- Upgraded FontAwesome to FontAwesome v5.1 - FontAwsome is now integrated using its npm package
- Fixed bug with JS libraries missing in Windows Dev envs
- Enabled autofocus in the Contact view when the user is logged in
- Fixed Home always being active (@dkimot)
- Modified Lob example to address recent API changes
- Updated Twilio API (@garretthogan)
- Fixed Twitter API (@garretthogan)
- Dependency updates
- Bootstrap 4.1 upgrade (breaking change)
- Addition of popper.js
- jQuery and Bootstrap will be pulled in the project using their npm packages
- Dockerfile will use development instead of production
- Security improvement by removing X-Powered-By header
- Express errorhandler will only be used in development to match its documentation
- Removed deprecated Instagram popular images API call from the Instagram example (@nacimgoura)
- Removed
mongoose global.Promiseas it is no longer needed (@nacimgoura) - Refactoring of GitHub, last.fm api, twitter examples and code improvements to use ES6/ES7 features (@nacimgoura)
- Add NodeJS 10 in travis.yml (@nacimgoura)
- Improvements to the Steam API example (@nacimgoura)
- Readme and documentation improvements (thanks in part to @nacimgoura)
- Dependency updates
- NodeJS 8.0+ is now required
- Removed dependency on Bluebird in favor of native NodeJS promisify support
- Font awesome 5 Upgrade
- Fix console warning about Foursquare API version
- Added environment configs to eslint configs and cleaned up code (Thanks to @nacimgoura)
- Fixed eslint rules to better match the project
- Fixed Instagram API example view (@nacimgoura)
- Adding additional code editor related files to .gitignore (@nacimgoura)
- Upgraded syntax at various places to use ES6 syntax (Thanks to @nacimgoura)
- Re-added travis-ci.yml (Thanks to @nacimgoura)
- Fixed bug in Steam API when the user had no achievements (Thanks to @nacimgoura)
- Readme and documentation improvements
- Dependency updates
- Added Docker support (Thanks to @gregorysobotka, @praveenweb, @ryanhanwu). The initial integration has also been upgraded to use NodeJS 8 and Mongo 3.6.
- Removed dependency on async in favor of using promises (@fmcarvalho). Note that the promise support will be upgraded in the upcoming releases to remove the use of Bluebird.
- The contact form will no longer ask for the user's name and email address if they have logged-in already
- Adding a confirmation prompt when a user asks for their account to be deleted
- Fixed Steam Oauth and API integration
- Fixed Last.fm API example (@JonLim)
- Fixed Google Map integration example (@whmsysu)
- Fixed Twitter API integration (@shahzeb1)
- Fixed Facebook integration/request scope (@RobTS)
- Removed MONGOLAB_URI env var, use MONGODB_URI instead
- Preserve the query parameters during authentication session returns (@shreedharshetty)
- normalizeEmail options key remove_dots changed to gmail_remove_dots (@amakhnev)
- Fixed Heroku re-deploy issue (@gballet)
- Migrated from Jade to Pug
- Migrated from GitHub npm package to @octokit/rest to address the related deprecation warning. See https://git.io/vNB11
- Dependency update and upgrades
- Updated left over port 3000 to the current default of port of 8080
- Removed bitgo.pug since bitgo has not been supported by hackathon-starter since v4.1.0
- Removed bitgo from api/index view (@JonLim)
- Fixed unsecure external content by switching them to https
- New address for the Live Demo site
- Code formatting, text prompt, and Readme improvements
- Added new theme by Creative Tim (Thanks @conacelelena)
- Added ESLint configuration to package.json
- Added yarn.lock (Thanks @niallobrien)
- Added express-status-monitor (to see it in action:
/status) - Added missing error handling checks (Thanks @dskrepps)
- Server address during the app startup is now clickable (⌘ + LMB) (Thanks @niallobrien)
- Fixed redirect issue in the account page (Thanks @YasharF)
- Fixed
Mongoose.promiseissue (Thanks @starcharles) - Removed "My Friends" from Facebook API example due to Graph API changes
- Removed iOS7 theme
Usermodel unit tests improvements (Thanks @andela-rekemezie)- Switched from github-api to the more popular github NPM module
- Updated Yarn and NPM dependencies
- User model minor code refactoring
- Fixed gravatar display issue on the profile page
- Pretty terminal logs for database connection and app server
- Added compiled main.css to .gitignore
- Converted templates from jade to pug (See Rename from "Jade")
- Updated dependencies
- Improved redirect logic after login #435
- Removed Venmo API (see Venmo Halts New Developer Access To Its API)
- Removed BitGo API due to issues with
secp256k1dependency on Windows
- Renamed
MONGODBtoMONGODB_URIenvironment variable - Set engine
"node": "6.1.0"in package.json
- ECMAScript 2015 support! (Make sure you are using Node.js 6.0+)
- Thanks @vanshady and @prashcr
- Added
<meta theme-color>support for Chrome for Android - Added Yahoo Finance API example
- Updated Aviary API example
- Flash an error message when updating email to that which is already taken
- Removing an email address during profile update is no longer possible
- PayPal API example now uses return_url and cancel_url from
.env - Added client-side
required=trueattributes to input fields - Fixed broken
show()function in the GitHub API example - Fixed YQL query in the Yahoo Weather API example
- Fixed Can't set headers after they are sent error in Stripe API example
- Code refactoring and cleanup
- Updated Travis-CI Node.js version
- Updated NPM dependencies
- Removed Mandrill references
- Added file upload example
- Added Pinterest API example
- Added timestamp support to the User schema
- Fixed
nextparameter being undefined insidegetResethandler - Refactored querysting param usage in api.js controller
- Removed setup.js (generator) due to its limited functionality and a lack of updates
- Added "Obtaining Twilio API Keys" instructions.
- Updated Bootstrap v3.3.6.
- Updated jQuery v2.2.0.
- Updated Font Awesome v4.5.0.
- Removed
debugandoutputStylefrom the Sass middleware options. - Removed
connect-assets(no longer used) from package.json`. - Fixed Font Awesome icon syntax error in profile.jade.
- Fixed Cheerio broken link.
- Use
dontenvpackage for managing API keys and secrets. - Removed secrets.js (replaced by .env.example).
- Added .env to .gitignore.
- Fixed broken Aviary API image.
- Use
connect-mongoES5 fallback for backward-compatibility with Node.js version< 4.0.
- Steam authorization via OpenID.
- Code style update. (No longer use "one-liners" without braces)
- Updated LinkedIn scope from
r_fullprofiletor_basicprofiledue to API changes. - Added LICENSE file.
- Removed Bitcore example due to installation issues on Windows 10.
- Added Google Analytics script.
- Split api.js
requireintro declaration and initialization for better performance. (See #247) - Removed ionicons.
- Removed connect-assets. (Replaced by node-sass-middleware)
- Fixed alignment styling on /login, /profile and /account
- Fixed Stripe API
POSTrequest. - Converted LESS to Sass stylesheets.
- Set
node_jsversion to "stable" in .travis.yml. - Removed
mocha.optsfile, pass options directly to package.json - README cleanup and fixes.
- Updated Font Awesome to 4.4.0
- Added Bitcore example.
- Added Bitgo example.
- Lots of README fixes.
- Fixed Google OAuth profile image url.
- Fixed a bug where
connect-assetsserved all JS assets twice. - Fixed missing
csrftoken in the Twilio API example form. - Removed
multermiddleware. - Removed Ordrx API. (Shutdown)
- Added favicon.
- Fixed an email issue with Google login.
- Renamed
navbar.jadetoheader.jade. - Fixed typos in README. Thanks @josephahn and @rstormsf.
- Fix radio button alignment on small screens in Profile page.
- Increased
bcrypt.genSalt()from 5 to 10. - Updated package dependencies.
- Updated Font Awesome
4.3.0. - Updated Bootstrap
3.3.4. - Removed Ionicons.
- Removed unused
Uservariable in controllers/api.js. - Removed Nodejitsu instructions from README.
- Reverted Sass to LESS stylesheets. See #233.
- Convert email to lower case in Passport's LocalStrategy during login.
- New Lob API.
- Updated Font Awesome to 4.3.0
- Updated Bootstrap and Flatly theme to 3.3.2.
- New Ordr.in API example.
- Brought back PayPal API example.
- Added
xframeand xssProtection` protection via lusca module. - No more CSRF route whitelisting, either enable or dsiable it globally.
- Simplified "remember original destination" middleware.
- Instead of excluding certain routes, you now have to "opt-in" for the routes you wish to remember for a redirect after successful authentication.
- Converted LESS to Sass.
- Updated Bootstrap to 3.3.1 and Font Awesome to 4.2.0.
- Updated jQuery to 2.1.3 and Bootstrap to 3.3.1 JS files.
- Updated Ionicons to 2.0.
- Faster travis-ci builds using
sudo: false. - Fixed YUI url on Yahoo API example.
- Fixed
mongo-connectdeprecation warning. - Code cleanup throughout the project.
- Updated
secrets.jsnotice. - Simplified the generator (
setup.js), no longer removes auth providers. - Added
git remote rm originto Getting Started instructions in README.
- Bootstrap 3.3.0.
- Flatly 3.3.0 theme.
- User model cleanup.
- Removed
helperContextfrom connect-assets middleware.
- Font Awesome 4.2.0 01e7bd5c09926911ca856fe4990e6067d9148694
- Code cleanup in
app.jsandcontrollers/api.js. 8ce48f767c0146062296685cc101acf3d5d224d9 cdbb9d1888a96bbba92d4d14deec99a8acba2618 - Updated Stripe API example. afef373cd57b6a44bf856eb093e8f2801fc2dbe2
- Added 1-step deployment process with Heroku and mLab add-on. c5def7b7b3b98462e9a2e7896dc11aaec1a48b3f
- Updated Twitter apps dashboard url. e378fbbc24e269de69494d326bc20fcb641c0697
- Fixed dead links in the README. 78fac5489c596e8bcef0ab11a96e654335573bb4
- Use https (instead of http) profile image URL with Twitter authentication
- Fixed an issue with connect-assets when running
app.jsfrom an outside folder - Temporarily disabled
setup.json Windows platform until blessed fixes its problems
- Migrated to Nodemailer 1.0
- Bootstrap 3.2
- New default theme
- Ionicons fonts
- Fixed bodyParser deprecation warning
- Minor visual updates
- CSS cleanup via RECESS
- Replaced
navbar-brandimage with a font icon
- Added IBM Codename: BlueMix deployment instructions
- Use Lodash instead of Underscore.js
- Replaced all occurrences of
_.findWherewith_.find - Added a flash message when user deletes an account
- Updated and clarified some comments
- Updated the Remove Auth message in
setup.js - Cleaned up
styles.less - Redesigned API Examples page
- Updated Last.fm API example
- Updated Steam API example
- Updated Instagram API example
- Updated Facebook API example
- Updated jQuery to 2.1.1
- Fixed a bug that didn't remove Instagram Auth properly
- Fixed Foursquare secret token
- Fixed a bug related to
returnTourl (#155)
- Font Awesome 4.1
- Updated icons on some API examples
- Use LESS files for bootstrap-social and font-awesome
- Improved Twilio API example
- Updated dependencies
- Added Compose new Tweet to Twitter API example
- Fixed email service indentation
- Fixed Mailgun and Mandrill secret.js properties
- Renamed
navigation.jadetonavbar.jade
- New and improved generator - setup.js
- Added Yahoo API
- CSS and templates cleanup
- Minor improvement to the default theme
cluster_app.jshas been moved into setup.js
- Added Mandrill e-mail service (via generator)
- LinkedIn API: Fixed an error if a user did not specify education on LinkedIn
- Removed email constraint when linking OAuth accounts in order to be able to merge accounts that use the same email address
- Check if email address is already taken when creating a new local account
- Previously relied on Validation Error 11000, which doesn't always work
- When creating a local account, checks if e-mail address is already taken
- Flash notifications can now be dismissed by clicking on �?
- Added Instagram Authentication
- Added Instagram API example
- Updated Instagram Strategy to use a "fake" email address similar to Twitter Startegy
- Conditional CSRF support using lusca
- Fixed EOL problem in
generator.jsfor Windows users - Fixed outdated csrf token string on profile.jade
- Code cleanup
There are have been over 500+ commits since the initial announcement in January 2014 and over a 120 issues and pull requests from 28 contributors.
- Documentation grew 8x in size since the announcement on Hacker News
- Upgraded to Express 4.0
- Generator for adding/removing authentication providers
- New Instagram authentication that can be added via generator
- Forgot password and password reset for Local authentication
- Added LinkedIn authentication and API example
- Added Stripe API example
- Added Venmo API example
- Added Clockwork SMS example
- Nicer Facebook API example
- Pre-populated secrets.js with API keys (not linked to my personal accounts)
- Grid layout with company logos on API Examples page
- Added tests (Mocha, Chai, Supertest)
- Gravatar pictures in Navbar and Profile page
- Tracks last visited URL before signing in to redirect back to original destination
- CSRF protection
- Gzip compression and static assets caching
- Client-side JavaScript is automatically minified+concatenated in production
- Navbar, flash messages, footer refactored into partial templates
- Support for Node.js clusters
- Support for Mailgun email service
- Support for environment variables in secrets.js
- Switched from less-middleware to connect-assets
- Bug fixes related to multi-authentication login and account linking
- Other small fixes and changes that are too many to list