Getting ready to release 9.0.2

.semver

@@ -1,5 +1,5 @@
 ---
 :major: 9
 :minor: 0
-:patch: 0
+:patch: 2
 :special: ''

CHANGELOG.md

@@ -2,11 +2,20 @@ Changelog
 =========
 Releases for CakePHP 4
 -------------
+* 9.0.2
+  * Added a custom Unauthorized Handler
+    * If logged user access unauthorized url he is redirected to referer url or '/' if no referer url
+    * If not logged user access unauthorized url he is redirected to configured url (default to login)
+    * on login we only use the redirect url from querystring 'redirect' if user can access the target url
+    * App can configure a callable for 'url' option to define a custom logic to retrieve the url for unauthorized redirect
+  * Added postLink method to AuthLinkHelper
+  * UserHelper::welcome now works with request's attribute 'identity'
+
 * 9.0.1
   * Improved routes
   * Improved integration tests
   * Fixed warnings related to arguments in function calls
-  
+
 * 9.0.0
    * Migration to CakePHP 4
    * Compatible with cakephp/authentication
@@ -27,7 +36,7 @@ Releases for CakePHP 3
 
 * 8.4.0
   * Rehash password if needed at login
-  
+
 * 8.3.0
   * Bootstrap don't need to listen for EVENT_FAILED_SOCIAL_LOGIN
 
@@ -44,7 +53,7 @@ Releases for CakePHP 3
   * Updated to latest version of Google OAuth
   * Added plugin object
   * Fixed action changePassword to work with post or put request
- 
+
 * 8.0.2
   * Add default role for users registered via social login
 
@@ -59,14 +68,14 @@ Releases for CakePHP 3
   * Added new translations
   * Improved customization options for recaptcha integration
 
-* 7.0.2 
+* 7.0.2
   * Fixed an issue with 2FA only working on the second try
 
-* 7.0.1 
+* 7.0.1
   * Fixed a security issue in 2 factor authentication, reported by @ndm2
   * Updated to cakedc/auth ^3.0
   * Documentation fixes
-  
+
 * 7.0.0
   * Removed deprecations for CakePHP 3.6
   * Added a new `UsersAuthComponent::EVENT_AFTER_CHANGE_PASSWORD`
@@ -79,7 +88,7 @@ Releases for CakePHP 3
   * Updated Facebook Graph version to 2.8
   * Fixed flash error messages on logic
   * Added link social account feature for twitter
-  * Switched to codecov  
+  * Switched to codecov
 
 * 5.2.0
   * Compatible with 3.5, deprecations will be removed in next major version of the plugin
@@ -131,7 +140,7 @@ Releases for CakePHP 3
 * 4.1.2
   * Fix RememberMe redirect
   * Fix AuthLink rendering inside Cells
-  
+
 * 4.1.1
   * Add missing password field in add user
 
@@ -148,7 +157,7 @@ Releases for CakePHP 3
   * Fixed RegisterBehavior api, make getRegisterValidators public.
 
 * 3.2.3
-  * Added compatibility with CakePHP 3.3+ 
+  * Added compatibility with CakePHP 3.3+
   * Fixed several bugs, including regression issue with Facebook login & improvements
 
 * 3.2.2
@@ -161,7 +170,7 @@ Releases for CakePHP 3
   * Improved registration and reset password user already logged in logic
   * Several bugfixes
   * AuthLinkHelper added to render links if user is allowed only
-  
+
 * 3.1.5
   * SocialAuthenticate improvements
   * Authorize Rules. Owner rule

Docs/Documentation/Authorization.md

@@ -36,7 +36,7 @@ The `CakeDC/Users.DefaultRedirect` offers additional behavior and config:
   * If logged user access unauthorized url he is redirected to referer url or '/' if no referer url
   * If not logged user access unauthorized url he is redirected to configured url (default to login)
   * on login we only use the redirect url from querystring 'redirect' if user can access the target url
-  * App can configure a callbable for 'url' option to define a custom logic to retrieve the url for unauthorized redirect
+  * App can configure a callable for 'url' option to define a custom logic to retrieve the url for unauthorized redirect
   * App can configure a flash message
 
 You could do the following to set a custom url and flash message: