1.11.0 (2023-12-19)
Changed
- [SDK-4670] Improved state handling errors #140 (jimmyjames)
Security
- Update dependencies for CVE-2023-3635 #137 (jimmyjames)
1.10.0 (2023-07-18)
** Added**
- Support using organization name #132 (jimmyjames)
1.9.5 (2023-03-11)
Added
- Support Pushed Authorization Requests #128 (jimmyjames)
- Support configurable cookie path #129 (jimmyjames)
1.9.4 (2023-01-11)
This patch release does not contain any functional changes, but is being released using an updated signing key for verification as part of our commitment to best security practices. Please review the README note for additional details.
Security
- Update dependencies #124 (jimmyjames)
1.9.3 (2022-10-26)
Changed
- Update to Gradle 6.9.2 and bump OSS plugin version #113 (jimmyjames)
Security
- Update dependencies #119 (jimmyjames)
1.9.2 (2022-04-11)
Security
- Update auth0-java dependency #107 (jimmyjames)
- Update OkHttp version #106 (lbalmaceda)
1.9.1 (2022-03-30)
Security
1.9.0 (2022-03-14)
Changed
- Update auth0 dependencies and address CVE-2020-36518 #102 (jimmyjames)
Security
- Update auth0 dependencies and address CVE-2020-36518 #102 (jimmyjames)
1.8.2 (2022-01-19)
Security
1.8.1 (2022-01-17)
Security
1.8.0 (2021-07-06)
Changed
- Update Auth0 libraries to latest #89 (lbalmaceda)
- Update OSS release plugin version #88 (lbalmaceda)
1.7.0 (2021-05-27)
Added
- [SDK-2565] Enable network client configuration #86 (jimmyjames)
1.6.0 (2021-03-26)
Added
- Add support for Organizations feature #81 (jimmyjames)
Changed
- Request processor refactor to builder #80 (jimmyjames)
1.5.0 (2021-02-09)
Changed
- Update dependency versions #74 (jimmyjames)
1.4.0 (2020-11-16)
Added
- Target Java 8 #68 (jimmyjames)
1.3.0 (2020-07-02)
Added
- Allow cookies to always have the Secure attribute if configured #59 (jimmyjames)
Changed
- Update dependencies #60 (jimmyjames)
1.2.0 (2020-01-10)
Added
- Add SameSite Support #49 (jimmyjames)
Deprecated
- Deprecate request-only methods #50 (jimmyjames)
Removed
- Remove check that IAT claim must be in the future #52 (jimmyjames)
1.1.0 (2019-10-29)
Security
- Improved OIDC compliance #43 (lbalmaceda)
1.0.11 (2019-09-26)
Security
- Update dependencies to address CVE #41 (jimmyjames)
1.0.10 (2019-08-15)
Security
- Update to latest Auth0 dependencies #39 (jimmyjames)
1.0.9 (2019-07-03)
Security
- Update to latest auth0-java #35 (jimmyjames)
1.0.8 (2019-06-04)
Fixed
- Rollback to fixed dependencies versions #33 (lbalmaceda)
1.0.7 (2019-05-23)
Security
- Update dependencies #31 (lbalmaceda)
1.0.6 (2019-05-02)
Fixed
- Allow telemetry to dynamically obtain the package version #28 (lbalmaceda)
1.0.5 (2019-04-17)
Changed
- Bump dependencies #26 (lbalmaceda)
1.0.4 (2019-03-11)
Fixed
- Revert auth0 dependencies scope to api (compile) #24 (lbalmaceda)
1.0.3 (2019-01-03)
Security
- Bump Auth0 dependencies to fix security issue #20 (lbalmaceda)
1.0.2 (2018-10-24)
Security
- Update dependencies #16 (lbalmaceda)
1.0.1 (2018-06-13)
Security
- Use latest auth0-java, java-jwt and jwks-rsa libraries #11 (lbalmaceda)
1.0.0 (2017-05-24)
Reworked the library to support both Code Grant and Implicit Grant authentication flows by using the latest Auth0-Java SDK.
The changes from v0 includes:
- Simpler setup and configuration
- Use of Auth0 Hosted Login page and OAuth 2.0 endpoints for Authentication
- Support Code Grant and Implicit Grant flows.
- Support Public Key Rotation when verifying Token signatures (Implicit Grant)