0
Fork 0
mirror of https://github.com/logto-io/logto.git synced 2024-12-30 20:33:54 -05:00
logto/packages/core/CHANGELOG.md
2023-02-03 09:45:53 +00:00

39 KiB
Raw Blame History

Change Log

1.0.0-rc.1

Patch Changes

  • 51f527b0: bug fixes

    • core: fix 500 error when enabling app admin access in console
    • ui: handle required profile errors on social binding flow
    • @logto/cli@1.0.0-rc.1

1.0.0-rc.0

Major Changes

  • f41fd3f0: drop settings table and add systems table

    BREAKING CHANGES

    • core: removed GET /settings and PATCH /settings API
    • core: added GET /configs/admin-console and PATCH /configs/admin-console API
      • /configs/* APIs are config/key-specific now. they may have different logic per key
    • cli: change valid logto db config keys by removing alterationState and adding adminConsole since:
      • OIDC configs and admin console configs are tenant-level configs (the concept of "tenant" can be ignored until we officially announce it)
      • alteration state is still a system-wide config

Minor Changes

  • f41fd3f0: Replace passcode naming convention in the interaction APIs and main flow ui with verificationCode.

  • f41fd3f0: Officially cleanup all deprecated /session APIs in core and all the related integration tests.

  • f41fd3f0: - cli: use ec with secp384r1 as the default key generation type

    • core: use ES384 as the signing algorithm for EC keys
  • fdb2bb48: Streamlining the social sign-up flow

    • detect trusted email (or phone number) from the social account
      • email (or phone number) has been registered: automatically connecting the social identity to the existing user account with a single click
      • email (or phone number) not registered: automatically sync up the user profile with the social provided email (or phone) if and only if marked as a required user profile.
  • f41fd3f0: Replace the sms naming convention using phone cross logto codebase. Including Sign-in Experience types, API paths, API payload and internal variable names.

  • f41fd3f0: Add support to send and verify verification code in management APIs

Patch Changes

  • Updated dependencies [f41fd3f0]
  • Updated dependencies [f41fd3f0]
  • Updated dependencies [f41fd3f0]
  • Updated dependencies [f41fd3f0]
  • Updated dependencies [f41fd3f0]
    • @logto/cli@1.0.0-rc.0
    • @logto/schemas@1.0.0-rc.0
    • @logto/shared@1.0.0-rc.0

1.0.0-beta.19

Patch Changes

  • Updated dependencies [df9e98dc]
    • @logto/cli@1.0.0-beta.19
    • @logto/schemas@1.0.0-beta.18
    • @logto/shared@1.0.0-beta.18

1.0.0-beta.18

Major Changes

Minor Changes

  • 1c916011: ### Features

    • Enhanced user search params #2639
    • Web hooks

    Improvements

    • Refactored Interaction APIs and Audit logs

Patch Changes

  • Updated dependencies [1c916011]
  • Updated dependencies [1c916011]
  • Updated dependencies [1c916011]
    • @logto/cli@1.0.0-beta.18
    • @logto/phrases@1.0.0-beta.17
    • @logto/phrases-ui@1.0.0-beta.17
    • @logto/schemas@1.0.0-beta.17
    • @logto/shared@1.0.0-beta.17

1.0.0-beta.17

1.0.0-beta.16

Patch Changes

  • 38970fb8: Fix a Sign-in experience bug that may block some users to sign in.
  • Updated dependencies [38970fb8]
    • @logto/cli@1.0.0-beta.16
    • @logto/phrases@1.0.0-beta.16
    • @logto/schemas@1.0.0-beta.16
    • @logto/shared@1.0.0-beta.16

1.0.0-beta.15

Patch Changes

  • Bump connector kit version to fix "Continue" issues on sending email/sms.
  • Updated dependencies
    • @logto/schemas@1.0.0-beta.15
    • @logto/cli@1.0.0-beta.15
    • @logto/shared@1.0.0-beta.15

1.0.0-beta.14

Patch Changes

  • Updated dependencies [2d45cc3e]
    • @logto/schemas@1.0.0-beta.14
    • @logto/cli@1.0.0-beta.14
    • @logto/shared@1.0.0-beta.14

1.0.0-beta.13

Minor Changes

  • 18e3b82e: Add user suspend API endpoint

    Use PATCH /api/users/:userId/is-suspended to update a user's suspended state, once a user is suspended, all refresh tokens belong to this user will be revoked.

    Suspended users will get an error toast when trying to sign in.

  • 2168936b: Sign-in Experience v2

    We are thrilled to announce the release of the newest version of the Sign-in Experience, which includes more ways to sign-in and sign-up, as well as a framework that is easier to understand and more flexible to configure in the Admin Console.

    When compared to Sign-in Experience v1, this versions capability was expanded so that it could support a greater variety of flexible use cases. For example, now users can sign up with email verification code and sign in with email and password.

    We hope that this will be able to assist developers in delivering a successful sign-in flow, which will also be appreciated by the end users.

  • 40286699: 💥 Breaking change 💥

    Use case-insensitive strategy for searching emails

Patch Changes

  • Updated dependencies [68f2d56a]
  • Updated dependencies [3ff2e90c]
    • @logto/phrases@1.0.0-beta.13
    • @logto/phrases-ui@1.0.0-beta.13
    • @logto/cli@1.0.0-beta.13
    • @logto/schemas@1.0.0-beta.13
    • @logto/shared@1.0.0-beta.13

All notable changes to this project will be documented in this file. See Conventional Commits for commit guidelines.

1.0.0-beta.12 (2022-10-19)

Note: Version bump only for package @logto/core

1.0.0-beta.11 (2022-10-19)

⚠ BREAKING CHANGES

  • update scripts

Features

Bug Fixes

  • add redirectURI validation on frontend & backend (#1874) (4b0970b)
  • core: fix deletePasscodeByIds bug (#2049) (11b605a)

Miscellaneous Chores

1.0.0-beta.10 (2022-09-28)

⚠ BREAKING CHANGES

  • core: update koaAuth() to inject detailed auth info (#1977)
  • core: update user scopes (#1922)

Features

  • core,phrases: add check protected access function (e405ef7)
  • core,schemas: add phrases schema and GET /custom-phrases/:languageKey route (#1905) (7242aa8)
  • core,schemas: migration deploy cli (#1966) (7cc2f4d)
  • core,schemas: use timestamp to version migrations (bb4bfd3)
  • core: add DELETE /custom-phrases/:languageKey route (#1919) (c72be69)
  • core: add GET /custom-phrases route (#1935) (5fe0cf4)
  • core: add POST /session/forgot-password/{email,sms}/send-passcode (#1963) (af2600d)
  • core: add POST /session/forgot-password/{email,sms}/verify-passcode (#1968) (1ea39f3)
  • core: add POST /session/forgot-password/reset (#1972) (acdc86c)
  • core: add PUT /custom-phrases/:languageKey route (#1907) (0ae13f0)
  • core: add ts to interaction result (#1917) (e01042c)
  • core: cannot delete custom phrase used as default language in sign-in exp (#1951) (a1aef26)
  • core: check migration state before app start (#1979) (bf1d281)
  • core: deploy migration in transaction mode (#1980) (9a89c1a)
  • core: machine to machine apps (cd9c697)
  • core: save empty string as null value in DB (#1901) (ecdf06e)
  • core: support base64 format OIDC_PRIVATE_KEYS config in .env file (#1903) (5bdb675)
  • core: update migration state after db init (f904b88)
  • ui: add passwordless switch (#1976) (ddb0e47)

Bug Fixes

  • bump react sdk and essentials toolkit to support CJK characters in idToken (2f92b43)
  • core,schemas: move alteration types into schemas src (#2005) (10c1be6)
  • core: filter out connector-kit (#1987) (f4cf89f)
  • support capital letter "Y" in command line prompt (416f4e8)

Code Refactoring

1.0.0-beta.9 (2022-09-07)

⚠ BREAKING CHANGES

  • core: load connectors by folder (#1879)

Features

Bug Fixes

1.0.0-beta.8 (2022-09-01)

Features

1.0.0-beta.6 (2022-08-30)

Features

  • core: guard session with sign-in mode (a8a3de3)

1.0.0-beta.5 (2022-08-19)

⚠ BREAKING CHANGES

  • core,console: remove /me apis (#1781)

Features

Bug Fixes

  • core: fix ac & ui proxy under subpath deployment (#1761) (163c23b)
  • deps: update dependency slonik to v30 (#1744) (a9f99db)

Code Refactoring

1.0.0-beta.4 (2022-08-11)

⚠ BREAKING CHANGES

  • core: use comma separated values as a string array in the env file (#1762)

Features

  • core,schemas: add application secret (#1715) (543ee04)
  • core: support signing key rotation (#1732) (00bab4c)
  • core: use comma separated values as a string array in the env file (#1762) (f6db981)

Bug Fixes

1.0.0-beta.3 (2022-08-01)

Features

1.0.0-beta.2 (2022-07-25)

Features

Bug Fixes

  • core: resolve some core no-restricted-syntax lint error (#1606) (c56ddec)
  • deps: update dependency koa-router to v12 (#1596) (6e96d73)

1.0.0-beta.1 (2022-07-19)

Features

1.0.0-beta.0 (2022-07-14)

Features

Bug Fixes

  • connector: fix connector getConfig and validateConfig type (#1530) (88a54aa)
  • connector: passwordless connector send test msg with unsaved config (#1539) (0297f6c)
  • connector: refactor ConnectorInstance as class (#1541) (6b9ad58)
  • ui,core: fix i18n issue (#1548) (6b58d8a)

1.0.0-alpha.4 (2022-07-08)

Features

  • connector: connector error handler, throw errmsg on general errors (#1458) (7da1de3)
  • expose zod error (#1474) (81b63f0)

Bug Fixes

1.0.0-alpha.3 (2022-07-07)

Features

  • core: append additional yaml responses to swagger.json (#1407) (100bffb)

Bug Fixes

1.0.0-alpha.2 (2022-07-07)

Note: Version bump only for package @logto/core

1.0.0-alpha.1 (2022-07-05)

Bug Fixes

  • core: do not titlize tags of .well-known APIs (#1412) (5559fb1)

1.0.0-alpha.0 (2022-07-04)

Note: Version bump only for package @logto/core

0.1.2-alpha.5 (2022-07-03)

Note: Version bump only for package @logto/core

0.1.2-alpha.4 (2022-07-03)

Note: Version bump only for package @logto/core

0.1.2-alpha.3 (2022-07-03)

Features

0.1.2-alpha.2 (2022-07-02)

Note: Version bump only for package @logto/core

0.1.2-alpha.1 (2022-07-02)

Note: Version bump only for package @logto/core

0.1.2-alpha.0 (2022-07-02)

Note: Version bump only for package @logto/core

0.1.1-alpha.0 (2022-07-01)

Features

  • ac: implement admin console welcome page (#1139) (b42f4ba)
  • connector-alipay-native: add Alipay Native connector (#873) (9589aea)
  • connector-sendgrid-email: add sendgrid email connector (#850) (b887655)
  • connector-twilio-sms: add twilio sms connector (#881) (d7ce13d)
  • connector: apple (#966) (7400ed8)
  • connectors: handle authorization callback parameters in each connector respectively (#1166) (097aade)
  • console,core: hide admin user (#1182) (9194a6e)
  • console: add column lastSignIn in user management (#679) (a0b4b98)
  • console: dark logo (#860) (664a218)
  • console: sie form reorg (#1218) (2c41334)
  • console: support persisting get-started progress in settings config (43b2309)
  • core,connectors: update Aliyun logo and add logo_dark to Apple, Github (#1194) (98f8083)
  • core,console: change admin user password (#1268) (a4d0a94)
  • core,console: connector platform tabs (#887) (65fb36c)
  • core,console: social connector targets (#851) (127664a)
  • core,schemas: koaLogSession middleware (#767) (4e60446)
  • core,schemas: log IP and user agent (#682) (0ecb7e4)
  • core,schemas: log token exchange success (#809) (3b048a8)
  • core,schemas: save application id that the user first consented (#688) (4521c3c)
  • core,shared: get /dashboard/users/active (#953) (1420bb2)
  • core: add admin role validation to the koaAuth (#920) (cf360b9)
  • core: add custom claims to id token (#911) (9ccda93)
  • core: add etag for settings api (#1011) (d4f38bc)
  • core: add phone number and email mask (#891) (67f080e)
  • core: add role table seed (#1145) (837ad52)
  • core: add sign-in-mode (#1132) (f640dad)
  • core: add smtp connector (#1131) (f8710e1)
  • core: add socialConnectors details for get sign-in-settings (#804) (7a922cb)
  • core: add switch of enabling object fully replace when updating DB (#1107) (efa9491)
  • core: add welcome route (#1080) (f6f562a)
  • core: align connector error handler middleware with ConnectorErrorCodes (#1063) (1b8190a)
  • core: any-type parameter shows empty object in swagger example (#1110) (7339a85)
  • core: append page and page_size to the query parameters in swagger.json (#1120) (a262999)
  • core: convert route guards to swagger.json (#1047) (3145c9b)
  • core: convert Zod union, literal and string guards to OpenAPI schemas (#1126) (511012d)
  • core: cookie keys configuration (#902) (17c63cd)
  • core: dau curve contains 0 count points (#1105) (75ac874)
  • core: disable introspection feature (#886) (b2ac2c1)
  • core: empty path sould redirect to the console page (#915) (207c404)
  • core: expose connector and metadata from sendPasscode (#806) (0ea5513)
  • core: fix connectors' initialization (c6f2546)
  • core: get /dashboard/users/new (#940) (45a9777)
  • core: get /dashboard/users/total (#936) (c4bb0de)
  • core: get /logs (#823) (4ffd4c0)
  • core: get /logs/:id (#934) (bddf47b)
  • core: grantErrorListener for logging token exchange error (#894) (797344f)
  • core: grantRevokedListener for logging revocation of access and refresh token (#900) (e5196fc)
  • core: identities key should use target not connectorId (#1115) (41e37a7), closes #1134
  • core: log error body (#1065) (2ba1121)
  • core: log sending passcode with connector id (#824) (82c7138)
  • core: make GET /api/swagger.json contain all api routes (#1008) (8af2f95)
  • core: order logs by created_at desc (#993) (2ae4e2e)
  • core: register with admin role (#1140) (4f32ad3)
  • core: remove code redundancy (d989785)
  • core: remove unnecessary variable check and unused route (#1084) (bcc05e5)
  • core: separate social sign-in api (#735) (e71cf7e)
  • core: serve connector logo (#931) (5b44b71)
  • core: set claims for profile scope (#1013) (7781d49)
  • core: update connector db schema (#732) (8e1533a)
  • demo-app: implementation (#982) (7f4f4f8)
  • demo-app: implementation (3/3) (#1021) (91e2f05)
  • native-connectors: pass random state to native connector sdk (#922) (9679620)
  • remove target, platform from connector schema and add id to metadata (#930) (054b0f7)
  • update field check rules (#854) (85a407c)
  • use user level custom data to save preferences (#1045) (f2b44b4)

Bug Fixes

  • lint:report script (#730) (3b17324)
  • connector-wechat-native: fix wechat-native target (#820) (ab6c124)
  • connectors platform (#925) (16ec018)
  • console,core: only show enabled connectors in sign in methods (#988) (4768181)
  • console: update terms of use (#1122) (9262a6f)
  • console: update user data (#1184) (a3d3a79)
  • core,console: delete specific user identities by target (#1176) (ad86bc8)
  • core: align jsonb replace mode (#1138) (3cf34b5)
  • core: allow empty condition in logs (#991) (2819859)
  • core: catch interaction not found error (#827) (38ceae7)
  • core: disabled session check for preview mode (#867) (82674ee)
  • core: fix connector readme and configTemplate content parsing (#1267) (05db124)
  • core: fix preview session not found bug (#970) (545a392)
  • core: koaAuth should return 403 instead of 401 on non-admin role (ee16eeb)
  • core: prevent session lost for bind social (#948) (077ed12)
  • core: remove ESM declaration (#687) (e61dba9)
  • core: remove name regex (#1109) (a790248)
  • core: remove unavailable social sign in targets on save (#1201) (012562e)
  • core: revert add custom claims to id token (#919) (fe99928)
  • core: set module in base config (#685) (d108f4b)
  • core: settings api should not throw session not found error (#1157) (e0793fa)
  • core: signing in with a non-existing username should throw invalid credentials (#1239) (53781d6)
  • core: social user info in session (#794) (74f2940)
  • core: update proxy guard middleware (#963) (909535f)
  • core: update role names (#913) (d659995)
  • core: update roleNames to role_names to resolve 401 errors (5a1fa14)
  • core: update timestamp field with millisecond precision (#677) (7278ba4)
  • delete custom domain (#737) (8a48fb6)
  • ui: fix sign-in not found bug (#841) (5d34442)