v0.7.10 (2016-08-31)
Fixed bugs:
- restrictToOwner should not throw an error on mass deletions #175
Closed issues:
- Duplicate Email should be rejected by Default #281
- Auth0 & featherjs authorization only #277
- Cannot read property 'scope' of undefined #273
- Socker.js | Custom successHandler #271
- Use feathers-socketio? and rest&socket share session maybe? #269
- Ability to invalidate old token/session when user login with another machine. #267
- 0.8 authentication before hooks - only ever getting a 401 Unauthorised #263
- REST Middleware breaks local auth #262
- 0.8: Token Service errors on token auth using client #254
- 0.8: Cookies, turning off feathers-session cookie also turns off feathers-jwt cookie. #253
- Any example of how to do refresh token? #248
- Custom Authentication Hooks #236
- Is there an Authenticated Event #235
- Error while using /auth/local #233
- Providing token to feathers.authentication doesn't work #230
- bundled hooks customize errors #215
- Hooks should support a callback for conditionally running #210
- restrictToRoles hook: More complex determination of "owner". #205
- verifyToken hook option to error #200
- Allow using restrictToOwner as an after hook #123
Merged pull requests:
- Manually supply an endpoint to the Client authenticate() method #278 (mcnamee)
- Update mocha to version 3.0.0 🚀 #257 (greenkeeperio-bot)
- Don’t mix options when signing tokens #255 (marshallswain)
- Attempt to get token right away. #252 (marshallswain)
- Update async to version 2.0.0 🚀 #240 (greenkeeperio-bot)
- Creates better way or returning data in a familiar format #234 (codingfriend1)
- Throws an error if restriction methods are used outside of a find or get hook #232 (codingfriend1)
- RestrictToOwner now takes an array #231 (sscaff1)
- Adds ability to limit queries unless authenticated and authorized #229 (codingfriend1)
v0.7.9 (2016-06-20)
Fixed bugs:
- Calling logout should revoke/blacklist a JWT #133
Closed issues:
- Query email rather than oauth provider id on /auth/<provider> #223
- Cannot read property 'service' of undefined #222
Merged pull requests:
- added support for hashing passwords when hook.data is an array #225 (eblin)
- jwt ssl warning #214 (aboutlo)
v0.7.8 (2016-06-09)
Closed issues:
- Feathers-authentication assumptions #220
- Server-side header option does not accept capital letters #218
- How to figure out why redirect to /auth/failure? #217
- Getting token via REST is not documented #216
- How to use Feathers Client to Authenticate Facebook/Instagram credentials #204
- Remove token from localstorage #203
- Check user password #193
- app.authenticate(): Warning: a promise was rejected with a non-error: [object Object] #191
- Authentication provider for Facebook Account Kit #189
Merged pull requests:
- Lowercase custom header #219 (mmwtsn)
- mocha@2.5.0 breaks build 🚨 #212 (greenkeeperio-bot)
- Small refactoring to simplify structure and remove code duplication #209 (daffl)
- Use removeItem in the storage on logout #208 (daffl)
- Misspelled in a comment #201 (tryy3)
- Update babel-plugin-add-module-exports to version 0.2.0 🚀 #199 (greenkeeperio-bot)
v0.7.7 (2016-05-05)
Fixed bugs:
- OAuth2 authentication callback failing due to missing property #196
Merged pull requests:
v0.7.6 (2016-05-03)
Fixed bugs:
- Facebook Authentication should do a patch not an update. #174
Closed issues:
- Authenticated user #192
- REST token revoke #185
- TypeError: Cannot read property 'service' of undefined #173
- Optionally Include password in the params.query object passed to User.find() #171
- Pass more to local authentication params #165
- Support custom authentication strategies #157
Merged pull requests:
- Allow manipulation of params before checking credentials #186 (saiichihashimoto)
- Update feathers to version 2.0.1 🚀 #184 (greenkeeperio-bot)
- fix(oauth2): Use patch to update user in oauthCallback #183 (beevelop)
v0.7.5 (2016-04-23)
Fixed bugs:
- restrictToOwner and restrictToRoles have invalid type checking #172
Closed issues:
- user fails to signup with facebook if there is also local auth #168
- Unable to authenticate requests when using vanilla Socket.IO #166
v0.7.4 (2016-04-18)
Fixed bugs:
- restrictToOwner and restrictToRoles hooks don't work with nested models #163
- Change restrictToOwner error when a request does not contain ID #160
Closed issues:
Merged pull requests:
v0.7.3 (2016-04-16)
v0.7.2 (2016-04-16)
Closed issues:
- Auth doesn't work with non default local.userEndpoint #159
- Automatically add the hashPassword hook to local.userEndpoint #158
- Client authentication() storage option not documented #155
- restrictToRoles availability inconsistency #153
- Does not populate user for other services #150
Merged pull requests:
- Steal Compatibility #156 (marshallswain)
v0.7.1 (2016-04-08)
Closed issues:
- Documentation discrepancies #148
- bcrypt is hardcoded #146
- Update Docs, Guides, Examples for v0.7 #129
- populateUser: allow option to populate without db call. #92
Merged pull requests:
- Update feathers-memory to version 0.7.0 🚀 #149 (greenkeeperio-bot)
- fix a typo #147 (chrjean)
- Fix copy paste typo in queryWithCurrentUser hook. #140 (juodumas)
v0.7.0 (2016-03-30)
Fixed bugs:
- logout should de-authenticate a socket #136
- [Security] JsonWebToken Lifecycle Concerns; Set HttpOnly = true in JWT cookie #132
- restrictToRoles hook needs to throw an error and not scope the query #128
- restrictToOwner hook needs to throw an error and not scope the query #127
- [security] Generated tokens are broadcast to all socket clients (by default) #126
- [oAuth] User profile should be updated every time they are authenticated #124
- Logout should clear the cookie #122
- Want the default success/fail routes, not the sendFile #121
Closed issues:
- Make all hooks optional if used internally #138
- Throw errors for deprecated hooks and update documentation #134
- v6.0.0: How can I return the user object along with the token ? #131
- user field not getting populated #119
- Move to bcryptjs #112
- Bundled hooks should pull from auth config to avoid having to pass duplicate props. #93
- Customize the JWT payload #78
- Needs a test for verifying that a custom tokenEndpoint works. #59
- Finish test coverage for existing features. #9
Merged pull requests:
v0.6.0 (2016-03-24)
Fixed bugs:
- Token encoding is not using the idField option. #107
- Logging out breaks in React Native #105
- Updating User Attached to Params in Client #102
- local auth should not redirect by default #89
Closed issues:
- Id of user can't be 0 for auth #116
- how to authenticate user in the socket.io? #111
- Wrong Status Error #110
- TypeError: Cannot read property 'service' of undefined (continued) #108
idFieldbreaks fromtokenService.create\(\)topopulateUser\(\)after hook #103
Merged pull requests:
- Bcryptjs #137 (ekryski)
- Allow user.id to be 0. Fixes #116 #117 (marshallswain)
- client should return a 401 error code when no token is provided #115 (ccummings)
- v0.6 - Bugs fixes, new hooks, and hook tests #109 (ekryski)
- primus client connect event is 'open' #106 (ahdinosaur)
v0.5.1 (2016-03-15)
v0.5.0 (2016-03-14)
Fixed bugs:
- Client should store token string and not the token object #95
Closed issues:
- using feathers-rest/client with feathers-authentication/client #94
- populateUser can pull defaults from config, if available. #91
- App level auth routes for multiple sub-routes #90
- POST to /auth/local never gets response #88
- populate-user.js do not get settings #86
- Add rate limiting #81
Merged pull requests:
- Finalizing client side authentication module #101 (daffl)
- Ten hours is only 36 seconds #99 (mileswilson)
- Fix examples #98 (mastertinner)
- fix html in templates #97 (mastertinner)
- update populateUser() hook #87 (kulakowka)
- Customize the JWT payload #80 (enten)
v0.4.1 (2016-02-28)
Fixed bugs:
- app.logout() fails #85
Closed issues:
- Username response ? #84
- User doesn't get populated after authentication with databases that don't use _id #71
- Support client usage in NodeJS #52
- Support async storage for React Native #51
- RequireAdmin on userService #36
- Create test for changing the
usernameField#1
v0.4.0 (2016-02-27)
Closed issues:
- Authentication not worked with hooks.remove('password') #82
Merged pull requests:
v0.3.5 (2016-02-25)
Merged pull requests:
v0.3.4 (2016-02-25)
v0.3.3 (2016-02-25)
v0.3.2 (2016-02-24)
Merged pull requests:
v0.3.1 (2016-02-23)
Closed issues:
- Fix toLowerCase hook #74
- REST auth/local not working if socketio() not set #72
- Support mobile authentication via OAuth2 #46
Merged pull requests:
v0.3.0 (2016-02-19)
Fixed bugs:
- Don't register successRedirect route if custom one is passed in #61
Closed issues:
- Specify the secret in one place instead of two #69
- support a failRedirect #62
- Document authentication updates #50
Merged pull requests:
v0.2.4 (2016-02-17)
Closed issues:
- Find "query" is replaced by token #64
Merged pull requests:
v0.2.3 (2016-02-15)
Closed issues:
- How to forbid get and find on the userEndpoint? #66
- userEndpoint problem in sub-app #63
- How to modify successRedirect in local authentication? #60
Merged pull requests:
- Removing assigning token to params.query for sockets. #67 (ekryski)
- Fixing client query #65 (fastlorenzo)
v0.2.2 (2016-02-13)
Closed issues:
- Custom tokenEndpoint failing #57
- TypeError: Cannot read property 'service' of undefined #56
- Login returns 500: Internal server error #54
Merged pull requests:
- Fixing token endpoint #58 (marshallswain)
v0.2.1 (2016-02-12)
Closed issues:
- Custom local options not being respected. #55
- node can not require("feathers-authentication").default #53
v0.2.0 (2016-02-12)
Closed issues:
- Support graceful fallback to cookies #45
- Add a client side component for authentication #44
- Support OAuth2 #43
- Support token based authentication #41
- Support local authentication #40
- Only sign the JWT with user id. Not the whole user object #38
- Discussion: Securing token for socket.io auth #33
- Handling expired tokens #25
- Support multiple auth providers #6
Merged pull requests:
- Decoupling #49 (ekryski)
- Adding an auth client #48 (ekryski)
- Validate if provider #39 (mastertinner)
v0.1.2 (2016-02-04)
Closed issues:
- Hooks should support incoming data as arrays of objects. #34
- Support authenticating with Username and Password via sockets #32
Merged pull requests:
- Check for params.provider in requireAuth hook #37 (marshallswain)
- safety check for data #35 (deanmcpherson)
v0.1.1 (2016-01-30)
v0.1.0 (2016-01-25)
Closed issues:
- Get the Travis build to work. #27
- Login not working #24
- Hooks should be configurable (they should be functions) #11
- Document the bundled hooks. #10
Merged pull requests:
- Migrate docs to book #31 (marshallswain)
- hashPassword: Async bcrypt usage needs a promise #30 (marshallswain)
- Removing extras from travis.yml #29 (marshallswain)
- Fixing build #28 (marshallswain)
- Adding nsp check #26 (marshallswain)
v0.0.8 (2016-01-16)
Merged pull requests:
- Support services that use pagination. #23 (marshallswain)
v0.0.7 (2016-01-07)
Closed issues:
- Password isn't removed from responses when using a mongoose service for users endpoint #19
- next called twice using socket.io and using an unauthenticated service #17
- Switch to a callback-based field configuration? #15
- Cannot authenticate #14
- Allow require without
.default#13 - Login validation #2
Merged pull requests:
- Adding separate route for refreshing a login token. #21 (corymsmith)
- Converting user model to object when using mongoose service #20 (corymsmith)
- Fixing issue where next is called twice when hitting an unauthenticated service via socket.io #18 (corymsmith)
- Fixing usage of mongoose service #16 (corymsmith)
v0.0.6 (2015-11-22)
Closed issues:
v0.0.5 (2015-11-19)
v0.0.4 (2015-11-19)
v0.0.3 (2015-11-18)
Merged pull requests:
- allow runtime auth via socket.io #4 (randomnerd)
v1.0.6 (2015-11-02)
v1.0.5 (2015-11-02)
v1.0.4 (2015-11-02)
v1.0.3 (2015-10-12)
v1.0.2 (2015-10-08)
v1.0.1 (2015-10-08)
* This Change Log was automatically generated by github_changelog_generator