | 📈 +1.64 KB |
packages/console/package.json | 0 Bytes |
packages/core/CHANGELOG.md | 📈 +6.39 KB |
packages/core/package.json | 0 Bytes |
packages/create/CHANGELOG.md | 📈 +51 Bytes |
packages/create/package.json | 0 Bytes |
packages/experience/CHANGELOG.md | 📈 +1.96 KB |
packages/experience/package.json | 0 Bytes |
packages/integration-tests/CHANGELOG.md | 📈 +255 Bytes |
packages/integration-tests/package.json | 0 Bytes |
packages/phrases/CHANGELOG.md | 📈 +538 Bytes |
packages/phrases/package.json | 0 Bytes |
packages/schemas/CHANGELOG.md | 📈 +777 Bytes |
packages/schemas/alterations/1.16.0-1712912361-delete-jwt-customier-with-empty-script.ts | 📈 +754 Bytes |
packages/schemas/alterations/1.16.0-1713942039-add-organization-custom-data.ts | 📈 +596 Bytes |
packages/schemas/alterations/1.16.0-1714270244-application-org-resource-scope.ts | 📈 +1.21 KB |
packages/schemas/alterations/next-1712912361-delete-jwt-customier-with-empty-script.ts | 📈 +754 Bytes |
packages/schemas/alterations/next-1713942039-add-organization-custom-data.ts | 📈 +596 Bytes |
packages/schemas/alterations/next-1714270244-application-org-resource-scope.ts | 📈 +1.21 KB |
packages/schemas/package.json | 0 Bytes |
packages/shared/CHANGELOG.md | 📈 +222 Bytes |
packages/shared/package.json | 0 Bytes |
pnpm-lock.yaml | 0 Bytes |
silverhand-bot
force-pushed
the
changeset-release/master
branch
24 times, most recently
from
April 15, 2024 10:29
de1aeea
to
94872da
Compare
silverhand-bot
force-pushed
the
changeset-release/master
branch
24 times, most recently
from
May 14, 2024 08:13
344551a
to
a5c353f
Compare
silverhand-bot
force-pushed
the
changeset-release/master
branch
from
May 14, 2024 10:03
a5c353f
to
d778352
Compare
gao-sun
approved these changes
May 14, 2024
SamSalvatico
added a commit
to ogcio/logto
that referenced
this pull request
May 17, 2024
* feat(schemas): add util method to convert admin tenant org id to user tenant id (logto-io#5570) * refactor: use ky in integration tests (logto-io#5584) * refactor: use ky in integration tests * refactor: remove node-fetch * refactor: fix test cases * refactor: remove waitFor after each test * feat: support direct sign-in for sso (logto-io#5589) * chore(core): update GET /configs/jwt-customizer/:tokenPath API error handling (logto-io#5595) * refactor(core): reorg and separate logto-config APIs into files * chore(cli): update translate CLI configs * fix(console): refresh invitation list after inviting members (logto-io#5593) * test: add tests for username case sensitive (logto-io#5597) * refactor(console): move organization template into a single page (logto-io#5590) * refactor(console): move organization template into a single page * feat(phrases): add org template translations * feat(console): implement custom jwt landing page implement custom jwt landing page * refactor(console): relocalte the component files relocate the component files * refactor(console): rename the jwtClaims page rename the jwtClaims page * refactor(console,phrases): refactor the customize jwt details page refactor the customize jwt details page * refactor(console): remove unused element remove unused element * refactor(console): redesign the jwt details page redesign the jwt details page * feat(console): update jwt create page button text update jwt create page button text * chore(console): align custom JWT path and hide the entrance for OSS * style(console): refine the SSO connector create model (logto-io#5594) refine the sso connector create model * fix(console): only pending invitations can be resent (logto-io#5601) * fix(core): update expired invitation to expired before inserting a new one (logto-io#5609) * feat(console): add leave tenant button in tenant settings (logto-io#5600) * fix(console): joining tenant should navigate user to the new tenant (logto-io#5602) * chore(core,console): update error handling of testing custom JWT * feat(core): add PATCH /configs/jwt-customizer API * fix(console): reset form as soon as JWT customizer is created (logto-io#5612) * feat(core,schemas): log extraTokenClaims exception (logto-io#5539) * refactor(console): improve invitation email input field (logto-io#5615) * refactor(schemas): rename tenant member role to collaborator (logto-io#5616) * fix(console,phrases): fix a batch of organization invitation console ui issues (logto-io#5614) * feat(console): support org permission management on new org template page (logto-io#5603) * feat(console): support org permission management on new org template page * refactor(console): rename org pages * refactor(console): rename phrase keys * refactor(console): rename org to organization * feat(console): add org role details general settings page (logto-io#5610) * chore(console,phrases): update content and fix console * chore(console,toolkit): update custom JWT details page code editor action buttons style * refactor(console,phrases): rename tenant member role to collaborator (logto-io#5618) * chore(console,toolkit): update custom JWT details page code editor action buttons style * chore(core,console,schemas): update variable name and field name * refactor(experience): fix sso callback page style (logto-io#5624) * refactor(phrases): add zh-cn phrases in OIDC consent page (logto-io#5606) * feat(phrases): add i18n phrases for zh-cn about OICD Authorize page * refactor: apply suggestions from code review --------- Co-authored-by: Gao Sun <gao@silverhand.io> * chore(console): update style chore(console): update style * refactor(console,phrases): display inviter name on tenant invitations table (logto-io#5622) * refactor(console,phrases): display inviter name on tenant invitations table * chore: bump @logto/cloud * chore: update pnpm lockfile * refactor: update dependency on @logto/cloud and update legacy JWT customizer * fix(console): temporarily fix pro plan cannot invite members issue (logto-io#5629) * feat(console): create organization role (logto-io#5630) * feat(console): add permissions page for org role details page (logto-io#5631) * refactor(console): reorg resource details page (logto-io#5634) * feat(core): search organization roles (logto-io#5627) * feat(core,schemas): add organization resource scope relations (logto-io#5608) * feat(console): add azure OIDC guide (logto-io#5592) add azure OIDC guide * feat(core,schemas): edit and query resource scopes for org role (logto-io#5613) * fix(console,phrases): update the jwt test section content (logto-io#5641) update the jwt test section content * style(console): fix the jwt details page style (logto-io#5642) * style(console): fix the jwt details page style fix the jwt details page style * fix(console): remove the unused style remove the unused style * fix(console): remove sticky position remove sticky position * feat(console,core,phrases): add quota guard for cloud collaboration in console (logto-io#5644) * fix(console): fix test result panel overflow bug (logto-io#5643) fix test result panel overflow bug * chore(schemas): fix alteration timestamp (logto-io#5645) chore(schemas): fix alteration scripts order * feat(console): support searching for organization roles (logto-io#5646) * chore(schemas): fix alteration down (logto-io#5648) * refactor(console): show confirm box when inviting a member as admin (logto-io#5649) * fix(console): should stop requesting invitations api for collaborator role (logto-io#5650) * feat(console): add guide for organization template page (logto-io#5647) * refactor(console): collaborator can see tenant domain settings in readonly mode (logto-io#5652) * refactor(console): hide switching tabs and invite button for collaborators (logto-io#5654) * refactor(console): improve switch button styles (logto-io#5655) * fix(console): user should switch account and accept invitation properly in console (logto-io#5657) * fix(console): bump js sdks to fix the cannot switch user account issue * fix(console): accept invitation automatically after switching account * refactor(console): improve tenant member role related experience (logto-io#5659) * refactor(console,phrases): improve invite email input (logto-io#5661) * fix(console): go to onboarding process on clicking create new tenant button (logto-io#5663) * fix(connector): fix microsoft social connector readme (logto-io#5658) * fix(connector): fix microsoft social connector readme fix microsoft social connector readme * fix(connector): improve wording improve wording * fix(experience): fix the terms of use not clickable bug (logto-io#5670) * fix(experience): fix the terms of use not clickable bug fix the terms of use not clickable bug * chore: remove changeset remove changeset * chore(console): remove dev feature flags for cloud collaboration (logto-io#5666) * chore(console): update pricing plan items for jwt claims (logto-io#5672) * refactor(console): redirect to sign-up page on clicking invitation links (logto-io#5669) * chore: add changeset (logto-io#5668) add changeset * refactor(experience): fall back to sign-in page when error (logto-io#5673) * refactor(experience): fall back to sign-in page for edge cases * refactor: add unit tests * refactor: fix tests * release: version packages (logto-io#5463) * fix(deps): update dependency tar to v6.2.1 [security] (logto-io#5675) Co-authored-by: Gao Sun <gao@silverhand.io> * fix(deps): update dependency snakecase-keys to v8 (logto-io#5667) Co-authored-by: Gao Sun <gao@silverhand.io> * fix(deps): update dependency samlify to v2.8.11 (logto-io#5458) Co-authored-by: Gao Sun <gao@silverhand.io> * feat(console): display api resources in org role permission table (logto-io#5671) * refactor: uncomment feature guard (logto-io#5676) * feat(console): assign permissions for org roles (logto-io#5664) * refactor(core): partially remove got (logto-io#5596) * refactor(core): partially remove got * refactor: use shared form-urlencoded headers * refactor(console): update protected app custom domain field to app domain (logto-io#5680) * fix(core): not allow to modify management api resource (logto-io#5626) * refactor(console): deprecate original organization template page (logto-io#5681) * feat(console): add paywall for organization template (logto-io#5679) * refactor(console): update reservation link (logto-io#5683) * chore(deps): update zaproxy/action-full-scan action to v0.10.0 (logto-io#5620) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * feat(core): add custom jwt worker deploy (logto-io#5682) call custom jwt worker deploy cloud service when upsert new jwt-customizers * feat(core): undeploy worker scripts when jwt customizer is deleted (logto-io#5685) undeloy work scripts when the jwt customizer is deleted * refactor(console,phrases): update organization template phrases (logto-io#5688) * refactor(console): use route objects * refactor(console): split route objects * chore(console): disable route component in pages * feat(core): add jwt-customizer test script deployment (logto-io#5686) feat(core): call cloud worker deploy service on custom jwt test call cloud worker deploy service on custom jwt test * feat(console): add api permission content for organization guide (logto-io#5697) * style(console): align resource icon with resource name (logto-io#5694) * refactor(console): update org template sidebar icon (logto-io#5691) * style(console): update signing key sidebar icon (logto-io#5692) * refactor(phrases): update organization template subtitle (logto-io#5693) * refactor(core,schemas): make the jwt customizer script field mandatory (logto-io#5696) * refactor(core,schemas): make the jwt customizer script field mandatory make the jwt customizer script field mandatory * fix(schemas): fix the alteration script fix the alteration script * fix(schemas): fix ut fix ut * fix(console): fix the quota guard layout (logto-io#5689) * fix(console): fix the quota guard layout fix the quota guard layout * chore(console): add some comments add some comments * refactor(console): reorg organization details routes (logto-io#5702) * refactor(console): update tab order on role details page (logto-io#5695) * chore: add Cloudflare worker config for custom JWT (logto-io#5709) * feat(core): add api to fetch organization scopes for a user (logto-io#5701) * feat(core): add api to fetch user organization scopes * chore: add openapi.json * fix: integration test * chore: turn off max-lines lint rules for openapi json files * chore: add changeset * refactor: return all scope information instead of just the name * refactor(console): update check guide button style on org template page (logto-io#5712) * style(console): update organization template layout (logto-io#5713) * refactor(console): update console routes (logto-io#5715) * fix(console): mutate org roles once a org role is deleted (logto-io#5716) * feat(core): handle access token with organization api resource (logto-io#5653) * style(console): minor custom jwt page style iteration (logto-io#5711) minor custom jwt page styles iteration * chore(test): improve organization user test stability (logto-io#5717) * feat(core): add customJwt paywall guard to core API (logto-io#5708) add customJwt paywall guard to core API * chore(core): fix typos in comment (logto-io#5718) * refactor(core): dont throw for status errors in prod (logto-io#5690) * refactor(core): dont throw for status errors in prod * refactor(core): report to AppInsights * chore(console): update incorrect swr cache key usages (logto-io#5724) * chore(deps): update dependency @testing-library/react to v15 (logto-io#5726) Co-authored-by: Gao Sun <gao@silverhand.io> * feat(console): update user access immediately on tenant role updates (logto-io#5720) * feat(console): update user access immediately on tenant role updates * chore: improve comments Co-authored-by: Gao Sun <gao@silverhand.io> --------- Co-authored-by: Gao Sun <gao@silverhand.io> * refactor: remove pnpm script (logto-io#5728) * fix(core): set oidc access denied error code to 403 (logto-io#5725) * feat(console): add plausible * refactor(console,phrases): update phrases for organization role (logto-io#5736) * fix(console): cloud collaboration minor bug fixes (logto-io#5734) * fix(console): oss version should not check user tenant scopes * fix(console): collaborators should leave immediately if they are removed from tenant * fix(core,console): invitee emails should be case insensitive (logto-io#5730) * fix(core,console): invitee email checks should be case insensitive * test: add integration test * chore: add changeset * refactor(console): remove AppInsights * refactor: upgrade packages (logto-io#5739) * refactor: upgrade packages * refactor: fix type issues * refactor: fix koa-guard * test(console): assign permissions to organization role (logto-io#5729) * refactor: remove AppInsights for React (logto-io#5742) * fix(console): always display create org button (logto-io#5746) * fix(console): force dev feature enabled false (logto-io#5752) * fix(console): force dev feature enabled false force dev feature enabled false * fix(console): avoid lint error avoid lint error * fix(console): enable dev feature for integration tests enable dev feature for integration tests * chore: upgrade packages (logto-io#5749) * feat(core): add redis cluster and tls extra options support (logto-io#5619) * feat: add redis cluster and tls extra options support * refactor(core): allow non-normative redis url --------- Co-authored-by: Gao Sun <gao@silverhand.io> * chore(deps): update silverhand configs monorepo packages to v6 (major) (logto-io#5750) * chore: upgrade configs * refactor: fix lint errors * refactor: fix lint errors * refactor: fix stylelint issues --------- Co-authored-by: Gao Sun <gao@silverhand.io> * fix(core): update cloud dependency, cloud client calls * chore: apply suggestions from code review Co-authored-by: Gao Sun <gao@silverhand.io> * chore: update util function interface and update comments * chore(console): update custom JWT scripts sample (logto-io#5747) * fix(console): revert the isDevFeaturesEnabled changes in console (logto-io#5755) revert the isDevFeatureEnabled hot fix * chore: upgrade json5 to 2.2.3 (logto-io#5757) * fix(console): pagination bar should be fully visible (logto-io#5758) * fix(console): replace ts with js for JWT customizer (logto-io#5760) replace ts with js for JWT customizer * fix(console): rotate signing-key dropdown should be visible (logto-io#5759) * fix(console): copy to clipboard component should display at full width properly (logto-io#5764) * fix(console): fix the jwt creation page idle bug after submit form (logto-io#5761) * fix(console): fix the jwt creation page idle bug after submit form fix the jwt creation page idle bug after submit the form * chore(console): add some comments add some comments * refactor(console): implement new jwt customizer delete modal (logto-io#5765) * refactor(console): clean up the global useConfirmModal provider clean up the global useConfirmModal provider * refactor(console): implement new jwt customizer delete modal implement new jwt customizer delete modal * refactor(console): update organization guide and tenant member routers (logto-io#5766) * chore(phrases): improve phrases on accessing invitations not made for you (logto-io#5744) * chore(experience): package update (logto-io#5769) react-device-deteck package update * style(experience): fix the terms of use link style (logto-io#5771) fix the terms of use link style in confirm modal * chore(core): fix typo in code comments (logto-io#5772) * feat(console): add spring boot integration guide (logto-io#5740) * feat(console): add spring boot integration guide add spring boot integration guide * chore: add changeset add changeset * chore: fix changeset typo * fix(console): update the spring boot guide description update the spring boot guide description * chore(console): remove extra empty space remove extra empty space * feat(core): support comma separated resource param (logto-io#5773) * chore(console,core): remove custom JWT dev feature guard (logto-io#5775) * chore(phrases): update custom JWT console phrases (logto-io#5776) * chore(deps): update ataylorme/eslint-annotate-action action to v3 (logto-io#5756) * chore(deps): update ataylorme/eslint-annotate-action action to v3 * ci: update upload-annotations.yml --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Gao Sun <gao@silverhand.io> * fix(core): bump oidc-provider to fix resource indicator check (logto-io#5782) * fix(core): bump oidc-provider to fix resource indicator check * chore: add changeset * chore(deps): upgrade formidable (logto-io#5780) * feat: add the new dockerize-edge job (logto-io#5777) * feat: add the new dockerize-edge-image job add the new dockerize-edge-image job * chore: rename the job rename the job * chore: fix the layout of docker-edge ci job fix the layout of docker-edge ci job * refactor(core): update `AuthedRouter` -> `ManagementApiRouter` * feat(connector): support `client_secret_basic` and `client_secret_jwt` methods for oauth2 connectors (logto-io#5762) * chore: ignore the hidden file found zap alert (logto-io#5786) ignore the hidden file found zap alert * fix: fix zap config file (logto-io#5788) fix zap config file * fix: fix zap config file syntax (logto-io#5790) fix zap config file syntax * fix(deps): update dependency tar to v7 (logto-io#5678) * fix(deps): update dependency tar to v7 * refactor: fix import --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Gao Sun <gao@silverhand.io> * chore(deps): update dependency supertest to v7 (logto-io#5791) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * fix(experience): redirect to sign-in page on socical sign-in error (logto-io#5787) * fix(experience): redirect to sign-in page on socical sign-in error redirect user to sign-in page on social sign-in error * test(experience): add integration tests add integration tests * refactor: reorg the implementation * feat: support organization custom data (logto-io#5785) * feat: support organization custom data * chore: update changeset * chore: add code coverage token (logto-io#5792) add code coverage token * fix(experience): use correct callback path for native environments (logto-io#5800) * refactor(console): remove useless log title definitions (logto-io#5798) remove useless log title definitions * fix(core): fix status code of create new user api (logto-io#5735) * fix(experience,core): fix SSO register hook event not triggering bug (logto-io#5796) * fix(experience,core): fix SSO register hook event not triggering bug fix the SSO register hook event not triggering bug * chore: update changeset content update changeset content * feat(schemas): add table for app org resource scope consent (logto-io#5803) feat(schemas): add table application_user_consent_organization_resource_scopes * fix: remove the plus sign in front of the phone number (logto-io#5801) * fix(core): fix upload file guard (logto-io#5810) fix: remove the plus sign in front of the phone number (logto-io#5801) Co-authored-by: Kamto <kam_to@outlook.com> * refactor: update plausible domain (logto-io#5799) refactor: update plausible domain * feat(core,schemas): add CRUD for consent organization resource scopes (logto-io#5804) feat(core,schemas): add crud for user consent organization resource scopes * refactor: implement request id (logto-io#5813) * refactor: implement request id * refactor: fix tests * refactor: add unit tests * refactor: remove app insights domains from security headers (logto-io#5814) * feat(connector): add hugging face connector (logto-io#5797) * fix(core): invitee email check should be case insensitive (logto-io#5823) * fix(core): invitee email check should be case insensitive * chore: add changeset * fix(console): hide org resource scopes tab from 3rd-party app modal (logto-io#5824) * chore(deps): upgrade withtyped packages (logto-io#5827) * refactor(core): optimize init (logto-io#5826) * chore(deps): upgrade withtyped packages (logto-io#5829) * refactor(console): make invitee email breakable in invitation list (logto-io#5825) * feat(core,schemas): add org resource scopes to consent get (logto-io#5808) * feat(experience): display org resource scopes on consent page (logto-io#5831) * feat: init management api hook middleware function (logto-io#5783) * feat: init management api hook middleware function * refactor: fix type issues * feat(core): implement auto triggered management api hooks implement auto triggered managment api hooks * refactor(console,core,schemas): rename the managementHook to dataHook rename the managementHooke to dataHook and redefine the types * feat(core): add dev feature guard add dev feature guard * chore: update changeset update changeset * refactor(core,console,schemas,shared): update the webhook logics update the webhook logics. Address some PR review comments * fix(test): fix integration tests fix integration tests * fix(test): remove legacy code remove legacy code * refactor(core,schemas): refactor the hook library code refactor the webhooks library code. address some comments * fix(core): address rebase issue update console log using getConsoleLogFromContext * fix(core): fix ut fix ut * fix(core): refactor data webhook code refactor data webhook codes * refactor(core): clean up some management api webhook code clean up some management api webhook code --------- Co-authored-by: simeng-li <simeng@silverhand.io> * feat(console): add webflow integration guide (logto-io#5832) * refactor(console): update conversion report timing (logto-io#5833) * feat(connector): can access all user email even if no public email is set (logto-io#5737) * feat(core,schemas): update consent info (logto-io#5822) * chore(deps): update pnpm to v9 (logto-io#5727) * chore(deps): update pnpm to v9 * ci: fix alteration --------- Co-authored-by: Gao Sun <gao@silverhand.io> * feat(console): support assign organization resource scopes for 3rd-party app (logto-io#5812) * fix(console): make profile a tenant independent page (logto-io#5687) * fix(console): make profile a tenant independent page * refactor(console): profile routes * chore(core): refactor later * fix(console): focus on org socpes tab on app scopes modal reopened (logto-io#5839) * fix(console): fix the link social feature on logto cloud (logto-io#5838) * fix(experience): hide scope list if no user scopes and resource scopes (logto-io#5840) * refactor(console): refactor some console global routes (logto-io#5841) * fix(console): move handle social route to global anonymous route enum (logto-io#5842) * refactor(console, phrases): update resource scopes assignment form title (logto-io#5846) * feat(core,console): enable custom JWT for OSS and can run script in local vm (logto-io#5794) * chore: add changeset for org api resource (logto-io#5719) chore: add change set for org api resource * chore(deps): update dependency @simplewebauthn/browser to v10 (logto-io#5703) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * chore(deps): update dependency @simplewebauthn/types to v10 (logto-io#5704) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> * fix(deps): update dependency @simplewebauthn/server to v10 (logto-io#5705) * fix(deps): update dependency @simplewebauthn/server to v10 * fix(core): update code to support @simplewebauthn/server v10 --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: wangsijie <wangsijie@silverhand.io> * fix(core): filter scopes for 3rd-party app (logto-io#5845) * chore: fix pnpm-lock (logto-io#5851) * ci(connector): build connectors before publish (logto-io#5853) * chore(console,experience): remove dev flags add changeset for organization updates (logto-io#5763) * chore(core,schemas): remove feature guard of organization api resource (logto-io#5743) * chore(console): update jwt claims status in plan comparison table (logto-io#5854) * feat(schemas): define data hook events (logto-io#5828) * feat(schemas): define data hook events define data hook events * fix(schemas,core): fix the type error fix the type error * fix(core): fix unit test fix unit test * feat(test): add integration tests for DataHooks add integration tests for DataHooks * fix(test): fix ut of management api hook middleware fix ut of the management api hook middleware * refactor(test,core,schemas): refactor some DataHook definiations refactor some DataHook definitations * chore(test): remove upper scope describe wrap remove upper scope describe wrap * fix(test): fix tests fix tests * refactor(schemas): rename the info.update events rename the info.update events * refactor(schemas): rename rename * refactor(core,schemas): refactor DataHook code refactor DataHook code to address some code review comments * fix(test): fix ut fix ut * fix(schemas): update DataHookEventPayload type update DataHookEventPayload type * chore(schemas): update comments update comments * feat(console): add wordpress integration guide (logto-io#5844) * ci: use default runner (logto-io#5848) * refactor(core, schemas): update interaction webhook middleware using contextManager (logto-io#5834) * feat(core): update interaction webhook middleware using contextManager updaet interaction webhook middleware using contextManager * fix(test): fix ut fix ut * refactor(core, schemas): refactor DataHook context structure refactor DataHook context structure * fix(core): fix demo-app application not found error fix demo-app application not found error * chore(core): update comments update comments * chore: build oauth2 connector on prepack (logto-io#5855) * chore(core): add custom domain host to app insights (logto-io#5852) * fix(core): add devFeature guard for DataHooks (logto-io#5861) fix(core): add devFeature guard add devFeature guard * refactor(core): update first admin user preconditions (logto-io#5858) * fix(core): fix consent scopes filter rule for non-3rd-party app (logto-io#5859) * refactor(console): do not parameterize guide id (logto-io#5863) * chore(phrases): update organization permission column name (logto-io#5864) * fix(core): should sign out user after deletion or suspension (logto-io#5857) fixed logto-io#5572 * chore(console): update sdk doc reference links (logto-io#5860) * release: version packages (logto-io#5684) * fix(core): check for tenant id before adding default roles --------- Co-authored-by: Charles Zhao <charleszhao@silverhand.io> Co-authored-by: Gao Sun <gao@silverhand.io> Co-authored-by: Darcy Ye <darcyye@silverhand.io> Co-authored-by: wangsijie <wangsijie@silverhand.io> Co-authored-by: Xiao Yijun <xiaoyijun@silverhand.io> Co-authored-by: simeng-li <simeng@silverhand.io> Co-authored-by: pawn <115976311+the-pawn-2017@users.noreply.github.com> Co-authored-by: silverhand-bot <107667382+silverhand-bot@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Alessandro Chitolina <alekitto@gmail.com> Co-authored-by: Kamto <kam_to@outlook.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR was opened by the Changesets release GitHub action. When you're ready to do a release, you can merge this and publish to npm yourself or setup this action to publish automatically. If you're not ready to do a release yet, that's fine, whenever you add more changesets to master, this PR will be updated.
Releases
@logto/app-insights@2.0.0
Major Changes
Patch Changes
trackException()
@logto/connector-github@1.4.0
Minor Changes
0227822: fetch GitHub account's private email address list and pick the verified primary email as a fallback
user:email
as part of default scope to fetch GitHub account's private email address list@logto/connector-huggingface@0.1.0
Minor Changes
Patch Changes
@logto/connector-oauth@1.3.0
Minor Changes
client_secret_basic
andclient_secret_jwt
token endpoint auth method for oauth & oidc connectorsPatch Changes
@logto/connector-oidc@1.3.0
Minor Changes
client_secret_basic
andclient_secret_jwt
token endpoint auth method for oauth & oidc connectorsPatch Changes
@logto/schemas@1.16.0
Minor Changes
21bb35b: refactor the definition of hook event types
DataHook
event types.DataHook
are triggered by data changes.e8c41b1: support organization custom data
Now you can save additional data associated with the organization with the organization-level
customData
field by:customData
field when using organization Management APIs.Patch Changes
@logto/cli@1.16.0
Patch Changes
@logto/create@1.16.0
Patch Changes
@logto/phrases@1.10.1
Patch Changes
5b03030: Not allow to modify management API resource through API.
Previously, management API resource and its scopes are readonly in Console. But it was possible to modify through the API. This is not allowed anymore.
3486b12: Fix file upload API.
The
koa-body
has been upgraded to the latest version, which caused the file upload API to break. This change fixes the issue.The
ctx.request.files.file
in the new version is an array, so the code has been updated to pick the first one.@logto/shared@3.1.1
Patch Changes
21bb35b: add
normalizeError
method to@logto/shared
packageUse this method to normalize error objects for logging. This method is useful for logging errors in a consistent format.
@logto/console@1.14.0
Minor Changes
21bb35b: refactor the definition of hook event types
DataHook
event types.DataHook
are triggered by data changes.5872172: enable custom JWT feature for OSS version
OSS version users can now use custom JWT feature to add custom claims to JWT access tokens payload (previously, this feature was only available to Logto Cloud).
6fe6f87: support adding API resource permissions to organization roles and organization permissions in 3rd-party applications
Updates
Patch Changes
@logto/core@1.16.0
Minor Changes
8ef021f: add support for Redis Cluster and extra TLS options for Redis connections
21bb35b: refactor the definition of hook event types
DataHook
event types.DataHook
are triggered by data changes.e8c41b1: support organization custom data
Now you can save additional data associated with the organization with the organization-level
customData
field by:customData
field when using organization Management APIs.5872172: enable custom JWT feature for OSS version
OSS version users can now use custom JWT feature to add custom claims to JWT access tokens payload (previously, this feature was only available to Logto Cloud).
1ef32d6: update token grant to support organization API resources
Organization roles can be assigned with scopes (permissions) from the API resources, and the token grant now supports this.
Once the user is consent to an application with "resources" assigned, the token grant will now include the scopes inherited from all assigned organization roles.
Users can narrow down the scopes by passing
organization_id
when granting an access token, and the token will only include the scopes from the organization roles of the specified organization, the access token will contain an extra claimorganization_id
to indicate the organization the token is granted for. Then the resource server can use this claim to protect the resource with additional organization-level authorization.This change is backward compatible, and the existing token grant will continue to work as before.
Patch Changes
52df3eb: Bug fix: organization invitation APIs should handle invitee emails case insensitively
368385b: Management API will not return 500 in production for status codes that are not listed in the OpenAPI spec
d545303: Fix OIDC AccessDenied error code to 403.
This error may happen when you try to grant an access token to a user lacking the required permissions, especially when granting for orgnization related resources. The error code should be 403 instead of 400.
5b03030: Not allow to modify management API resource through API.
Previously, management API resource and its scopes are readonly in Console. But it was possible to modify through the API. This is not allowed anymore.
5660c54: Sign out user after deletion or suspension
When a user is deleted or suspended through Management API, they should be signed out immediately, including sessions and refresh tokens.
a9ccfc7: implement request ID for API requests
Logto-Core-Request-Id
)bbd399e: fix the new user from SSO register hook event not triggering bug
Issue
When a new user registers via SSO, the
PostRegister
interaction hook event is not triggered.PostSignIn
event is mistakenly triggered instead.Root Cause
In the SSO
post /api/interaction/sso/:connectionId/registration
API, we update the interaction event toRegister
.However, the hook middleware reads the event from interaction session ahead of the API logic, and the event is not updated resulting in the wrong event being triggered.
In the current interaction API design, we should mutate the interaction event by calling the
PUT /api/interaction/event
API, instead of updating the event directly in the submit interaction APIs. (Just like the no direct mutation rule for a react state). So we can ensure the correct side effect like logs and hooks are triggered properly.All the other sign-in methods are using the
PUT /api/interaction/event
API to update the event. But when implementing the SSO registration API, we were trying to reduce the API requests and directly updated the event in the registration API which will submit the interaction directly.Solution
Remove the event update logic in the SSO registration API and call the
PUT /api/interaction/event
API to update the event.This will ensure the correct event is triggered in the hook middleware.
Action Items
Align the current interaction API design for now.
Need to improve the session/interaction API logic to simplify the whole process.
b4b8015: fix a bug that prevents invitee from accepting the organization invitation if the email letter case is not matching
b575f57: Support comma separated resource parameter
Some third-party libraries or plugins do not support array of resources, and can only specify
resource
throughadditionalParameters
config, e.g.flutter-appauth
. However, only one resource can be specified at a time in this way. This PR enables comma separated resource parameter support in Logto core service, so that multiple resources can be specified via a single string.For example: Auth URL like
/oidc/auth?resource=https://example.com/api1,https://example.com/api2
will be interpreted and parsed to Logto core service as/ordc/auth?resource=https://example.com/api1&resource=https://example.com/api2
.aacbebc: Provide management API to fetch user organization scopes based on user organization roles
organizations/:id/users/:userId/scopes
3486b12: Fix file upload API.
The
koa-body
has been upgraded to the latest version, which caused the file upload API to break. This change fixes the issue.The
ctx.request.files.file
in the new version is an array, so the code has been updated to pick the first one.ead2abd: fix a bug that API resource indicator does not work if the indicator is not followed by a trailing slash or a pathname
oidc-provider@8.4.6
to fix the above issueUpdated dependencies [21bb35b]
Updated dependencies [5b03030]
Updated dependencies [b80934a]
Updated dependencies [a9ccfc7]
Updated dependencies [e8c41b1]
Updated dependencies [5872172]
Updated dependencies [6fe6f87]
Updated dependencies [21bb35b]
Updated dependencies [bbd399e]
Updated dependencies [3486b12]
Updated dependencies [9cf03c8]
Updated dependencies [c1c746b]
@logto/experience@1.6.1
Patch Changes
b80934a: fix native social sign-in callback
In a native environment, the social sign-in callback that posts to the native container (e.g. WKWebView in iOS) was wrong.
This was introduced by a refactor in feat: support direct sign-in #5536: It updated the callback path from
/sign-in/social/:connectorId
to/callback/social/:connectorId
. However, the function to post the message to the native container was not updated accordingly.bbd399e: fix the new user from SSO register hook event not triggering bug
Issue
When a new user registers via SSO, the
PostRegister
interaction hook event is not triggered.PostSignIn
event is mistakenly triggered instead.Root Cause
In the SSO
post /api/interaction/sso/:connectionId/registration
API, we update the interaction event toRegister
.However, the hook middleware reads the event from interaction session ahead of the API logic, and the event is not updated resulting in the wrong event being triggered.
In the current interaction API design, we should mutate the interaction event by calling the
PUT /api/interaction/event
API, instead of updating the event directly in the submit interaction APIs. (Just like the no direct mutation rule for a react state). So we can ensure the correct side effect like logs and hooks are triggered properly.All the other sign-in methods are using the
PUT /api/interaction/event
API to update the event. But when implementing the SSO registration API, we were trying to reduce the API requests and directly updated the event in the registration API which will submit the interaction directly.Solution
Remove the event update logic in the SSO registration API and call the
PUT /api/interaction/event
API to update the event.This will ensure the correct event is triggered in the hook middleware.
Action Items
Align the current interaction API design for now.
Need to improve the session/interaction API logic to simplify the whole process.
@logto/integration-tests@1.6.1
Patch Changes
5b03030: Not allow to modify management API resource through API.
Previously, management API resource and its scopes are readonly in Console. But it was possible to modify through the API. This is not allowed anymore.