Authentication plugin for CakePHP. Can also be used in PSR7 based applications.
Full Changelog: https://github.com/cakephp/authentication/compare/3.0.2...3.0.3
Full Changelog: https://github.com/cakephp/authentication/compare/2.10.1...2.10.2
Full Changelog: https://github.com/cakephp/authentication/compare/3.0.0...3.0.2
First version compatible with CakePHP 5.0
Full Changelog: https://github.com/cakephp/authentication/compare/2.10.1...3.0.0
Full Changelog: https://github.com/cakephp/authentication/compare/2.10.0...2.10.1
AuthenticationComponent
identityCheckEvent
option by @Erwane in https://github.com/cakephp/authentication/pull/555
null
value causing a type error in the password identifier. by @ndm2 in https://github.com/cakephp/authentication/pull/542
Full Changelog: https://github.com/cakephp/authentication/compare/2.9.0...2.10.0
Full Changelog: https://github.com/cakephp/authentication/compare/2.8.0...2.9.0
This release changes the default stored token for Cookie Authenticator. The token is now comprised of hash(username + password-hash + hmac(username + password, salt))
. This helps prevent forged tokens from being created in case an application database is compromised. This change will invalidate all existing cookie tokens. If you do not desire that, be sure to set salt => false
in your configuration for CookieAuthenticator
Full Changelog: https://github.com/cakephp/authentication/compare/2.7.0...2.8.0
algorithms
in favour of only using a single algorithm in JwtAuthenticator. by @markstory, @ADmad, @pabloelcolombiano in https://github.com/cakephp/authentication/pull/500
Full Changelog: https://github.com/cakephp/authentication/compare/2.6.2...2.7.0
Full Changelog: https://github.com/cakephp/authentication/compare/2.6.1...2.6.2