HWIOAuthBundle Versions Save

OAuth client integration for Symfony. Supports both OAuth1.0a and OAuth2.

2.2.0

3 months ago

What's Changed

New Contributors

Full Changelog: https://github.com/hwi/HWIOAuthBundle/compare/2.1.0...2.2.0

2.1.0

6 months ago

What's Changed

New Contributors

For details go and read the CHANGELOG file.

2.0.0

8 months ago

Long awaited 2.0 release!

The main changes:

  • completely reworked resource owners internals,
  • official support for Symfony 6,
  • official support for PHP 8,
  • dropped support for Symfony <5.4,
  • dropped support for PHP <7.4,
  • removed support for FOSUserBundle,

For details go and read the CHANGELOG file.

What's Changed

Full Changelog: https://github.com/hwi/HWIOAuthBundle/compare/2.0.0-BETA3...2.0.0

2.0.0-BETA3

9 months ago

Changelog

  • BC Break: Dropped support for Symfony: 4.4 & 6.0.*,
  • BC Break: Class Templating\Helper\OAuthHelper was merged into Twig\Extension\OAuthRuntime,
  • BC Break: When resource owner class doesn't define TYPE constant or is null, then key will be calculated by converting its class name without ResourceOwner suffix to snake_case, if neither is felt, then \LogicException will be thrown,
  • Deprecated: method UserResponseInterface::getUsername() was deprecated in favour of UserResponseInterface::getUserIdentifier() to match changes in Symfony Security component,
  • Enhancement: @internal resourceOwner oauth types in Configuration are calculated automatically by scandir. All classes extended from GenericOAuth[X]ResourceOwner get oauth[X] type. If class only implements ResourceOwnerInterface then its oauth type is unknown. ResourceOwner key (parameter type in configs) should have defined ResourceOwner::TYPE constant. Each user defined custom ResourceOwner class that implemented ResourceOwnerInterface will be registered automatically. If autoconfigure option is disabled user have to add the tag hwi_oauth.resource_owner to the service definition,
  • Enhancement: Class ConnectController was split into two smaller ones, Connect\ConnectController & Connect\RegisterController,
  • Bugfix: Added OAuth1ResourceOwner & OAuth2ResourceOwner to cover case of implementing custom oauth resource owners,
  • Bugfix: Fixed Authorization Header in CleverResourceOwner::doGetRequest,
  • Bugfix: Catch also the TransportExceptionInterface in AbstractResourceOwner::getResponseContent() method,
  • Bugfix: Current matched Firewall is respected during generation of resource owner check path links,
  • Bugfix: Prevent fatal error in OAuthUserProvider::loadUserByOAuthUserResponse() when nickname is not available in OAuth response,
  • Bugfix: Use newer version of firebase/php-jwt library,
  • Chore: Removed not used Symfony Templating component

What's Changed

New Contributors

Full Changelog: https://github.com/hwi/HWIOAuthBundle/compare/2.0.0-BETA2...2.0.0-BETA3

2.0.0-BETA2

2 years ago

Changelog

  • Deprecated: configuration parameter firewall_names, firewalls are now computed automatically - all firewalls that have defined oauth authenticator/provider will be collected,
  • Added: Ability to automatically refresh expired access tokens (only for derived from GenericOAuth2ResourceOwner resource owners), if option refresh_on_expire set to true,
  • Enhancement: Refresh token listener is disabled by default and will only be enabled if at least one resource owner has option refresh_on_expure set to true,
  • Enhancement: (@internal) Removed/replaced redundant argument $firewallNames from controllers. If controller class was copied and replaced, adapt list of arguments: In controller use $resourceOwnerMapLocator->getFirewallNames(),
  • Bugfix: RefreshTokenListener cannot be lazy. If current firewall is lazy (or anonymous: lazy) then current auth token is often initializing on kernel.response. In this case new access token will not be stored in session. Therefore, the expired token will be refreshed on each request,
  • Bugfix: InteractiveLoginEvent will be triggered also for OAuthAuthenticator,
  • Maintain: Changed config files from *.xml to *.php (services and routes). Xml routing configs connect.xml, login.xml and redirect.xml are steel present but deprecated. Please use *.php variants in your includes instead.

Details What's Changed

New Contributors

Full Changelog: https://github.com/hwi/HWIOAuthBundle/compare/1.4.5...2.0.0-BETA2

2.0.0-BETA1

2 years ago

Changelog

  • BC Break: Dropped PHP 7.3 support,
  • BC Break: Dropped support for Symfony: >=5.1 & <5.4 (still with BC layer included),
  • BC Break: OAuthExtension is now a lazy Twig extension using a Runtime,
  • BC Break: removed support for FOSUserBundle,
  • BC Break: changed process() argument for Form/RegistrationFormHandlerInterface, from Form $form to FormInterface $form,
  • BC Break: changed form class name in template Resources/views/Connect/connect_confirm.html.twig from fos_user_registration_register to registration_register,
  • BC Break: removed configuration option fosub from oauth_user_provider,
  • BC Break: removed configuration options hwi_oauth.fosub, & all related DI parameters,
  • BC Break: removed DI parameter hwi_oauth.registration.form.factory in favour of declaring form class name as DI parameter: hwi_oauth.connect.registration_form,
  • BC Break: changed ResourceOwnerMapInterface::hasResourceOwnerByName signature, update if you use a custom resource owner,
  • BC Break: changed ResourceOwnerMapInterface::getResourceOwnerByName signature, update if you use a custom resource owner,
  • BC Break: changed ResourceOwnerMapInterface::getResourceOwnerByRequest signature, update if you use a custom resource owner,
  • BC Break: changed ResourceOwnerMapInterface::getResourceOwnerCheckPath signature, update if you use a custom resource owner,
  • BC Break: ResourceOwnerMap uses service locator instead of DI container,
  • BC Break: Removed abstract services: hwi_oauth.abstract_resource_owner.generic, hwi_oauth.abstract_resource_owner.oauth1 & hwi_oauth.abstract_resource_owner.oauth2,
  • BC Break: Removed setName() method from OAuth/ResourceOwnerInterface,
  • BC Break: changed __construct() argument for OAuth/ResourceOwner/AbstractResourceOwner, from HttpMethodsClient $httpClient to HttpClientInterface $httpClient,
  • BC Break: replaced php-http/httplug-bundle with symfony/http-client
  • BC Break: removed hwi_oauth.http configuration,
  • BC Break: reworked bundles structure to match Symfony best practices:
    • bundle code moved to: src/,
    • tests moved to: tests/,
    • docs moved from Resources/doc into: docs/,
  • BC Break: routes provided by bundle now have methods requirements:
    • hwi_oauth_connect_service: GET & POST,
    • hwi_oauth_connect_registration: GET & POST,
    • hwi_oauth_connect: GET,
    • hwi_oauth_service_redirect: GET,
  • Added support for PHP 8.1,
  • Added support for Symfony 5.4 & 6.0,

Kudos to "Old" Contributors (random order)

New Contributors

Full Changelog: https://github.com/hwi/HWIOAuthBundle/compare/1.4.5...2.0.0-BETA1

1.4.5

2 years ago

Changelog:

  • Bugfix: Fixed BC break by restoring wrongly moved AbstractOAuthToken::getCredentials() method,

1.4.3

2 years ago

Changelog:

  • Bugfix: Fixed support for PHP 8.1,
  • Bugfix: Fixed support for Symfony 5.4,
  • Bugfix: Fixed VkontakteResourceOwner option: api_version to not point to deprecated one,
  • Bugfix: RequestStack::getMasterRequest() is deprecated since Symfony 5.3, use RequestStack::getMainRequest() if exists,
  • Maintain: Added GenericOAuth1ResourceOwnerTestCase, GenericOAuth2ResourceOwnerTestCase & ResourceOwnerTestCase test case classes for easier unit testing custom resource owners

1.4.2

2 years ago

Changelog:

  • Bugfix: remove @final declaration from OAuthFactory & FOSUBUserProvider,
  • Maintain: added .gitattributes to reduce amount of code in archives,

1.4.1

2 years ago

Changelog:

  • Bugfix: Define missing hwi_oauth.connect.confirmation parameter,
  • Bugfix: Added missing success/failure handlers,