Auth0 authentication for Single Page Applications (SPA) with PKCE
Security
This patch release is identical to 1.22.5
but has been released to ensure tooling no longer detects a vulnerable version of jsonwebtoken
being used.
Even though 1.22.5 was not vulnerable for the related CVE because of the fact that jsonwebtoken
is a devDependency, we are cutting a release to ensure build tools no longer report our SDK as vulnerable to the mentioned CVE.
Security
This patch release is identical to 2.0.1
but has been released to ensure tooling no longer detects a vulnerable version of jsonwebtoken
being used.
Even though 2.0.1 was not vulnerable for the related CVE because of the fact that jsonwebtoken
is a devDependency, we are cutting a release to ensure build tools no longer report our SDK as vulnerable to the mentioned CVE.
Changed
Fixed
Auth0-SPA-JS v2 includes many significant changes compared to v1:
checkSession
#943 (frederikprijck)ignoreCache
to cacheMode
and introduce cache-only
#950 (ewanharris)getIdTokenClaimsOptions
type #960 (ewanharris)client_id
to clientId
#956 (ewanharris)authorizationParams
to hold properties sent to Auth0 #959 (ewanharris)advancedOptions.defaultScope
and replace with scope
#972 (ewanharris)buildAuthorizeUrl
#980 (frederikprijck)buildLogoutUrl
internal #982 (ewanharris)As with any major version bump, v2 of Auth0-SPA-JS contains a set of breaking changes. Please review the migration guide thoroughly to understand the changes required to migrate your application to v2.
Fixed
Fixed
Auth0-SPA-JS v2 includes many significant changes compared to v1:
checkSession
#943 (frederikprijck)ignoreCache
to cacheMode
and introduce cache-only
#950 (ewanharris)getIdTokenClaimsOptions
type #960 (ewanharris)client_id
to clientId
#956 (ewanharris)authorizationParams
to hold properties sent to Auth0 #959 (ewanharris)advancedOptions.defaultScope
and replace with scope
#972 (ewanharris)buildAuthorizeUrl
#980 (frederikprijck)buildLogoutUrl
internal #982 (ewanharris)As with any major version bump, v2 of Auth0-SPA-JS contains a set of breaking changes. Please review the migration guide thoroughly to understand the changes required to migrate your application to v2.
Fixed
Changed