better-auth 1.2.4

v1.2.4

on Node.js NPM

   🚀 Features

• Support promise return trusted origins  -  by @Bekacru (f743c)
• Support reverse proxied base URLs  -  by @Bekacru in #1788 (36a7d)
• Add Kick social provider  -  by @deestt in #1702 (44078)
• account: Multiple account with the same provider  -  by @Kinfe123 in #1803 (4ba4a)
• admin: Custom banned user error message  -  by @Bekacru in #1692 (2ca71)
• generic-oauth: Allow basic auth  -  by @beermonsterdota in #1808 (95cb5)
• oidc-provider: Implement OIDC rfc7591 compliant /register endpoint  -  by @remorses in #1732 (2a495)
• organization: Allow passing teamId in addMember  -  by @Netrifier in #1794 (cc053)

   🐞 Bug Fixes

• Update session cookie after in place email change  -  by @Bekacru (fb0a8)
• Lowercase email in change email process, find as it is  -  by @hyoban in #1695 (c3a37)
• Should consitently use defaultErrorURL for fallback error redirections  -  by @Bekacru (64727)
• Use account ID instead of compound key for account unlinking  -  by @Bekacru (f44ba)
• Accept secure cookie flag on getSessionCookie helper  -  by @ahmed-m-abbass in #1716 (c8de1)
• Remove otp code from the response of send phone number otp  -  by @Bekacru (846ee)
• Use subscription Id to fetch the current active subscription from stripe  -  by @x751685875 in #1770 (ace8f)
• On change email request for unverified emails should use the newEmail on verification token payload  -  by @Bekacru in #1801 (6efc7)
• admin:
  • Fetch session on has permission checks  -  by @Bekacru (e4f15)
  • Only evaluate permissions for access control  -  by @Bekacru (388dd)
• api-key:
  • Creating API keys metadata always returns null  -  by @ping-maxwell in #1698 (0ffbb)
  • Results of verify endpoint's metadata isn't parsed  -  by @ping-maxwell in #1719 (e4aa6)
• drizzle-adapter:
  • Add lt and lte query operators  -  by @Bekacru (c71ca)
• jwt:
  • Use context.secret instead of relying on user passed secret to not fail on build  -  by @Bekacru (ea81d)
  • Improve private key decryption error handling  -  by @Bekacru (4d5bc)
• multi-session:
  • Return only unique user sessions  -  by @Bekacru (97a4c)
  • Use small cased cookie name inside revoke endpoint  -  by @ahmed-m-abbass in #1783 (284d4)
• oauth:
  • Remove state value on expiry  -  by @Bekacru (45dab)
• organization:
  • Remove unused schema type and make team creator optional  -  by @Bekacru (c5c5b)
  • Custom permissions access control type inference breaking on the client  -  by @Bekacru (c051c)
  • Use membership limit to fetch members user data  -  by @Bekacru (535c9)
  • Properly throw error on update organization  -  by @Bekacru (e9993)
  • Check permission types and support multiple permission on hasPermissions checks  -  by @Bekacru (59765)
  • Multiple role array not referenced properly  -  by @Netrifier in #1792 (3af31)
• phone-number:
  • Prevent duplicate phone number update  -  by @Bekacru (f7edb)
• rate-limiter:
  • Use better path extraction for rate limiting  -  by @Bekacru (b6e17)
• roblox:
  • MapProfileToUser should run before returning user info  -  by @ping-maxwell in #1706 (5c94c)
• stripe:
  • Convert subscription period timestamps to Date objects  -  by @Bekacru (0d6b4)
  • Webhook constructor should use async version  -  by @BlueLightStudio in #1664 (46dcd)
  • Add origin check on success callback  -  by @Bekacru (d3d10)
  • Inconsistent referenceId usage  -  by @Bekacru in #1736 (0ce3f)
  • Call onCustomerCreate callback handle error logging  -  by @Bekacru (21fea)
  • Rely on subscription Id instead of reference ID for subscriptions  -  by @Bekacru in #1789 (35fe9)
• two-factor:
  • Custom user options should be passed to backup code generator  -  by @Wundero in #1688 (88bab)
• types:
  • Passing body breaking fetchOptions throw:true inference  -  by @Bekacru (3ae3c)

    View changes on GitHub