Skip to content

Releases: trikoder/oauth2-bundle

v4.0.0

27 Jul 11:00
@X-Coder264 X-Coder264
v4.0.0
115257a
Compare
Choose a tag to compare
v4.0.0 Latest
Latest 
Fix transient test
Assets 2

v3.2.1

17 Apr 14:44
@X-Coder264 X-Coder264
v3.2.1
18e8652
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v3.2.1

Fixed

  • PHP 8.1 deprecation (#308)

Huge thank you to the following contributors for making this release possible:

Contributors

abraxas81
Assets 2

v3.2.0

26 Oct 15:57
@X-Coder264 X-Coder264
v3.2.0
5878813
Compare
Choose a tag to compare
v3.2.0

Added

  • Jobs with the prefer-lowest composer flag to CI (#204)
  • On delete CASCADE on authorization code entity client association (#216)
  • Trikoder\Bundle\OAuth2Bundle\Event\AbstractUserResolveEvent abstract class for user resolve events (#221)
  • Add per grant type configuration options (#199)
  • CI testing - Symfony 5.1 (#230)
  • Cleanup command (trikoder:oauth2:clear-revoked-tokens) for revoked tokens (#234)
  • Setter for the secret property of the Client Doctrine entity (#239)

Changed

  • Pass previous exception toOauth2AuthenticationFailedException exception (#223)
  • Allow PHPUnit 9 (#238)

Deprecated

  • Legacy service aliases (#203)

Huge thank you to the following contributors for making this release possible:

Assets 2

v3.1.1

10 Apr 16:50
@spideyfusion spideyfusion
v3.1.1
73cddab
Compare
Choose a tag to compare
v3.1.1

Removed

  • userIdentifier index from oauth2_access_token and oauth2_authorization_code tables (6108915)
Assets 2

v3.1.0

09 Apr 15:27
@spideyfusion spideyfusion
v3.1.0
7eeb932
Compare
Choose a tag to compare
v3.1.0

Added

  • Ability to revoke credentials (access tokens, authorization codes and refresh tokens) programmatically (fee109d)
  • Support for registering custom grant types (6b37588)

Fixed

  • Console command trikoder:oauth2:list-clients not being able to list clients without a secret (da38b7a)

Huge thank you to the following contributors for making this release possible:

Assets 2

v3.0.0

26 Feb 16:50
@spideyfusion spideyfusion
v3.0.0
6d65806
Compare
Choose a tag to compare
v3.0.0

Added

  • Ability to restrict clients from using the plain challenge method during PKCE (4562a1f)
  • Ability to clear expired authorization codes (91b6447)
  • Support for defining public (non-confidential) clients (8a71f55)
  • The bundle is now compatible with Symfony 5.x (3f36977)

Changed

Removed

  • Support for Symfony 3.4, 4.2 and 4.3 (3f36977)

Huge thank you to the following contributors for making this release possible:

Assets 2

v2.1.1

25 Feb 15:13
@spideyfusion spideyfusion
v2.1.1
119fa85
Compare
Choose a tag to compare
v2.1.1

Added

  • The bundle is now additionally tested against PHP 7.4 (2b29be3)

Fixed

  • Authentication provider not being aware of the current firewall context (d349329)
  • Faulty logic when revoking authorization codes (24ad882)

Huge thank you to the following contributors for making this release possible:

Assets 2

v2.1.0

09 Dec 09:41
@spideyfusion spideyfusion
v2.1.0
fbaa1f6
Compare
Choose a tag to compare
v2.1.0

Added

  • Ability to change the scope role prefix using the role_prefix configuration option (b2ee617)
  • Interfaces for converter type service classes (d2caf69)
  • New testing target in Travis CI for Symfony 4.4 (8a44fd4)
  • The bundle is now fully compatible with Symfony Flex (a4ccea1)

Changed

  • DoctrineBundle version constraint to allow 2.x derived versions (885e398)
  • Explicitly list league/oauth2-server version requirements in the documentation (9dce66a)
  • Reduce distributed package size by excluding files that are used only for development (80b9e41)
  • Simplify AuthorizationRequestResolveEvent class creation (32908c1)

Fixed

  • Not being able to delete clients that have access/refresh tokens assigned to them (424b770)

Huge thank you to the following contributors for making this release possible:

Assets 2

v2.0.1

13 Aug 09:20
@spideyfusion spideyfusion
v2.0.1
72e9465
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.0.1

Removed

  • PSR-7/17 alias check during the container compile process (0847ea3)
Assets 2

v2.0.0

08 Aug 09:21
@spideyfusion spideyfusion
v2.0.0
20b23c6
Compare
Choose a tag to compare
v2.0.0

Added

  • Ability to specify a Defuse key as the encryption key (d83fefe)
  • Ability to use different PSR-7/17 HTTP transport implementations (4973e1c)
  • Allow configuration of the private key passphrase (f16ec67)
  • Checks if dependent bundles are enabled in the application kernel (38f6641)
  • Console command for clearing expired access and refresh tokens (de3e338)
  • Console commands for client management (2425b3d, 56aafba)
  • Server grant types can now be enabled/disabled through bundle configuration (baffa92)
  • Support for the "authorization_code" server grant type (a61114a)
  • Support for the "implicit" server grant type (91b3d75)
  • Support for Symfony 4.3 (e4cf668)
  • The bundle is now additionally tested against PHP 7.3 (9f5937b)

Changed

  • Authentication exceptions are now thrown instead of setting the response object (8a505f6)
  • Modernize bundle service definitions (fc1f855, ef2f557)
  • Previously documented client scope inheriting and restricting is now the new default behavior (af9bffc)
  • Relaxed the league/oauth2-server package version constraint to allow non-braking changes (26d9c0b)
  • Use DateTimeInterface instead of DateTime whenever possible (4549252)

Fixed

Removed

  • Redundant configuration node options (5fa60ef)
  • Support for Symfony 4.1 (4973e1c)
  • Unsupported HTTP verbs on the /authorize and /token endpoints (51ef5ae)

Huge thank you to the following contributors for making this release possible:

Assets 2