π¬ Call for Redwood product and startup demos
Redwood 1.0.0 will arrive within the month. Weβre planning the first RedwoodJS Startup Showcase, full of demos and panels, highlighting the amazing people and projects using Redwood. Want to demo? Let's talk! Just take a look at this forum post and complete the submission form.
π¬Help QA the new Redwood Tutorials
Both Tutorials I and II have been re-written for v1. We need your help making sure that every "i" is dotted and "t" is crossed. If you're interested in helping, check out the details here.
Changelog
Unique contributors: 4
PRs merged: 7
Features
- Implement dbAuth CORS support + Add cookie options to auth handler #4150 by @dac09
- DEPRECATION Warning: see "dbAuth Cookie Configuration" section below
- Codemod for webhook verifier option renaming #4675 by @Tobbe
Fixed
- jscodeshift and webhook verifier doc updates #4658 by @Tobbe
- Make upgrade-yarn codemod more robust by preparing yarn version #4662 by @jtoar
- Clear up dev log in error page #4671 by @callingmedic911
Chore
- Remove yarn 3 project deps script #4637 by @jtoar
- Mod upgrade yarn codemod to handle CI #4659 by @jtoar
Package Dependencies
View all Dependency Version Upgrades
- Update dependency esbuild to v0.14.25 #4657 by @renovate
- Update dependency @clerk/clerk-js to v2.17.0 #4660 by @renovate
- Update dependency @clerk/types to v1.28.0 #4661 by @renovate
- Update dependency css-loader to v6.7.0 #4663 by @renovate
- Update dependency @clerk/clerk-js to v2.17.1 #4664 by @renovate
- Update dependency @clerk/clerk-sdk-node to v2.9.5 #4665 by @renovate
- Update dependency @clerk/types to v1.28.1 #4666 by @renovate
- Update dependency @clerk/clerk-sdk-node to v2.9.6 #4667 by @renovate
- Update dependency firebase to v9.6.8 #4668 by @renovate
- Update dependency @supabase/supabase-js to v1.31.0 #4677 by @renovate
- Update dependency @auth0/auth0-spa-js to v1.20.1 #4682 by @renovate
- Update dependency fastify to v3.27.3 #4683 by @renovate
- Update dependency magic-sdk to v8.1.0 #4684 by @renovate
- Update dependency @azure/msal-browser to v2.22.1 #4686 by @renovate
- Update typescript-eslint monorepo to v5.14.0 #4687 by @renovate
Recommended Code Modification
dbAuth Cookie Configuration
If you are using dbAuth, we've moved the configuration for the dbAuth cookie alongside the rest of the configuration in api/src/functions/auth.js. The original configuration, which was internal to Redwood itself, is now deprecated. If you do not add this cookie config to auth.js your app will continue to work for now, but will show a deprecation notice in your api logs. The old behavior will be removed in a future version of Redwood.
To preserve the existing cookie settings, add the cookie property to the options sent into new DbAuthHandler():
const authHandler = new DbAuthHandler(event, context, {
db: db,
authModelAccessor: 'user',
authFields: {
id: 'id',
username: 'email',
hashedPassword: 'hashedPassword',
salt: 'salt',
resetToken: 'resetToken',
resetTokenExpiresAt: 'resetTokenExpiresAt',
},
forgotPassword: forgotPasswordOptions,
login: loginOptions,
resetPassword: resetPasswordOptions,
signup: signupOptions,
+ cookie: {
+ HttpOnly: true,
+ Path: '/',
+ SameSite: 'Strict',
+ Secure: true,
+ // Domain: 'example.com',
+ },
})The cookie Domain is now set here instead of in an ENV var. When do you need to set Domain? If your web side and api side are served from different domains (such as www.example.com and api.example.com). To read more about Domain config: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies#restrict_access_to_cookies