diff --git a/.changeset/brown-donkeys-share.md b/.changeset/brown-donkeys-share.md deleted file mode 100644 index 8bcbc2198..000000000 --- a/.changeset/brown-donkeys-share.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -"@logto/connector-yunpian-sms": minor ---- - -add YunPian SMS connector diff --git a/.changeset/chilled-radios-cover.md b/.changeset/chilled-radios-cover.md deleted file mode 100644 index a3eb00abb..000000000 --- a/.changeset/chilled-radios-cover.md +++ /dev/null @@ -1,9 +0,0 @@ ---- -"@logto/cli": patch ---- - -fix fetch official connector list CLI command error - -Due to changes in the npm registry API (`https://registry.npmjs.org/-/v1/search`) that our CLI add official connector depends on, the new API behavior returns irrelevant search results. - -We need to manually filter out these irrelevant results to avoid potential infinite loops, where each loop triggers an API call, eventually hitting a rate limit and resulting in a status code 429. diff --git a/.changeset/hot-oranges-join.md b/.changeset/hot-oranges-join.md deleted file mode 100644 index 9a0661a31..000000000 --- a/.changeset/hot-oranges-join.md +++ /dev/null @@ -1,24 +0,0 @@ ---- -"@logto/experience-legacy": minor -"@logto/integration-tests": minor -"@logto/experience": minor -"@logto/console": minor -"@logto/phrases": minor -"@logto/schemas": minor -"@logto/core": minor ---- - -new MFA prompt policy - -You can now cutomize the MFA prompt policy in the Console. - -First, choose if you want to enable **Require MFA**: - -- **Enable**: Users will be prompted to set up MFA during the sign-in process which cannot be skipped. If the user fails to set up MFA or deletes their MFA settings, they will be locked out of their account until they set up MFA again. -- **Disable**: Users can skip the MFA setup process during sign-up flow. - -If you choose to **Disable**, you can choose the MFA setup prompt: - -- Do not ask users to set up MFA. -- Ask users to set up MFA during registration (skippable, one-time prompt). **The same prompt as previous policy (UserControlled)** -- Ask users to set up MFA on their sign-in after registration (skippable, one-time prompt) diff --git a/.changeset/nervous-apes-suffer.md b/.changeset/nervous-apes-suffer.md deleted file mode 100644 index 5a1835bda..000000000 --- a/.changeset/nervous-apes-suffer.md +++ /dev/null @@ -1,20 +0,0 @@ ---- -"@logto/integration-tests": patch -"@logto/core-kit": patch -"@logto/console": patch -"@logto/phrases": patch -"@logto/core": patch ---- - -loose redirect uri restrictions - -Logto has been following the industry best practices for OAuth2.0 and OIDC from the start. However, in the real world, there are things we cannot control, like third-party services or operation systems like Windows. - -This update relaxes restrictions on redirect URIs to allow the following: - -1. A mix of native and HTTP(S) redirect URIs. For example, a native app can now use a redirect URI like `https://example.com`. -2. Native schemes without a period (`.`). For example, `myapp://callback` is now allowed. - -When such URIs are configured, Logto Console will display a prominent warning. This change is backward-compatible and will not affect existing applications. - -We hope this change will make it easier for you to integrate Logto with your applications. diff --git a/.changeset/rotten-lizards-buy.md b/.changeset/rotten-lizards-buy.md deleted file mode 100644 index 9b5f03bcb..000000000 --- a/.changeset/rotten-lizards-buy.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -"@logto/connector-xiaomi": minor ---- - -add Xiaomi social connector diff --git a/packages/cli/CHANGELOG.md b/packages/cli/CHANGELOG.md index 36ffc48d6..82785eac3 100644 --- a/packages/cli/CHANGELOG.md +++ b/packages/cli/CHANGELOG.md @@ -1,5 +1,20 @@ # Change Log +## 1.23.0 + +### Patch Changes + +- 217858950: fix fetch official connector list CLI command error + + Due to changes in the npm registry API (`https://registry.npmjs.org/-/v1/search`) that our CLI add official connector depends on, the new API behavior returns irrelevant search results. + + We need to manually filter out these irrelevant results to avoid potential infinite loops, where each loop triggers an API call, eventually hitting a rate limit and resulting in a status code 429. + +- Updated dependencies [f1b1d9e95] +- Updated dependencies [239b81e31] + - @logto/schemas@1.23.0 + - @logto/core-kit@2.5.2 + ## 1.22.0 ### Patch Changes diff --git a/packages/cli/package.json b/packages/cli/package.json index d8855fa82..bf3760d70 100644 --- a/packages/cli/package.json +++ b/packages/cli/package.json @@ -1,6 +1,6 @@ { "name": "@logto/cli", - "version": "1.22.0", + "version": "1.23.0", "description": "Logto CLI.", "author": "Silverhand Inc. ", "homepage": "https://github.com/logto-io/logto#readme", @@ -43,8 +43,8 @@ }, "dependencies": { "@logto/connector-kit": "workspace:^4.1.0", - "@logto/core-kit": "workspace:^2.5.0", - "@logto/schemas": "workspace:1.22.0", + "@logto/core-kit": "workspace:^2.5.2", + "@logto/schemas": "workspace:1.23.0", "@logto/shared": "workspace:^3.1.2", "@silverhand/essentials": "^2.9.1", "@silverhand/slonik": "31.0.0-beta.2", diff --git a/packages/connectors/connector-xiaomi/CHANGELOG.md b/packages/connectors/connector-xiaomi/CHANGELOG.md new file mode 100644 index 000000000..5a0aec6c9 --- /dev/null +++ b/packages/connectors/connector-xiaomi/CHANGELOG.md @@ -0,0 +1,7 @@ +# @logto/connector-xiaomi + +## 1.0.0 + +### Minor Changes + +- 3fa2b796e: add Xiaomi social connector diff --git a/packages/connectors/connector-yunpian-sms/CHANGELOG.md b/packages/connectors/connector-yunpian-sms/CHANGELOG.md new file mode 100644 index 000000000..edb79f8db --- /dev/null +++ b/packages/connectors/connector-yunpian-sms/CHANGELOG.md @@ -0,0 +1,7 @@ +# @logto/connector-yunpian-sms + +## 1.0.0 + +### Minor Changes + +- 3004ae9a6: add YunPian SMS connector diff --git a/packages/console/CHANGELOG.md b/packages/console/CHANGELOG.md index d121fd7e5..9459174a0 100644 --- a/packages/console/CHANGELOG.md +++ b/packages/console/CHANGELOG.md @@ -1,5 +1,39 @@ # Change Log +## 1.20.0 + +### Minor Changes + +- f1b1d9e95: new MFA prompt policy + + You can now cutomize the MFA prompt policy in the Console. + + First, choose if you want to enable **Require MFA**: + + - **Enable**: Users will be prompted to set up MFA during the sign-in process which cannot be skipped. If the user fails to set up MFA or deletes their MFA settings, they will be locked out of their account until they set up MFA again. + - **Disable**: Users can skip the MFA setup process during sign-up flow. + + If you choose to **Disable**, you can choose the MFA setup prompt: + + - Do not ask users to set up MFA. + - Ask users to set up MFA during registration (skippable, one-time prompt). **The same prompt as previous policy (UserControlled)** + - Ask users to set up MFA on their sign-in after registration (skippable, one-time prompt) + +### Patch Changes + +- 239b81e31: loose redirect uri restrictions + + Logto has been following the industry best practices for OAuth2.0 and OIDC from the start. However, in the real world, there are things we cannot control, like third-party services or operation systems like Windows. + + This update relaxes restrictions on redirect URIs to allow the following: + + 1. A mix of native and HTTP(S) redirect URIs. For example, a native app can now use a redirect URI like `https://example.com`. + 2. Native schemes without a period (`.`). For example, `myapp://callback` is now allowed. + + When such URIs are configured, Logto Console will display a prominent warning. This change is backward-compatible and will not affect existing applications. + + We hope this change will make it easier for you to integrate Logto with your applications. + ## 1.19.0 ### Minor Changes diff --git a/packages/console/package.json b/packages/console/package.json index c885062d2..f72068d0d 100644 --- a/packages/console/package.json +++ b/packages/console/package.json @@ -1,6 +1,6 @@ { "name": "@logto/console", - "version": "1.19.0", + "version": "1.20.0", "description": "> TODO: description", "author": "Silverhand Inc. ", "homepage": "https://github.com/logto-io/logto#readme", @@ -29,12 +29,12 @@ "@jest/types": "^29.5.0", "@logto/cloud": "0.2.5-aac51e9", "@logto/connector-kit": "workspace:^4.1.0", - "@logto/core-kit": "workspace:^2.5.0", + "@logto/core-kit": "workspace:^2.5.2", "@logto/language-kit": "workspace:^1.1.0", - "@logto/phrases": "workspace:^1.15.0", + "@logto/phrases": "workspace:^1.16.0", "@logto/phrases-experience": "workspace:^1.9.0", "@logto/react": "^3.0.12", - "@logto/schemas": "workspace:^1.22.0", + "@logto/schemas": "workspace:^1.23.0", "@logto/shared": "workspace:^3.1.2", "@mdx-js/react": "^3.0.1", "@mdx-js/rollup": "^3.0.1", diff --git a/packages/core/CHANGELOG.md b/packages/core/CHANGELOG.md index da1174812..6e5e51fc6 100644 --- a/packages/core/CHANGELOG.md +++ b/packages/core/CHANGELOG.md @@ -1,5 +1,50 @@ # Change Log +## 1.23.0 + +### Minor Changes + +- f1b1d9e95: new MFA prompt policy + + You can now cutomize the MFA prompt policy in the Console. + + First, choose if you want to enable **Require MFA**: + + - **Enable**: Users will be prompted to set up MFA during the sign-in process which cannot be skipped. If the user fails to set up MFA or deletes their MFA settings, they will be locked out of their account until they set up MFA again. + - **Disable**: Users can skip the MFA setup process during sign-up flow. + + If you choose to **Disable**, you can choose the MFA setup prompt: + + - Do not ask users to set up MFA. + - Ask users to set up MFA during registration (skippable, one-time prompt). **The same prompt as previous policy (UserControlled)** + - Ask users to set up MFA on their sign-in after registration (skippable, one-time prompt) + +### Patch Changes + +- 239b81e31: loose redirect uri restrictions + + Logto has been following the industry best practices for OAuth2.0 and OIDC from the start. However, in the real world, there are things we cannot control, like third-party services or operation systems like Windows. + + This update relaxes restrictions on redirect URIs to allow the following: + + 1. A mix of native and HTTP(S) redirect URIs. For example, a native app can now use a redirect URI like `https://example.com`. + 2. Native schemes without a period (`.`). For example, `myapp://callback` is now allowed. + + When such URIs are configured, Logto Console will display a prominent warning. This change is backward-compatible and will not affect existing applications. + + We hope this change will make it easier for you to integrate Logto with your applications. + +- Updated dependencies [217858950] +- Updated dependencies [f1b1d9e95] +- Updated dependencies [239b81e31] + - @logto/cli@1.23.0 + - @logto/experience-legacy@1.11.0 + - @logto/experience@1.11.0 + - @logto/console@1.20.0 + - @logto/phrases@1.16.0 + - @logto/schemas@1.23.0 + - @logto/core-kit@2.5.2 + ## 1.22.0 ### Minor Changes diff --git a/packages/core/package.json b/packages/core/package.json index 82bce02b1..43137fc97 100644 --- a/packages/core/package.json +++ b/packages/core/package.json @@ -1,6 +1,6 @@ { "name": "@logto/core", - "version": "1.22.0", + "version": "1.23.0", "description": "The open source identity solution.", "main": "build/index.js", "author": "Silverhand Inc. ", @@ -33,18 +33,18 @@ "@koa/cors": "^5.0.0", "@logto/affiliate": "^0.1.0", "@logto/app-insights": "workspace:^2.0.0", - "@logto/cli": "workspace:^1.22.0", + "@logto/cli": "workspace:^1.23.0", "@logto/connector-kit": "workspace:^4.1.0", "@logto/console": "workspace:*", - "@logto/core-kit": "workspace:^2.5.0", + "@logto/core-kit": "workspace:^2.5.2", "@logto/demo-app": "workspace:*", "@logto/experience": "workspace:*", "@logto/experience-legacy": "workspace:*", "@logto/js": "^4.1.4", "@logto/language-kit": "workspace:^1.1.0", - "@logto/phrases": "workspace:^1.15.0", + "@logto/phrases": "workspace:^1.16.0", "@logto/phrases-experience": "workspace:^1.9.0", - "@logto/schemas": "workspace:^1.22.0", + "@logto/schemas": "workspace:^1.23.0", "@logto/shared": "workspace:^3.1.2", "@silverhand/essentials": "^2.9.1", "@silverhand/slonik": "31.0.0-beta.2", diff --git a/packages/create/CHANGELOG.md b/packages/create/CHANGELOG.md index 75125df63..27b5bdbc4 100644 --- a/packages/create/CHANGELOG.md +++ b/packages/create/CHANGELOG.md @@ -1,5 +1,12 @@ # Change Log +## 1.23.0 + +### Patch Changes + +- Updated dependencies [217858950] + - @logto/cli@1.23.0 + ## 1.22.0 ### Patch Changes diff --git a/packages/create/package.json b/packages/create/package.json index 34a0a2172..908a78994 100644 --- a/packages/create/package.json +++ b/packages/create/package.json @@ -1,6 +1,6 @@ { "name": "@logto/create", - "version": "1.22.0", + "version": "1.23.0", "author": "Silverhand Inc. ", "license": "MPL-2.0", "type": "module", @@ -15,6 +15,6 @@ "node": "^20.9.0" }, "dependencies": { - "@logto/cli": "workspace:^1.22.0" + "@logto/cli": "workspace:^1.23.0" } } diff --git a/packages/experience-legacy/CHANGELOG.md b/packages/experience-legacy/CHANGELOG.md index 9f7fc2297..b0343d208 100644 --- a/packages/experience-legacy/CHANGELOG.md +++ b/packages/experience-legacy/CHANGELOG.md @@ -1,5 +1,24 @@ # Change Log +## 1.11.0 + +### Minor Changes + +- f1b1d9e95: new MFA prompt policy + + You can now cutomize the MFA prompt policy in the Console. + + First, choose if you want to enable **Require MFA**: + + - **Enable**: Users will be prompted to set up MFA during the sign-in process which cannot be skipped. If the user fails to set up MFA or deletes their MFA settings, they will be locked out of their account until they set up MFA again. + - **Disable**: Users can skip the MFA setup process during sign-up flow. + + If you choose to **Disable**, you can choose the MFA setup prompt: + + - Do not ask users to set up MFA. + - Ask users to set up MFA during registration (skippable, one-time prompt). **The same prompt as previous policy (UserControlled)** + - Ask users to set up MFA on their sign-in after registration (skippable, one-time prompt) + ## 1.10.0 ### Minor Changes diff --git a/packages/experience-legacy/package.json b/packages/experience-legacy/package.json index 555ed4363..139377b27 100644 --- a/packages/experience-legacy/package.json +++ b/packages/experience-legacy/package.json @@ -1,6 +1,6 @@ { "name": "@logto/experience-legacy", - "version": "1.10.0", + "version": "1.11.0", "license": "MPL-2.0", "type": "module", "private": true, @@ -22,11 +22,11 @@ "devDependencies": { "@jest/types": "^29.5.0", "@logto/connector-kit": "workspace:^4.1.0", - "@logto/core-kit": "workspace:^2.5.0", + "@logto/core-kit": "workspace:^2.5.2", "@logto/language-kit": "workspace:^1.1.0", - "@logto/phrases": "workspace:^1.15.0", + "@logto/phrases": "workspace:^1.16.0", "@logto/phrases-experience": "workspace:^1.9.0", - "@logto/schemas": "workspace:^1.22.0", + "@logto/schemas": "workspace:^1.23.0", "@react-spring/shared": "^9.6.1", "@react-spring/web": "^9.6.1", "@silverhand/eslint-config": "6.0.1", diff --git a/packages/experience/CHANGELOG.md b/packages/experience/CHANGELOG.md index 6f5de5469..f35ee5039 100644 --- a/packages/experience/CHANGELOG.md +++ b/packages/experience/CHANGELOG.md @@ -1,5 +1,24 @@ # Change Log +## 1.11.0 + +### Minor Changes + +- f1b1d9e95: new MFA prompt policy + + You can now cutomize the MFA prompt policy in the Console. + + First, choose if you want to enable **Require MFA**: + + - **Enable**: Users will be prompted to set up MFA during the sign-in process which cannot be skipped. If the user fails to set up MFA or deletes their MFA settings, they will be locked out of their account until they set up MFA again. + - **Disable**: Users can skip the MFA setup process during sign-up flow. + + If you choose to **Disable**, you can choose the MFA setup prompt: + + - Do not ask users to set up MFA. + - Ask users to set up MFA during registration (skippable, one-time prompt). **The same prompt as previous policy (UserControlled)** + - Ask users to set up MFA on their sign-in after registration (skippable, one-time prompt) + ## 1.10.0 ### Minor Changes diff --git a/packages/experience/package.json b/packages/experience/package.json index 3ea71d545..270cb95b2 100644 --- a/packages/experience/package.json +++ b/packages/experience/package.json @@ -1,6 +1,6 @@ { "name": "@logto/experience", - "version": "1.10.0", + "version": "1.11.0", "license": "MPL-2.0", "type": "module", "private": true, @@ -22,11 +22,11 @@ "devDependencies": { "@jest/types": "^29.5.0", "@logto/connector-kit": "workspace:^4.1.0", - "@logto/core-kit": "workspace:^2.5.0", + "@logto/core-kit": "workspace:^2.5.2", "@logto/language-kit": "workspace:^1.1.0", - "@logto/phrases": "workspace:^1.15.0", + "@logto/phrases": "workspace:^1.16.0", "@logto/phrases-experience": "workspace:^1.9.0", - "@logto/schemas": "workspace:^1.22.0", + "@logto/schemas": "workspace:^1.23.0", "@react-spring/shared": "^9.6.1", "@react-spring/web": "^9.6.1", "@silverhand/eslint-config": "6.0.1", diff --git a/packages/integration-tests/CHANGELOG.md b/packages/integration-tests/CHANGELOG.md index 98a84dc4e..37586073f 100644 --- a/packages/integration-tests/CHANGELOG.md +++ b/packages/integration-tests/CHANGELOG.md @@ -1,5 +1,39 @@ # Change Log +## 1.11.0 + +### Minor Changes + +- f1b1d9e95: new MFA prompt policy + + You can now cutomize the MFA prompt policy in the Console. + + First, choose if you want to enable **Require MFA**: + + - **Enable**: Users will be prompted to set up MFA during the sign-in process which cannot be skipped. If the user fails to set up MFA or deletes their MFA settings, they will be locked out of their account until they set up MFA again. + - **Disable**: Users can skip the MFA setup process during sign-up flow. + + If you choose to **Disable**, you can choose the MFA setup prompt: + + - Do not ask users to set up MFA. + - Ask users to set up MFA during registration (skippable, one-time prompt). **The same prompt as previous policy (UserControlled)** + - Ask users to set up MFA on their sign-in after registration (skippable, one-time prompt) + +### Patch Changes + +- 239b81e31: loose redirect uri restrictions + + Logto has been following the industry best practices for OAuth2.0 and OIDC from the start. However, in the real world, there are things we cannot control, like third-party services or operation systems like Windows. + + This update relaxes restrictions on redirect URIs to allow the following: + + 1. A mix of native and HTTP(S) redirect URIs. For example, a native app can now use a redirect URI like `https://example.com`. + 2. Native schemes without a period (`.`). For example, `myapp://callback` is now allowed. + + When such URIs are configured, Logto Console will display a prominent warning. This change is backward-compatible and will not affect existing applications. + + We hope this change will make it easier for you to integrate Logto with your applications. + ## 1.10.0 ### Minor Changes diff --git a/packages/integration-tests/package.json b/packages/integration-tests/package.json index 42a1ee5da..3c978ede0 100644 --- a/packages/integration-tests/package.json +++ b/packages/integration-tests/package.json @@ -1,6 +1,6 @@ { "name": "@logto/integration-tests", - "version": "1.10.0", + "version": "1.11.0", "description": "Integration tests for Logto.", "author": "Silverhand Inc. ", "license": "MPL-2.0", @@ -29,7 +29,7 @@ "@logto/core-kit": "workspace:^", "@logto/js": "^4.1.4", "@logto/node": "^2.5.4", - "@logto/schemas": "workspace:^1.22.0", + "@logto/schemas": "workspace:^1.23.0", "@logto/shared": "workspace:^3.1.1", "@silverhand/eslint-config": "6.0.1", "@silverhand/essentials": "^2.9.1", diff --git a/packages/phrases/CHANGELOG.md b/packages/phrases/CHANGELOG.md index 267debe5a..64e6195b4 100644 --- a/packages/phrases/CHANGELOG.md +++ b/packages/phrases/CHANGELOG.md @@ -1,5 +1,39 @@ # Change Log +## 1.16.0 + +### Minor Changes + +- f1b1d9e95: new MFA prompt policy + + You can now cutomize the MFA prompt policy in the Console. + + First, choose if you want to enable **Require MFA**: + + - **Enable**: Users will be prompted to set up MFA during the sign-in process which cannot be skipped. If the user fails to set up MFA or deletes their MFA settings, they will be locked out of their account until they set up MFA again. + - **Disable**: Users can skip the MFA setup process during sign-up flow. + + If you choose to **Disable**, you can choose the MFA setup prompt: + + - Do not ask users to set up MFA. + - Ask users to set up MFA during registration (skippable, one-time prompt). **The same prompt as previous policy (UserControlled)** + - Ask users to set up MFA on their sign-in after registration (skippable, one-time prompt) + +### Patch Changes + +- 239b81e31: loose redirect uri restrictions + + Logto has been following the industry best practices for OAuth2.0 and OIDC from the start. However, in the real world, there are things we cannot control, like third-party services or operation systems like Windows. + + This update relaxes restrictions on redirect URIs to allow the following: + + 1. A mix of native and HTTP(S) redirect URIs. For example, a native app can now use a redirect URI like `https://example.com`. + 2. Native schemes without a period (`.`). For example, `myapp://callback` is now allowed. + + When such URIs are configured, Logto Console will display a prominent warning. This change is backward-compatible and will not affect existing applications. + + We hope this change will make it easier for you to integrate Logto with your applications. + ## 1.15.0 ### Minor Changes diff --git a/packages/phrases/package.json b/packages/phrases/package.json index 1ebcaed38..ce43e9998 100644 --- a/packages/phrases/package.json +++ b/packages/phrases/package.json @@ -1,6 +1,6 @@ { "name": "@logto/phrases", - "version": "1.15.0", + "version": "1.16.0", "description": "Logto shared phrases (i18n).", "author": "Silverhand Inc. ", "homepage": "https://github.com/logto-io/logto#readme", diff --git a/packages/schemas/CHANGELOG.md b/packages/schemas/CHANGELOG.md index c1026d615..abd301791 100644 --- a/packages/schemas/CHANGELOG.md +++ b/packages/schemas/CHANGELOG.md @@ -1,5 +1,31 @@ # Change Log +## 1.23.0 + +### Minor Changes + +- f1b1d9e95: new MFA prompt policy + + You can now cutomize the MFA prompt policy in the Console. + + First, choose if you want to enable **Require MFA**: + + - **Enable**: Users will be prompted to set up MFA during the sign-in process which cannot be skipped. If the user fails to set up MFA or deletes their MFA settings, they will be locked out of their account until they set up MFA again. + - **Disable**: Users can skip the MFA setup process during sign-up flow. + + If you choose to **Disable**, you can choose the MFA setup prompt: + + - Do not ask users to set up MFA. + - Ask users to set up MFA during registration (skippable, one-time prompt). **The same prompt as previous policy (UserControlled)** + - Ask users to set up MFA on their sign-in after registration (skippable, one-time prompt) + +### Patch Changes + +- Updated dependencies [f1b1d9e95] +- Updated dependencies [239b81e31] + - @logto/phrases@1.16.0 + - @logto/core-kit@2.5.2 + ## 1.22.0 ### Minor Changes diff --git a/packages/schemas/alterations/next-1732851150-rename-saml-application-constraints.ts b/packages/schemas/alterations/1.23.0-1732851150-rename-saml-application-constraints.ts similarity index 100% rename from packages/schemas/alterations/next-1732851150-rename-saml-application-constraints.ts rename to packages/schemas/alterations/1.23.0-1732851150-rename-saml-application-constraints.ts diff --git a/packages/schemas/alterations/next-1733212543-add-saml-application-type-to-idp-initiated-sso-application-allow-list.ts b/packages/schemas/alterations/1.23.0-1733212543-add-saml-application-type-to-idp-initiated-sso-application-allow-list.ts similarity index 100% rename from packages/schemas/alterations/next-1733212543-add-saml-application-type-to-idp-initiated-sso-application-allow-list.ts rename to packages/schemas/alterations/1.23.0-1733212543-add-saml-application-type-to-idp-initiated-sso-application-allow-list.ts diff --git a/packages/schemas/alterations/next-1735012422-add-saml-application-sessions-table.ts b/packages/schemas/alterations/1.23.0-1735012422-add-saml-application-sessions-table.ts similarity index 100% rename from packages/schemas/alterations/next-1735012422-add-saml-application-sessions-table.ts rename to packages/schemas/alterations/1.23.0-1735012422-add-saml-application-sessions-table.ts diff --git a/packages/schemas/package.json b/packages/schemas/package.json index 8f839f194..bbf450582 100644 --- a/packages/schemas/package.json +++ b/packages/schemas/package.json @@ -1,6 +1,6 @@ { "name": "@logto/schemas", - "version": "1.22.0", + "version": "1.23.0", "author": "Silverhand Inc. ", "license": "MPL-2.0", "type": "module", @@ -79,9 +79,9 @@ "prettier": "@silverhand/eslint-config/.prettierrc", "dependencies": { "@logto/connector-kit": "workspace:^4.1.0", - "@logto/core-kit": "workspace:^2.5.0", + "@logto/core-kit": "workspace:^2.5.2", "@logto/language-kit": "workspace:^1.1.0", - "@logto/phrases": "workspace:^1.15.0", + "@logto/phrases": "workspace:^1.16.0", "@logto/phrases-experience": "workspace:^1.9.0", "@logto/shared": "workspace:^3.1.2", "@withtyped/server": "^0.14.0", diff --git a/packages/toolkit/core-kit/CHANGELOG.md b/packages/toolkit/core-kit/CHANGELOG.md index c37019c62..44da23baf 100644 --- a/packages/toolkit/core-kit/CHANGELOG.md +++ b/packages/toolkit/core-kit/CHANGELOG.md @@ -1,5 +1,22 @@ # Change Log +## 2.5.2 + +### Patch Changes + +- 239b81e31: loose redirect uri restrictions + + Logto has been following the industry best practices for OAuth2.0 and OIDC from the start. However, in the real world, there are things we cannot control, like third-party services or operation systems like Windows. + + This update relaxes restrictions on redirect URIs to allow the following: + + 1. A mix of native and HTTP(S) redirect URIs. For example, a native app can now use a redirect URI like `https://example.com`. + 2. Native schemes without a period (`.`). For example, `myapp://callback` is now allowed. + + When such URIs are configured, Logto Console will display a prominent warning. This change is backward-compatible and will not affect existing applications. + + We hope this change will make it easier for you to integrate Logto with your applications. + ## 2.5.1 ### Patch Changes diff --git a/packages/toolkit/core-kit/package.json b/packages/toolkit/core-kit/package.json index 9ea150e3b..174f2869b 100644 --- a/packages/toolkit/core-kit/package.json +++ b/packages/toolkit/core-kit/package.json @@ -1,6 +1,6 @@ { "name": "@logto/core-kit", - "version": "2.5.1", + "version": "2.5.2", "author": "Silverhand Inc. ", "homepage": "https://github.com/logto-io/toolkit#readme", "repository": { diff --git a/packages/tunnel/CHANGELOG.md b/packages/tunnel/CHANGELOG.md index 8a14dfce2..7aa4e0e84 100644 --- a/packages/tunnel/CHANGELOG.md +++ b/packages/tunnel/CHANGELOG.md @@ -1,5 +1,12 @@ # @logto/tunnel +## 0.2.3 + +### Patch Changes + +- Updated dependencies [239b81e31] + - @logto/core-kit@2.5.2 + ## 0.2.2 ### Patch Changes diff --git a/packages/tunnel/package.json b/packages/tunnel/package.json index 1765d4931..3bf0a5669 100644 --- a/packages/tunnel/package.json +++ b/packages/tunnel/package.json @@ -1,6 +1,6 @@ { "name": "@logto/tunnel", - "version": "0.2.2", + "version": "0.2.3", "description": "A CLI tool that creates tunnel service to Logto Cloud for local development.", "author": "Silverhand Inc. ", "homepage": "https://github.com/logto-io/logto#readme", diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml index c334a7703..7f4619020 100644 --- a/pnpm-lock.yaml +++ b/pnpm-lock.yaml @@ -107,10 +107,10 @@ importers: specifier: workspace:^4.1.0 version: link:../toolkit/connector-kit '@logto/core-kit': - specifier: workspace:^2.5.0 + specifier: workspace:^2.5.2 version: link:../toolkit/core-kit '@logto/schemas': - specifier: workspace:1.22.0 + specifier: workspace:1.23.0 version: link:../schemas '@logto/shared': specifier: workspace:^3.1.2 @@ -2864,13 +2864,13 @@ importers: specifier: workspace:^4.1.0 version: link:../toolkit/connector-kit '@logto/core-kit': - specifier: workspace:^2.5.0 + specifier: workspace:^2.5.2 version: link:../toolkit/core-kit '@logto/language-kit': specifier: workspace:^1.1.0 version: link:../toolkit/language-kit '@logto/phrases': - specifier: workspace:^1.15.0 + specifier: workspace:^1.16.0 version: link:../phrases '@logto/phrases-experience': specifier: workspace:^1.9.0 @@ -2879,7 +2879,7 @@ importers: specifier: ^3.0.12 version: 3.0.13(react@18.3.1) '@logto/schemas': - specifier: workspace:^1.22.0 + specifier: workspace:^1.23.0 version: link:../schemas '@logto/shared': specifier: workspace:^3.1.2 @@ -3161,7 +3161,7 @@ importers: specifier: workspace:^2.0.0 version: link:../app-insights '@logto/cli': - specifier: workspace:^1.22.0 + specifier: workspace:^1.23.0 version: link:../cli '@logto/connector-kit': specifier: workspace:^4.1.0 @@ -3170,7 +3170,7 @@ importers: specifier: workspace:* version: link:../console '@logto/core-kit': - specifier: workspace:^2.5.0 + specifier: workspace:^2.5.2 version: link:../toolkit/core-kit '@logto/demo-app': specifier: workspace:* @@ -3188,13 +3188,13 @@ importers: specifier: workspace:^1.1.0 version: link:../toolkit/language-kit '@logto/phrases': - specifier: workspace:^1.15.0 + specifier: workspace:^1.16.0 version: link:../phrases '@logto/phrases-experience': specifier: workspace:^1.9.0 version: link:../phrases-experience '@logto/schemas': - specifier: workspace:^1.22.0 + specifier: workspace:^1.23.0 version: link:../schemas '@logto/shared': specifier: workspace:^3.1.2 @@ -3468,7 +3468,7 @@ importers: packages/create: dependencies: '@logto/cli': - specifier: workspace:^1.22.0 + specifier: workspace:^1.23.0 version: link:../cli packages/demo-app: @@ -3640,19 +3640,19 @@ importers: specifier: workspace:^4.1.0 version: link:../toolkit/connector-kit '@logto/core-kit': - specifier: workspace:^2.5.0 + specifier: workspace:^2.5.2 version: link:../toolkit/core-kit '@logto/language-kit': specifier: workspace:^1.1.0 version: link:../toolkit/language-kit '@logto/phrases': - specifier: workspace:^1.15.0 + specifier: workspace:^1.16.0 version: link:../phrases '@logto/phrases-experience': specifier: workspace:^1.9.0 version: link:../phrases-experience '@logto/schemas': - specifier: workspace:^1.22.0 + specifier: workspace:^1.23.0 version: link:../schemas '@react-spring/shared': specifier: ^9.6.1 @@ -3847,19 +3847,19 @@ importers: specifier: workspace:^4.1.0 version: link:../toolkit/connector-kit '@logto/core-kit': - specifier: workspace:^2.5.0 + specifier: workspace:^2.5.2 version: link:../toolkit/core-kit '@logto/language-kit': specifier: workspace:^1.1.0 version: link:../toolkit/language-kit '@logto/phrases': - specifier: workspace:^1.15.0 + specifier: workspace:^1.16.0 version: link:../phrases '@logto/phrases-experience': specifier: workspace:^1.9.0 version: link:../phrases-experience '@logto/schemas': - specifier: workspace:^1.22.0 + specifier: workspace:^1.23.0 version: link:../schemas '@react-spring/shared': specifier: ^9.6.1 @@ -4073,7 +4073,7 @@ importers: specifier: ^2.5.4 version: 2.5.4 '@logto/schemas': - specifier: workspace:^1.22.0 + specifier: workspace:^1.23.0 version: link:../schemas '@logto/shared': specifier: workspace:^3.1.1 @@ -4210,13 +4210,13 @@ importers: specifier: workspace:^4.1.0 version: link:../toolkit/connector-kit '@logto/core-kit': - specifier: workspace:^2.5.0 + specifier: workspace:^2.5.2 version: link:../toolkit/core-kit '@logto/language-kit': specifier: workspace:^1.1.0 version: link:../toolkit/language-kit '@logto/phrases': - specifier: workspace:^1.15.0 + specifier: workspace:^1.16.0 version: link:../phrases '@logto/phrases-experience': specifier: workspace:^1.9.0