feat(deps): update dependency simple-oauth2 to v4

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
simple-oauth2	2.5.2 -> 4.2.0
@types/simple-oauth2	2.5.4 -> 4.1.0

---

Release Notes

lelylan/simple-oauth2

v4.2.0

Compare Source

Improvements

• #​354 Add support for custom http options to access token refresh and revoke operations

Maintainance

• #​329 Documentation updates for persistent access token refresh
• #​330 Upgrade module to use eslint v7
• #​331 Internal module reorganization
• #​333 Add template for issues
• #​341 Segregate integration tests by responsability area
• #​352 Use Node 14 as default runtime version for development. Document support matrix
• #​353 Use joi instead of the deprecated @​hapi/joi module

v4.1.0

Compare Source

Improvements

• #​328 Add support to refresh persistent access tokens

Maintainance

• #​326 Remove usage of date-fns production dependency
• #​325 Setup volta instead of nvm to handle node versions
• #​322 Update acorn version in package-lock file

v4.0.0

Compare Source

Breaking changes

• #​292 #​313 Require at least Node 12
• #​292 Use private class fields for non-public API's
• #​292 Access token .token property is now frozen
• #​318 New public API separating each grant type into it's own submodule
• #​321 Rename resource owner credentials module to be accurate

Maintainance

• #​292 Upgrade @​hapi/hoek to v9 (requires Node 12)
• #​292 Upgrade @​hapi/joi to v17 (requires Node 12)
• #​292 Upgrade @​hapi/wreck to v17 (requires Node 12)
• #​311 Upgrade nock dev library to v12
• #​319 Add Node 14 to test matrix

Documentation

• #​314 Add client credentials token refresh disclaimer
• #​317 Fix output documentation for boom errors
• #​320 Add complete reference documentation

v3.4.0

Compare Source

Improvements

• #​301 Refactor module schema to reuse constants across the codebase
• #​302 Extract access token parsing functionality from token class
• #​310 #​312 Change how date-fns is imported do make it compatible with webpack

Maintainance

• #​303 #​304 Add more references to API documentation on library README
• #​306 Add documentation for URL resolution on host/paths configurations
• #​307 Replace travis CI with github actions

v3.3.0

Compare Source

• #​299 Add support to verify for token expiration with a custom expiration window
• #​300 Add support to set the header credentials' encoding mode with options.credentialsEncodingMode.

v3.2.0

Compare Source

New features

• #​298 Add support for custom scope separator by using options.scopeSeparator configuration

Improvements

• #​290 Valid token presence is verified on access token creation
• #​290 Valid tokenType presence is verified on .revoke calls

Maintainance

• #​289 Remove dev lodash library from tests
• #​285 Update ava test runner to v3
• #​287 Update chance-access-token dev library to v2
• #​288 Update nyc instrumentation dev library to v15
• #​297 Add tests for empty credentials support
• #​291 Improve library documentation. Separate API reference from main documentation

v3.1.0

Compare Source

New features

• #​277 Add support to parse access tokens's expire_at property as UNIX timestamps

v3.0.1

Compare Source

Publishing changes

• #​273 Deprecate unsupported library versions

v3.0.0

Compare Source

Breaking changes

• #​260 Use @​hapi/wreck v15. This version changes how a baseUrl is resolved against a path, affecting how auth.tokenHost, auth.tokenPath, auth.authorizeHost and auth.authorizePath are resolved when using the .getToken methods. See @​hapi/wreck breaking changes to better understand potential issues that may arise.

• #​260 Use new Node.js WHATWG URL api instead of the legacy url module. This change affects how auth.authorizeHost and auth.authorizePath are resolved when using the authorizationCode.authorizeURL method.

• #​256 Users can override the grant_type parameter when performing a token exchange throught the .getToken method. Useful in cases where the auth server uses a value different from the standard.

• #​256 Token exchange methods no longer mutate provided arguments

• #​255 Follow up to 20 redirects by default

• #​200 #​256 Change default multiple scope encoding from using comma to spaces on all token exchange methods

• #​88 Change JSON response parsing mode from smart to strict. Since the OAuth2 specification indicates only JSON responses are valid, any non-JSON response throws an error instead of resolving into a Buffer. Use http.json = true to restore the previous behavior.

New features

• #​270 All token exchange methods now accept an optional argument to override non-essential http options or read parsing options.

• #​268 All token exchange methods can be called without arguments

• #​263 Use @​hapi/joi v16. No breaking changes are expected.

---

Renovate configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻️ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by WhiteSource Renovate. View repository job log here.

[reviewflow]

Options:

• This PR is a feature branch
• Add [skip ci] on merge commit
• Auto merge when this PR is ready and has no failed statuses. (Also has a queue per repo to prevent multiple useless "Update branch" triggers)
• Automatic branch delete after this PR is merged