Skip to content

v2.2.0
Compare
Choose a tag to compare
@becem-gharbi becem-gharbi released this 24 Nov 17:46
· 163 commits to main since this release
v2.2.0
7fceab1

compare changes

About

This release requires nuxt version >=3.8.2 as it depends on the newly added getRequestFingerprint h3 utility. With this release the access token playload contains a fingerprint hash verified on auth middleware. This is a security measure against XSS attacks.

npx nuxi upgrade --force

🚀 Enhancements

  • Add fingerprint check on access token verification (6a9c604)

🔥 Performance

  • Avoid relying on useCookie for multi-tabs auto logout (7865639)
  • Avoid access token check on non API requests (e9b98e3)

💅 Refactors

  • useAuthSession: Replace useCookie with js-cookie (cc2ea24)
  • useAuth: Remove delay on login (ed7e39b)
  • Create client-only plugin for Broadcast channel (4d5050a)
  • Verify userAgent on token refresh (5495a8f)
  • refresh: Pass user-agent to API (cfe9bb6)
  • fetch: Pass user-agent to API (827cdf7)
  • Add event argument to verifyAccessToken and createAccessToken (1a2f6fc)
  • Create fingerprint server utility (6438610)
  • Always return json on API response (or redirect) (feeed74)
  • fingerprint: Use h3 built-in hash option (7dc51c6)
  • Minor refactoring (7fceab1)

🌊 Types

🏡 Chore

  • demo: Upgrade dependencies (42b4825)
  • demo: Sync lock (0c0f473)
  • demo: Upgrade nuxt to 3.8.2 (7b6fb55)
  • Set nuxt compatibility to 3.8.2 (50ff905)
  • demo: Set access token max age to 20 sec (cb174c9)
  • demo: Upgrade deps (4535cd7)
  • Set tag to latest (5712684)

❤️ Contributors

Assets 2