Bug Fixes
- Add audience to requests (#222, #239) (@kazazes)
- Set extended for body-parser urlencoded to prevent the deprecation warning (#199) (@tobyryuk)
- Remove trailing slash from redirect paths (#235) (@sghgh1996)
- Handle mounted errors during init (#234) (@gotoin)
- Prevent
loggedInbeing incorrectly set to true (#346) (@glennjacobs, @alexbonhomme, @t-matsu-j) - Replace deprecated
process.browserwithprocess.client(#269) (@sschadwick) - Preserve query params when redirecting (#193) (@mathieutu)
New Features
- Add
resetOnError(#197) (@ishitatsuyuki) - Add
setUserToken(#278) (@dgwight) - Use strategy tokenName for
requestWith(#301) (@terion-name, @farnabaz) - Support passing extra query params (#358) (@rchl)
- Generate nounce for
id_tokenresponse type (#298) (@jefer590) - Add guest option in auth middleware (#264) (@ricardogobbosouza)
- Accept
stateandnonceasloginargs (e5579e9) - Support
onRedirecthook (#185) (@paulgv) - Improve storage and support server-set cookies (#360) (huge thanks to @MathiasCiarlo)
Docs
Thanks to @3vilArthas, @af12066, @ansidev, @aretw0, @chettapong, @drewjbartlett, @f213, @farnabaz, @jahangirahmad, @LeCoupa, @NinthAutumn, @PJLindsay, @potato4d, @rodgarcia, @sgarner, @shadowlion, @sobolevn, @timmyg, @tomsaleeba for contributing to the docs ❤️