CHANGELOG.md

Changelog

v3.1.0 (November 22nd, 2017)

Auth0.js and Lock are now installed via NPM/Yarn

• Auth0 dependencies are now installed via NPM/Yarn. No Bower Required™.
• It is now safe to remove the auth0-js, auth0-lock, and auth0-lock-passwordless dependencies from bower.json.

Pull Requests

• #69 Added 'socialOrMagiclink' support by Robert Schaefer
• #71 Upgrade Ember dependencies to v2.13 by Chris Watts
• #68 Install Auth0 dependencies via NPM/Yarn by Xaser Acheron
• #81 Fixed incompatible engine error on yarn install by Robert Schaefer
• #87 Use Headless Chrome for tests by Xaser Acheron

v3.0.1 (March 12th, 2017)

Added Deprecations

• By default this addon would pass in the following block into the auth0 lock constructor. However, in 4.0.0 it will no longer do this, you will have to pass in the options yourself.

The default options were as follows:

let defaultOptions = {
  autoclose: true,
  auth: {
    redirect: false,
    params: {
      scope: 'openid'
    },
  }
};

Now you will have to pass them in manually if you want the same behavior:

let lockOptions = {
  autoclose: true,
  auth: {
    redirect: false,
    params: {
      scope: 'openid'
    },
  }
};

get(this, 'session').authenticate('authenticator:auth0-lock', lockOptions);

Pull Requests

• #66 chore: Add deprecations by Chris Watts

v3.0.0 (February 25th, 2017)

Breaking Changes

• The addon no longer navigates to the auth0 logout url when the session is invalidated through ember-simple-auth session. You have to manually call session.navigateToLogoutURL()
• Use idToken instead of jwt on the authenticated object when making requests to the backend.
• Use idTokenPayload.exp instead of exp to figure out when the token is about to expire
• USe logoutReturnToURL instead of logoutURL in the environment config. This will be used when calling navigateToLogoutURL()
• Remove redirectURI from the environment config.

Pull Requests

• #46 enhacenement: Add yarn by Chris Watts
• #52 enhancement: Remove deprecations by Chris Watts
• #54 enhancement: Add api demo by Chris Watts
• #55 fix: Semver dependency by Chris Watts
• #58 docs: Update readme with examples by Chris Watts
• #57 fix: correct Lock object init/fn call order of operations by James Martinez

v2.3.0 (February 18th, 2017)

Pull Requests

• #42 enhancement: Update ember-simple-auth v1.2.0 by Chris Watts
• #45 enhancement: Add eslint by Chris Watts
• #41 enhancement: Add ability to use v8 of auth0.js by Chris Watts
• #40 enhancement: Change auth0-impersonation authenticator to auth0-url-hash by Chris Watts

v2.2.1 (January 22nd, 2017)

Pull Requests

• #33 bugfix: Fix issue with latest version of auth0-lock by Chris Watts

v2.2.0 (December 28th, 2016)

Pull Requests

• #23 enhancement: upgrade dependencies by Chris Watts
• #28 enhancement: Improve ability to show the auth0 lock so that it can be overriden during acceptance tests by Chris Watts

v2.1.4 (December 5th, 2016)

Pull Requests

• #20 fix: issue where the session would not be invalided when the token is expired by Chris Watts

v2.1.3 (December 5th, 2016)

• #19 fix: deprecation warnings to display correctly by @seawatts

v2.1.2 (November 30th, 2016)

• #17 fix: Remove string interpolation by @seawatts

v2.1.1 (November 30th, 2016)

• #16 fix: Don't use es6 feature in index.js by @seawatts

v2.1.0 (November 18th, 2016)

• #15 enhancement: backwards compatibility for data.authenticated block by @seawatts

v2.0.0 (November 14th, 2016)

Breaking Changes

• The profile that is returned from lock.js getProfile is now scoped under the profile property on the session. See readme for updated session object

v1.0.3 (November 4th, 2016)

• #10 fix: Only run beforeSessionExpire if we are not in testing by @seawatts

v1.0.2 (November 3rd, 2016)

• #9 fix: issue where jwt authorizer wasn't adding the jwt to the block by @seawatts
• Fixed an issue where ember install or ember generate would fail because rsvp was in devDependencies instead of dependencies

v1.0.1 (November 3rd, 2016)

• #8 fix: issue where after auth would not redirect correctly by @seawatts

v1.0.0 (November 2nd, 2016)

Breaking Changes

• The session data object is now unified into one object instead of split between the user profile and the jwt info

{
  "authenticated": {
    "authenticator": "authenticator:auth0-impersonation",
    "email": "[email protected]",
    "impersonated": true,
    "impersonator": {
      "user_id": "google-oauth2|108251222085688410292",
      "email": "[email protected]"
    },
    "appMetadata": {
    },
    "userMetadata": {
    },
    "emailVerified": true,
    "clientID": "YwDY9D433veMHC2e27j2BESjlnwF7ry8",
    "updatedAt": "2016-11-02T23:28:06.864Z",
    "userId": "auth0|da71a38d-3d2a-4281-8dfa-504ed0acd598",
    "identities": [
      {
        "user_id": "da71a38d-3de2-4281-8dfa-504ed0acd598",
        "provider": "auth0",
        "connection": "DB",
        "isSocial": false
      }
    ],
    "createdAt": "2016-04-01T21:03:24.847Z",
    "globalClientId": "I22jtMbdaRIz0pOwPdN2Ciuh2uIdzfy2",
    "accessToken": "OfevAkQ5ar42HA2j",
    "idToken": "aaaa.bbb.cccc",
    "idTokenPayload": {
      "iss": "https://domain.auth0.com/",
      "sub": "auth0|da71a382-3dea-2281-8dfa-204ed0acd598",
      "aud": "Yw2Y9D433veMHCred7j0BESjlnwF7r28",
      "exp": 1478629287,
      "iat": 1478129287
    }
  }
}

Bug Fixes

• beforeExpired would never fire. This is now moved into the application-route-mixin and can be overridden by beforeSessionExpired
• auth0.js and lock.js were not being installed correctly

Enhancements

• Added ember-simple-auth as a dependency