1.2.0-beta.1

@marcoow marcoow released this Dec 7, 2016 · 18 commits to master since this release

  • Ember Simple Auth now supports FastBoot out-of-the-box (when using the cookie session store), see #1035.
  • Ember CLI's new rootURL setting is now used correctly, see #1070.
  • The cookie session store will now rewrite its cookies when any of its configurable properties (like cookie name) change, see #1056.
  • The DataAdapterMixin now also overrides the headersForRequest method which makes it behave correctly with Ember Data 1.7 and above, see #1033.
  • Configurable routes like the login route etc. are now configured via overriding properties of the respective route mixins instead of settings in config/environment.js, see #985.
  • The OAuth 2.0 Passwort Grant authenticator now allows to define custom headers to be sent with authentication requests, see #1018.
  • Authenticators can now reject with the server response when requests fail, see #1012.
  • Server responses are now validated before authenticators resolve authentication, see #957.
  • The offset that the OAuth 2.0 Password Grant authenticator uses when refreshing access tokens is now defined in an (overridable) property, see #840.
  • The default cookie names that the cookie session store uses are now compliant with RFC 2616, see #978.

Downloads

1.1.0

@marcoow marcoow released this May 11, 2016 · 50 commits to master since this release

There were no changes between 1.1.0-beta.5 and 1.1.0.

All changes since 1.0.1 are:

  • Session Stores are now asynchronous. Synchronous session stores will still work but are now deprecated and will be removed in Ember Simple Auth 2.0, see #714, #717.
  • Ember Simple auth now comes with blueprints for creating authenticators and authorizers, see #879.
  • The requests that the devise authenticator makes can now be customized with additional options, see #886.
  • The default for (Ember Simple Auth's internal) baseURL property is now '', see #881.
  • browserify is now only enabled for Ember Simple Auth's own tests, fixing potential problems in apps, see #833.
  • When the authenticator fails to restore the session with an error, that error will now be logged, see #829.
  • When invalidating a torii session, the session data will now be passed to the torii provider, see #808.
  • ember-getowner-polyfill is now include in Ember Simple Auth's dependencies so that applications don't have to install it explicitly, see #806.
  • Ember Simple Auth will no longer trigger a deprecation regarding use of the container property, see #894, #804, #796.
  • The DataAdapterMixin will now only invalidate the session on 401 responses when it is actually currently authenticated, see #722.
  • The silent-error package was added as a dependency (previously it was only a dev dependency), fixing a bug that occurred when running the new generators, see #911.
  • The API docs for token expiration and refresh were improved, see #921.
  • Lots of Ember Simple Auth's internal where cleaned up to take more advantage of Babel in order to make the code more concise and easier to maintain, see #905.
  • The ember-cli-is-package-missing package was added as a dependency (previously it was only a dev dependency), fixing a bug that occurred when running the new generators, see #913.
  • A regression in the cookie store was fixed causing a transition to the routeAfterAuthentication after session restoration, see #915.
  • The code base now consistently overrides the init method instead of relying on on('init', … which results in easier to understand and maintain code, see #917.
  • A critical bug in the cookie store causing an immediate logout after logging in has been fixed, see #931.
  • A deprecation in Ember.js 2.5.0 was fixed, see #941.
  • The versions of Ember CLI used to build and develop the addon itself have been updated to the latest release versions, see #936.
  • The README, API docs and contribution guidelines have been improved, see #954, #947.
  • The session will now ignore session store events when it is currently authenticating or restoring, see #965.

Downloads

1.1.0-beta.5

@marcoow marcoow released this May 3, 2016 · 51 commits to master since this release

  • The session will now ignore session store events when it is currently authenticating or restoring, see #965.

Downloads

1.1.0-beta.4

@marcoow marcoow released this Apr 8, 2016 · 55 commits to master since this release

  • A critical bug in the cookie store causing an immediate logout after logging in has been fixed, see #931.
  • A deprecation in Ember.js 2.5.0 was fixed, see #941.
  • The versions of Ember CLI used to build and develop the addon itself have been updated to the latest release versions, see #936.
  • The README, API docs and contribution guidelines have been improved, see #954, #947.

Downloads

1.1.0-beta.3

@marcoow marcoow released this Mar 1, 2016 · 71 commits to master since this release

  • The ember-cli-is-package-missing package was added as a dependency (previously it was only a dev dependency), fixing a bug that occurred when running the new generators, see #913.
  • A regression in the cookie store was fixed causing a transition to the routeAfterAuthentication after session restoration, see #915.
  • The code base now consistently overrides the init method instead of relying on on('init', … which results in easier to understand and maintain code, see #917.

Downloads

1.1.0-beta.2

@marcoow marcoow released this Feb 25, 2016 · 78 commits to master since this release

  • The silent-error package was added as a dependency (previously it was only a dev dependency), fixing a bug that occurred when running the new generators, see #911.
  • The API docs for token expiration and refresh were improved, see #921.
  • Lots of Ember Simple Auth's internal where cleaned up to take more advantage of Babel in order to make the code more concise and easier to maintain, see #905.

Downloads

1.1.0-beta.1

@marcoow marcoow released this Feb 12, 2016 · 87 commits to master since this release

  • Session Stores are now asynchronous. Synchronous session stores will still work but are now deprecated and will be removed in Ember Simple Auth 2.0, see #714, #717.
  • Ember Simple auth now comes with blueprints for creating authenticators and authorizers, see #879.
  • The requests that the devise authenticator makes can now be customized with additional options, see #886.
  • The default for (Ember Simple Auth's internal) baseURL property is now '', see #881.
  • browserify is now only enabled for Ember Simple Auth's own tests, fixing potential problems in apps, see #833.
  • When the authenticator fails to restore the session with an error, that error will now be logged, see #829.
  • When invalidating a torii session, the session data will now be passed to the torii provider, see #808.
  • ember-getowner-polyfill is now include in Ember Simple Auth's dependencies so that applications don't have to install it explicitly, see #806.
  • Ember Simple Auth will no longer trigger a deprecation regarding use of the container property, see #894, #804, #796.
  • The DataAdapterMixin will now only invalidate the session on 401 responses when it is actually currently authenticated, see #722.

Downloads

1.0.1

@marcoow marcoow released this Oct 21, 2015 · 172 commits to master since this release

  • A bug in the mechanism that forwards events from the internal session through the session service was fixed, see #736, #730.
  • The documentation and assertions for the torii authenticator was fixed, see #734, #735.
  • A typo in the documentation was fixed, see #738.

Downloads

1.0.0

@marcoow marcoow released this Oct 16, 2015 · 198 commits to master since this release

Ember Simple Auth 1.0.0 changes a lot of external API, a large part of these changes being breaking changes (see #602 for reference). Because of that this changelog entry does not mark these breaking changes individually but merely offers an overview of what has changed.

  • Ember Simple Auth is now compatible with all Ember version starting with 1.12.0.
  • Ember Simple Auth is only available as an Ember CLI Addon - the globalized and bower distributions are no longer maintained.
  • The session is no longer injected into routes and controllers but instead exposed as a service. The service has most of the methods that the session had before. The session can also no longer be extended. Instead either extend the session service or add another service that uses the session service to provide additional functionality.
  • Auto-authorization of all AJAX request has been dropped. All authorization now has to be initiated explicitly via the session service's authorize method. There is the new DataAdapterMixin that can be used to simply authorize all Ember Data requests.
  • All authenticators and authorizers the application uses now have to be defined in app/authenticators and app/authorizers respectively while in most cases they will simply inherit one of the predefined authenticators/ authorizers. Also configuration of authenticators and authorizers is no longer done via config/environment.js but instead by overriding properties in the extended authenticators/authorizers.
  • The ApplicationRouteMixin now maps the session events to the sessionAuthenticated and sessionInvalidated methods instead of the actions from previous versions.
  • The default session store is now the adaptive store that will use localStorage if available and a cookie otherwise. When testing, Ember Simple Auth will always use the ephemeral store.
  • The test helpers now take the application instance as the first argument and must be imported explicitly in the respective test.
  • The session is now restored in the application route's beforeModel method instead of in an initializer.

Downloads