0.13.2

• Added BitBucket sign-in option.
• withCredentials is now false by default. 8b236c3
• Added commonConfig options back to the Ionic example. 0e921f2
• Removed Satellizer Warning string from console warnings. 6dec00d
• PHP: Swapped '||' in php assignments with ternary operator. f1ab7c3
• Ruby: Added bin folder to start a rails server. 03aaa8b

Other

• README updates, typo corrections, FAQ additions.

0.13.1

🪲 Bug Fixes

• Error from a popup query string is now correctly bubbled up in the promise chain via $q.reject. For example when user presses Cancel button, access_denied error is usually returned, instead of an authorization code. 1e60c8d
• Added missing "type" field to the Instagram config. d8594c1

🌟 New Features

• httpInterceptor can now be a function, as well as a boolean. See PR #631.
• Skip exchangeForToken server API call and setToken method when OAuth provider url is null, instead of /auth/facebook, as an example. This is for a scenario when someone wishes to opt out from Satellizer's magic by doing authorization code exchange and saving a token to Local Storage manually. See the following issue for feature request #548.

🔨 Refactoring

• Node.js: Handle error during user.save(). 071975d

📖 Other

• Added FAQ section to README.
• Moved Auth Flow guide from Wiki to README.

0.13.0

🪲 Bug Fixes

• Fixed Google Chrome (iOS) bug. 17a8e0e
• Fixed a mobile bug where popup is not getting closed after successful authorization. #584
• No longer throws an error "Expecting a token named...". 41b25f5
• Fixed JavaScript exceptions when a token that looks like JWT (with 3 parts) is not a valid JWT, i.e. it shouldn't try to JSON.parse it. 66beb2d
• Added try/catch around getPayload to handle invalid JWT. d5993f2
• Java: Bug fixes for issues 573 and 574. #575

🌟 New Features

• CommonJS support. be482f1
• Allow URL override for Login, Signup and Unlink. 529b6af
• Updated Facebook authorization endpoint to Graph API 2.5 (it should still be compatible with previous versions). 720efee
• Store token in memory if Local Storage is not available (Safari Private Window). 9f08606
• Use Angular's $log instead of console.log for easier mocking and debugging. #616
• Node: Support for Facebook Graph API 2.5 by passing permission fields explicitly. 99f562d

🔨 Refactoring

• Ionic-specific popup options are now in Satellizer, however, you can still override these options. f2f3c0b
• Removed duplicate window.location.origin code. db31d94
• Set Bower Angular.js dependency as >=1.3 instead of ^1.3. Whenever Angular 2.0 comes out eventually, I will update this line again. 14846af
• Test coverage, although Code Climate seems to be tracking Branches coverage (70%+) instead of Statements coverage (90%+).
• Added auto-login after signup to the AngularJS example code. 4ce780d
• Removed redundant ternary operator on joinUrl() function. bdd86e9
• Ruby: Added missing auth methods. 466ef92
• PHP: Commented out CSRF middleware. #584
• Python: Don't use hard-coded client-side path. 437e1db
• Python: Updated Twitter auth. decf1af

📖 Other

• Added Windows instructions for PHP Example's Getting Started section. 47bc4af

0.12.5

🪲 Bug Fixes

• Global string replace in base64Url.replace(/-/g, '+').replace(/_/g, '/'). #551

🌟 New Features

• Added Instagram auth. 63aa73f
• Node: Instagram example. cd48792
• PHP: Instagram example. 866bc69

0.12.4

🪲 Bug Fixes

• Added the missing options param to $auth.signup(). df8621a
• Fixed response is not defined error in ProfileCtrl. 8483388

📖 Other

• Updated README.

0.12.3

🪲 Bug Fixes

• Fixes an issue with state param was not set before buildQueryString function call, i.e. state was not working properly. 296a23c
• Remove token from Local Storage when token expires. 1dbdcb1
• Fixed updateProfile promise for catching errors. c3731c8

🌟 New Features

• Added Sign in with Twitch (Node.js only for now). 703dd4e 0b059a2

0.12.2

• No longer uses angular.merge that was introduced in AngularJS 1.4. You can continue to use Satellizer with AngularJS <= 1.3.x.

0.12.1

🪲 Bug Fixes

• Removed hard-coded userData assignment in the Oauth2.exchangeForToken method. 53c84c1

0.12.0

💥 Breaking Changes

• Both $auth.login() and $auth.signup() no longer accept redirect parameter and loginOnSignup config property is gone as well. afa5fca
• Removed loginRoute, signupRoute, loginRedirect, logoutRedirect, signupRedirect config options, you should handle that logic at the application level (1e565f0, f8552ef), for example:

    $auth.login($scope.user)
      .then(function() {
          $location.path('/');  // redirect to home page
      })
      .catch(function(response) {
          toastr.error('Login Error');
      });

• $auth.unlink(provider, options) now uses POST method by default, also removed unlinkMethod config property because you can customize that yourself by overriding HTTP config object using the second options parameter.
• Config options platform: "mobile" and platform: "browser" are now referred as cordova: true and cordova: false to avoid confusion with mobile web and hybrid apps like Ionic Framework that use Apache Cordova InAppBrowser.

🌟 New Features

• - Both $auth.login() and $auth.signup() now accept user and options parameters, where options is a HTTP config object (see https://docs.angularjs.org/api/ng/service/$http), giving you full control of the HTTP request. afa5fca
• The change above allows for setting custom Content-Type, cache, timeout, withCredentials, Headers, paramSerializer, etc. for login/signup requests.
• tokenRoot can now be nested inside objects, that means you can send JWT token from your server nested in some other objects - { foo: { bar: { token: "" } } }. ddf9aba
• Customizable response parameters code, clientId, and redirectUri, allowing you to override its naming convention and them as code, client_id, redirect_uri or something else depending on your use case and back-end requirements. #346

🪲 Bug Fixes

• Fixed Safari Private Window localStorage error QUOTA_EXCEEDED_ERR: DOM Exception 22 issue when LocalStorage is disabled or unavailable in Safari. #457
• Fixed Signup/Login issue with Google Chrome on iOS. #467

📍 Other

• Increased popup polling time to 50ms. d08f240
• Added comment to try/catch, explaining why catch statement is empty. 2b2bd91
• Promise is no longer rejected when closing a popup, if popup is blocked or user cancels authorization. 91fd524 cda52aa
• Removed ng-pattern from email field on the signup page. 5042ca6
• Node.js: Handle Google auth error error, when profile info not available. aaddeef
• Updated service naming convention to SatellizerServiceName. 664b9ad
• Removed AngularStrap and added angular-toastr notifications module. e6ea52b
• Signup and Login templates cleanup. aae97fd
• Added 2 resolve functions loginRequired and skipIfLoggedIn to the client demo, that way a user won't see signup and login pages if that user is already signed-in. #478

0.11.3

• Pass redirectUri for Twitter auth from the client.
• Fixed Twitter auth on mobile devies. (Cordova InAppBrowser)
• Removed redundant version number from bower.json.
• Node: Added cors package for easier CORS integration out of the box.
• Python: Fixed the token expiry time in create_token function.
• Ionic: Added Twitter authentication.
• PHP: Fixed CORS support in the PHP example.