This release provides improvements for authorization behavior:
- Added a custom Unauthorized Handler
- If logged user access unauthorized url he is redirected to referer url or '/' if no referer url
- If not logged user access unauthorized url he is redirected to configured url (default to login)
- on login we only use the redirect url from querystring 'redirect' if user can access the target url
- App can configure a callable for 'url' option to define a custom logic to retrieve the url for unauthorized redirect
- Added postLink method to AuthLinkHelper
- UserHelper::welcome now works with request's attribute 'identity'