All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
- Fix: Avoid errors when email key is not present in token payload.
Note: This project has new maintainers.
v0.6.0 is a significant release.
Please test thoroughly before deploying this upgrade.
- Breaking: Require Ueberauth
v0.10. - Breaking: Use Ueberauth for handling state parameters.
This requires Ueberauth
v0.7, even if overridden. - Breaking: Enforce
SameSite=NoneandSecureattributes on the state cookie. This is required for Apple's distinctform_postresponses. - Add: Allow setting the
response_modein the provider configuration. This may automatically be overridden depending on thescopesrequested. - Add: Add tests and GitHub Actions for CI.
- Fix: Extract the email address from non-initial callbacks. Before this change, it was only possible to view the email address during the very first callback from Apple. Now, it can be extracted on every login.
- Fix: Resolve warnings related to configuration and startup applications.
- Fix: Allow
httpoison ~> 2.0.
The following releases were created by the project's previous maintainers.
Note: this version was not released to Hex.pm.
- Add: JSON serializer for compatibility with OAuth 2.0.
- Add:
response_modeparam, which is required to beform_postwhen requesting scopes.
- Add: Get user object from callback response.
- Allows using a function to generate the client secret
- Apple changed its public keys endpoint. It now returns multiple public keys
- Initial release