🚀 Features
- Memory adapter - by @Bekacru (148b1)
- Better account linking for anonymous users - by @Bekacru in #461 (420ce)
- Allow ip address headers to be configurable - by @Bekacru in #457 (f76ae)
- Revoke other sessions - by @Bekacru in #459 (d497c)
- Id token auth - by @Bekacru in #463 (9cdda)
- Get active member - by @Bekacru in #445 (f7271)
- Wildcard matching for trusted origins - by @Bekacru (22735)
- OAuth proxy plugin - by @Bekacru in #438 (77a80)
- One tap - by @Bekacru in #419 (2ba15)
🐞 Bug Fixes
- Change URL of get full organization endpoint - by @ianmartorell in #458 (eb34b)
- Add custom rate-limiting rule for change password and email - by @Bekacru (0f14c)
- Cookie cache failing to parse signature - by @Bekacru (e1cdc)
- Search and filter - by @Bekacru in #467 (362c9)
- Twitter provider - by @Bekacru in #462 (7c3fe)
- Mark backup codes for one time use - by @Bekacru in #460 (0f639)
- Change invalid backup code status - by @Bekacru (f691d)
- jwt: Use web crypto api instead of node - by @Bekacru in #456 (9b723)
- Double email validation - by @Bekacru in #442 (b090c)
- OnRequest callback not interrupting requests - by @0scrm in #396 (222fd)
- Svelte type breaking on useSession - by @Bekacru (c0f6b)
- Mysql schema generation stack in introspection - by @Bekacru in #446 (a9462)
- App name shouldn't be used to prefix cookies - by @Bekacru in #447 (2ba2b)
- Remove senstive fields on list accounts from being exposed to the client - by @Bekacru (f09e2)
- Seralize session output - by @Bekacru in #448 (3560a)
- Remove _ prefix from passkey list - by @Bekacru (5aa78)
- Update org should include logo - by @Bekacru (44542)
- Gitlab code challenge sohuld be authorized - by @Bekacru (7ac2b)
- Add requireHeaders to sign out api - by @taylorfsteele in #453 (24680)
- Svelte hook resovle - by @Bekacru (aa15a)
- Recreate session for 2fa verification - by @Bekacru in #449 (0486b)
- Make image optional in organization plugin - by @oglassdev in #437 (3f99f)
- Mongodb conflicting ids - by @Bekacru in #413 (1abd0)
- Throw should be inferred properly - by @Bekacru (72de8)
- annonymous: IsAnnon shouldn't be true by default - by @Bekacru (ee41f)
- mongodb-adapter: Remove id - by @Bekacru (477e9)
- Callback url failing on invalid url - by @Bekacru (bb70b)
- Only specefiy fields if they are defined - by @Bekacru in #401 (45bf6)
- Account linking should use link flag - by @Bekacru in #405 (a0cf7)
- Tsc failing on deployment - by @Bekacru in #407 (6c1b1)
- Throw APIError if a plugin doesn't intercept it - by @Bekacru (e775f)
- two-factor: Require password for sensitive endpoints and fix backup code generating errors - by @Bekacru in #402 (d8492)