Support:
- upgrade
jwtto 2.8 in dependencies - upgrade development dependencies
Support:
- switched the positions of #should_check_csrf? and @_csrf_check in the code logic for the sake of minor perf improvement.
Features:
- payload can be accessed without auth - it's going to be resolved into an empty hash.
Bugfixes:
- fix bug with flushing empty refresh tokens (Unsupported command argument type: NilClass (TypeError))
Features:
- rename
encryption_key=tosigning_key=(keep the alias for backward compatibility)
Support:
- fix bug with expire/expireat
Features:
- replace
rediswithredis-client - add
pool_sizesetting to support concurrency withinredis-client's connection pool
Support:
- upgrade
jwtto 2.6 in dependencies
Support:
- compatibility with redis 5.0
Support:
- compatibility with jwt 2.5
- add rspec to development deps
Bugfixes:
- 2.7.1 version didn't include the correct patch
Bugfixes:
- Correctly init namespaced refresh tokens when fetching all tokens from Redis
Features:
- added redis_client setting to JWTSessions::StoreAdapters::RedisStoreAdapter
Features:
- added support for all Redis settings
Support:
- updated jwt to '>= 2.2.3'
- switched to redis scan when looking for keys
- removed extra gems from gemspec deps
- updated gems in dummy apps
Bugfixes:
- fixed
Using the last argument as keyword parameters is deprecated;warnings
Features:
- added changelog
Bugfixes:
- fixed double exp key in payload
Support:
- moved decode error text to a constant within token class
Features:
- added new error class
JWTSessions::Errors::Expired
Bugfixes:
- fixed lookup for refresh token for namespaced sessions
Support:
- updated sqlite to ~> 1.4 in
dummy_api - added 2.6.3 Ruby to CI