Releases: panva/oauth4webapi
Releases · panva/oauth4webapi
v2.4.2
Documentation
- add distribution links to README.md (29bb947)
Fixes
- encode client_secret_basic - _ . ! ~ * ' ( ) characters (f926175)
v2.4.1
Refactor
- create Request instances before passing them to fetch (02ab110)
- types: mark always lowercased values and keys as Lowercase (89e7a77)
Documentation
- categorize APIs in docs/README.md (c28efda)
- expose Indexed Access Types (54c4393)
- update EdDSA description (9765e7a)
v2.4.0
Features
- add the cause property to errors where possible (07c95f7)
Refactor
- use AlgorithmIdentifier instead of Algorithm where possible (e2ae2f3)
Fixes
- base64url decode errors are OperationProcessingError (7f4a878)
v2.3.0
Features
- allow Record<string, string> and string[][] as parameter arguments (021b85f)
v2.2.4
Refactor
- brand URLSearchParams instead of extending URLSearchParams (8e62c8a)
v2.2.2
Refactor
- types: enforce flat interfaces (c958d61)
v2.2.1
Fixes
- return undefined from getValidatedIdTokenClaims as documented (678b12d)
v2.2.0
Features
- allow the client's assumed current time to be adjusted (5051a5d), closes #49 #50
// client's local clock is mistakenly 1 hour in the past
const client: oauth.Client = {
client_id: 'abc4ba37-4ab8-49b5-99d4-9441ba35d428',
// ... other metadata
[oauth.clockSkew]: +(60 * 60),
}
// client's local clock is mistakenly 1 hour in the future
const client: oauth.Client = {
client_id: 'abc4ba37-4ab8-49b5-99d4-9441ba35d428',
// ... other metadata
[oauth.clockSkew]: -(60 * 60),
}
- allow the client's DateTime claims tolerance to be adjusted (3936a56), closes #49 #50
// Tolerate 30 seconds clock skew when validating JWT claims like `exp` or `nbf`.
const client: oauth.Client = {
client_id: 'abc4ba37-4ab8-49b5-99d4-9441ba35d428',
// ... other metadata
[oauth.clockTolerance]: 30,
}
v2.1.0
Features
- add more asymmetric JWS algorithms (af43ec7)