v2.0.2 (2020-09-26)
Implemented enhancements:
- Refresh Token Cookie name should be configurable #334
- Token Refresh Cookie max-age should be configurable #333
- Logout Handler should also clear JWT_REFRESH_TOKEN cookie and invalidate token #332
- Limit JWT_REFRESH_TOKEN cookie paths #331
- feat: add introspection endpoint #405 (@sdelamo)
Closed issues:
- Support HttpRequest as a method parameter in JWTClaimsValidator #381
- Multiple Login Handler #374
- JWT "secure" and "SameSite" configs seem to be ignored #369
- Add Release History section to Micronaut security documentation #366
Merged pull requests:
- refactor: split DefaultOpenIdAuthorization methods #404 (@sdelamo)
- checkstyle: remove unused import #400 (@sdelamo)
- refactor: extract basic auth parsing to its own class #399 (@sdelamo)
- bump up micronaut test to 2.1.0 #398 (@micronaut-build)
- Improve refresh token cookie story. Closes #334 #333 #332 #331 #397 (@jameskleeh)
- refactor: add request to jwt claims validator #396 (@sdelamo)
- ci: set github core branch to 2.1.x #395 (@sdelamo)
- build: version to 2.1.0.BUILD-SNAPSHOT #394 (@sdelamo)
- doc: Add release History section #392 (@sdelamo)
- git: gitignore .nova #391 (@sdelamo)
- nimbus-jose-jwt from 8.20 to 9.0.1 #379 (@dependabot[bot])
* This Changelog was automatically generated by github_changelog_generator
- Session not saved during calling OAuth callback (#319)