All notable changes to this project will be documented in this file.
- Added realm roles (props: @serumk)
- Update KeycloakUser to Laravel 11 (props: @a-andrianova-variti)
- Added another scopes to config (props: @Murielle666)
- Added Authenticated/Logout events (props: @neemiasjr)
- Removing deprecation warnings/future errors (props: @jesperbeisner)
- Update KeycloakWebUserProvider to Laravel 11 (props: @hydrokat)
- Fix #79 (looping on KeycloakCan error). (props: @andrex47)
- Support to Keycloak >= 18. (props: @serumk)
- Support to Laravel 9.0. (props: @alvarofelipems)
- Allow access list roles in the Guard. (props: @socieboy)
- A typo in docs. (props: @atyakresna)
- Support to Guzzle 7.
- Fixed a problem in the expired check. (props: @gorkagv)
- Support to Laravel 8.0. (props: @matthewhall-ca)
- Support to Laravel Gate.
- Implementing more auth checks. (props for code review: @cyrillbolliger)
- Support to Laravel Gate.
- Implementing state check on authorization flow. (props for code review: @cyrillbolliger)
Cyrill Bolliger alerted us today we were not using 'state' param on authentication request. He did a responsible disclosure to sending a e-mail and we are very grateful (I hope pay him a beer/coffee someday).
- ClientID as method to allow override
- OpenID configuration refactored.
We'll request only if necessary. It's a breaking change if you extend Services/KeycloakService.php.
Props: @matthewhall-ca
(We start CHANGELOG on 2.0.0)
- Configurations
- Auth based on Laravel
- Check of a role from Keycloak user profile
- Middleware for route access based on role
- Guzzle client options
It's alive!