Skip to content

Releases: panva/oauth4webapi

v2.4.2

05 Jan 14:41
Compare
Choose a tag to compare

Documentation

  • add distribution links to README.md (29bb947)

Fixes

  • encode client_secret_basic - _ . ! ~ * ' ( ) characters (f926175)

v2.4.1

03 Jan 10:37
Compare
Choose a tag to compare

Refactor

  • create Request instances before passing them to fetch (02ab110)
  • types: mark always lowercased values and keys as Lowercase (89e7a77)

Documentation

  • categorize APIs in docs/README.md (c28efda)
  • expose Indexed Access Types (54c4393)
  • update EdDSA description (9765e7a)

v2.4.0

15 Nov 11:46
Compare
Choose a tag to compare

Features

  • add the cause property to errors where possible (07c95f7)

Refactor

  • use AlgorithmIdentifier instead of Algorithm where possible (e2ae2f3)

Fixes

  • base64url decode errors are OperationProcessingError (7f4a878)

v2.3.0

26 Apr 16:36
Compare
Choose a tag to compare

Features

  • allow Record<string, string> and string[][] as parameter arguments (021b85f)

v2.2.4

24 Apr 09:33
Compare
Choose a tag to compare

Refactor

  • brand URLSearchParams instead of extending URLSearchParams (8e62c8a)

v2.2.3

21 Apr 14:51
Compare
Choose a tag to compare

This release was merely to test release automation. NPM releases now include provenance statements.

v2.2.2

21 Apr 14:26
Compare
Choose a tag to compare

Refactor

  • types: enforce flat interfaces (c958d61)

v2.2.1

13 Apr 11:00
Compare
Choose a tag to compare

Fixes

  • return undefined from getValidatedIdTokenClaims as documented (678b12d)

v2.2.0

10 Mar 15:38
Compare
Choose a tag to compare

Features

  • allow the client's assumed current time to be adjusted (5051a5d), closes #49 #50
// client's local clock is mistakenly 1 hour in the past
const client: oauth.Client = {
  client_id: 'abc4ba37-4ab8-49b5-99d4-9441ba35d428',
  // ... other metadata
  [oauth.clockSkew]: +(60 * 60),
}
// client's local clock is mistakenly 1 hour in the future
const client: oauth.Client = {
  client_id: 'abc4ba37-4ab8-49b5-99d4-9441ba35d428',
  // ... other metadata
  [oauth.clockSkew]: -(60 * 60),
}
  • allow the client's DateTime claims tolerance to be adjusted (3936a56), closes #49 #50
// Tolerate 30 seconds clock skew when validating JWT claims like `exp` or `nbf`.
const client: oauth.Client = {
client_id: 'abc4ba37-4ab8-49b5-99d4-9441ba35d428',
  // ... other metadata
  [oauth.clockTolerance]: 30,
}

v2.1.0

09 Feb 18:32
Compare
Choose a tag to compare

Features

  • add more asymmetric JWS algorithms (af43ec7)