🚀 Features
- Multi session plugin - by @Bekacru in #204 (05fd1)
- JWT & JWKS Plugin - by @KaanMol in #178 (30906)
- Change email flow - by @Bekacru in #222 (5ad8a)
- admin plugin: Add filter support for listing users - by @Chris-Kode (5e901)
- Custom id generation - by @Bekacru in #221 (6826e)
- Add support plural flag for mongo db adapter - by @Bekacru in #212 (e1898)
- Support useSession ssr for nuxt - by @Bekacru in #209 (ab0d9)
- Kysley generate and orm migrations - by @Bekacru (5fb78)
- Support magic link signup - by @Bekacru (5ee9f)
- Infer trusted origins from env - by @Bekacru (b3b2f)
- Move to noble hash scrypt impl - by @Bekacru (256c8)
- Kysley generate and orm migrations - by @Bekacru (5fb78)
- Move two factor plugin to use a secondary table - by @Bekacru (e5103)
- Dynamic table name support for plugins - by @Bekacru (11912)
- Use secondary storage as primary for sessions - by @Bekacru (d4d78)
- Bearer token encrypted value support - by @Bekacru (84a67)
- Resolve sveltekit $env modules, add lib/server to possible config paths - by @enchart in #161 (2e6e1)
- Add onError and throw error options for APIError - by @Bekacru in #162 (b145d)
- Admin plugin options - by @Bekacru (0bb56)
🐞 Bug Fixes
- BasePath should be inferred on for vue client - by @Bekacru (bdb7e)
- Only create a response if there are after plugins - by @Bekacru (8874b)
- Forget-password token should be infered on the server - by @Bekacru (6a018)
- Magic link should verify user email - by @Bekacru in #217 (16585)
- Facebook provider - by @Bekacru (37ec9)
- Verify email shouldn't require credential account - by @Bekacru (2b568)
- Csrf token verification - by @NitrinCloud in #197 (0f229)
- Add picture claim for twitch - by @Bekacru (27e02)
- Remove csrf token from cache - by @Bekacru (70e67)
- Send verification before creating session on signup - by @Bekacru (b97ad)
- Email verified should not be infered from a trusted provider - by @Bekacru (4795b)
- False prod env detection - by @Bekacru (1c8ea)
- Infer redirect and respect redirect uri - by @Bekacru in #195 (7e2e8)
- OAuth flow errors - by @Bekacru in #189 (1d77d)
- Verify email redirection - by @Bekacru (40817)
- Missing header on APIError - by @Bekacru (5b6a0)
- Field names - by @Bekacru (ce3f4)
- Custom account-fields - by @Bekacru in #190 (351a3)
- Support creating credential account on forget password - by @Bekacru in #191 (86ea2)
- Twofactor id constriant fail - by @Bekacru (feb28)
- Move admin plugin to use ctx json response - by @Bekacru (1a12e)
- Env missing on migrate - by @Bekacru (54d01)
- Inforce callback origins - by @Bekacru (b07ae)
- Move redirect url protection to a middleware - by @Bekacru (b7421)
- Missing export - by @Bekacru (56a53)
- Additional fields plugin breaking client api inference - by @Bekacru (9c88e)
- Dont require a header on sign-in - by @Bekacru (db4c1)
- Plugin api failing on empty context - by @Bekacru (ef262)
- Prisma update failing on multiple where clauses - by @Bekacru (675e7)
- Nextjs adapter type error on additional fields - by @Bekacru (22999)
- Assert state is short enough to be stored in cookie - by @Bekacru (0f218)
- Dbhooks should apply to secondary storages - by @Bekacru (42c87)
- Session should be returned manually from secondary storage - by @Bekacru (69572)
- Change the verification email option - by @Bekacru (65fd6)
- Session max age being overriden by old values - by @Bekacru (8e86d)
- Global db hooks should be added last - by @Bekacru (54398)
- Missing export - by @Bekacru (52d14)
- Remove remember me from generic oauth - by @Bekacru (b5f08)