0.14.1

• Fix redirecting to login in browsers 8e46731

v0.14.0...v0.14.1

0.14.0

Breaking changes ⚠️

What you need to do depends on whether you are also migrating to the New Experience login flow.

If you will be using New Experience:

• Where you had screen=signUp previously, change it to screen=signup

If you will be using Classic Experience:

• Where you had config.extraParams.screen previously, change it to config.extraParams.screen_hint

Highlights 🔍

• Update documentation based on the New Experience 183dd8e
• Support login_hint and screen_hint params c30cd25
• Update from @hapi/joi to joi e7816a7

All changes 📚

v0.13.0...v0.14.0

0.13.0

Highlights 🔍

• Improve cookie security with __Host- prefix ada094e

For details on the __Host- prefix, see: https://scotthelme.co.uk/tough-cookies/#cookieprefixes

Note: Upgrading to this version will cause all sessions to be reset, as the cookie name has changed.

All changes 📚

v0.12.0...v0.13.0

0.12.0

Highlights 🔍

• Use SameSite=Lax for session cookie e6476f1

This undoes the changes in the 0.11 release, as Strict mode causes the session cookie to not be sent even when a link is clicked to visit the site from another domain, which is generally not the desired behavior.

All changes 📚

v0.11.2...v0.12.0

0.11.2

This release reverts a mistake in 0.11.1. There are no substantive changes since 0.11.0.

0.11.1

Disregard this release, it was reverted. Use the 0.12 release instead.

0.11.0

Highlights 🔍

• Use SameSite=Strict for session cookie 0b2bee9

All changes 📚

v0.10.0...v0.11.0

0.10.0

Highlights 🔍

• Update to hapi 19 and Node 12 5dce7a9
• Update usage example in README 6075003

All changes 📚

v0.9.2...v0.10.0

0.9.2

• Work around hapijs/bell#445 6da1223

v0.9.1...v0.9.2

0.9.1

• Fix hapi peer dependency specification 8c6a2e4

v0.9.0...v0.9.1