Packages
ash_authentication
3.7.8
5.0.0-rc.12
5.0.0-rc.11
5.0.0-rc.10
5.0.0-rc.9
5.0.0-rc.8
5.0.0-rc.7
5.0.0-rc.6
5.0.0-rc.5
5.0.0-rc.4
5.0.0-rc.3
5.0.0-rc.2
5.0.0-rc.1
5.0.0-rc.0
4.14.1
4.14.0
4.13.7
4.13.6
4.13.5
4.13.4
4.13.3
4.13.2
retired
4.13.1
retired
4.13.0
4.12.0
4.11.0
4.10.0
4.9.9
4.9.8
4.9.7
4.9.6
4.9.5
4.9.4
4.9.3
4.9.2
4.9.1
4.9.0
4.8.7
4.8.6
4.8.5
4.8.3
4.8.2
4.8.1
4.8.0
4.7.6
4.7.5
4.7.4
4.7.3
4.7.2
4.7.1
4.7.0
4.6.4
4.6.3
4.6.2
4.6.1
4.6.0
4.5.6
4.5.5
4.5.4
4.5.3
4.5.2
4.5.1
4.5.0
4.4.9
4.4.8
4.4.7
4.4.6
4.4.5
4.4.4
4.4.3
4.4.2
4.4.1
4.4.0
4.3.12
4.3.11
4.3.10
4.3.9
4.3.8
4.3.7
4.3.6
4.3.5
4.3.4
4.3.3
4.3.2
4.3.1
4.3.0
4.2.7
4.2.6
4.2.5
4.2.4
4.2.3
4.2.2
4.2.1
4.2.0
4.1.0
4.0.4
4.0.3
4.0.2
4.0.1
4.0.0
4.0.0-rc.6
4.0.0-rc.5
4.0.0-rc.3
4.0.0-rc.2
4.0.0-rc.1
4.0.0-rc.0
3.12.4
3.12.3
3.12.2
3.12.1
3.12.0
3.11.16
3.11.15
3.11.14
3.11.13
3.11.12
3.11.11
3.11.10
3.11.9
3.11.8
3.11.7
3.11.6
3.11.5
3.11.4
3.11.3
3.11.2
3.11.1
3.11.0
3.10.8
3.10.7
3.10.6
3.10.5
3.10.4
3.10.3
3.10.2
3.10.1
3.10.0
3.9.6
3.9.5
3.9.4
3.9.3
3.9.2
3.9.1
3.9.0
3.8.0
3.7.9
3.7.8
3.7.6
3.7.5
3.7.4
3.7.3
3.7.2
3.7.1
3.7.0
3.6.1
3.6.0
3.5.3
3.5.2
3.5.1
3.5.0
3.3.1
3.3.0
3.2.2
3.2.1
3.2.0
3.1.0
3.0.3
Authentication extension for the Ash Framework.
Security advisory:
This version has known vulnerabilities.
View advisories
Current section
Files
Jump to
Current section
Files
ash_authentication
CHANGELOG.md
CHANGELOG.md
# Change Log
All notable changes to this project will be documented in this file.
See [Conventional Commits](Https://conventionalcommits.org) for commit guidelines.
<!-- changelog -->
## [v3.7.8](https://github.com/team-alembic/ash_authentication/compare/v3.7.7...v3.7.8) (2023-02-08)
### Bug Fixes:
* resources can appear in multiple apis, so we need to uniq them here (#169)
* put_add_on/2 was putting into strategies
### Improvements:
* Strategy.Custom: handle custom strategies as extensions. (#183)
* improve error message for badly formed token secrets (#181)
* add metadata declarations to actions that have a `token` (#164)
* validate signing secret is a string (#163)
## [v3.7.7](https://github.com/team-alembic/ash_authentication/compare/v3.7.6...v3.7.7) (2023-02-06)
### Bug Fixes:
* resources can appear in multiple apis, so we need to uniq them here (#169)
* put_add_on/2 was putting into strategies
### Improvements:
* improve error message for badly formed token secrets (#181)
* add metadata declarations to actions that have a `token` (#164)
* validate signing secret is a string (#163)
## [v3.7.6](https://github.com/team-alembic/ash_authentication/compare/v3.7.5...v3.7.6) (2023-01-30)
### Bug Fixes:
* resources can appear in multiple apis, so we need to uniq them here (#169)
* put_add_on/2 was putting into strategies
### Improvements:
* add metadata declarations to actions that have a `token` (#164)
* validate signing secret is a string (#163)
## [v3.7.5](https://github.com/team-alembic/ash_authentication/compare/v3.7.4...v3.7.5) (2023-01-30)
### Improvements:
* add metadata declarations to actions that have a `token` (#164)
* validate signing secret is a string (#163)
## [v3.7.4](https://github.com/team-alembic/ash_authentication/compare/v3.7.3...v3.7.4) (2023-01-30)
### Improvements:
* validate signing secret is a string (#163)
## [v3.7.3](https://github.com/team-alembic/ash_authentication/compare/v3.7.2...v3.7.3) (2023-01-18)
### Bug Fixes:
* Password: validate fields using both methods of allowing nil input. (#151)
## [v3.7.2](https://github.com/team-alembic/ash_authentication/compare/v3.7.1...v3.7.2) (2023-01-18)
### Improvements:
* AuthenticationFailed: store a `caused_by` value in authentication failures. (#145)
## [v3.7.1](https://github.com/team-alembic/ash_authentication/compare/v3.7.0...v3.7.1) (2023-01-18)
### Improvements:
* update ash & switch to new docs patterns (#146)
## [v3.7.0](https://github.com/team-alembic/ash_authentication/compare/v3.6.1...v3.7.0) (2023-01-18)
### Features:
* PasswordValidation: Add a validation which can check a password. (#144)
## [v3.6.1](https://github.com/team-alembic/ash_authentication/compare/v3.6.0...v3.6.1) (2023-01-15)
### Bug Fixes:
* don't call `hash_provider.valid?` on `nil` values (#135)
* use configured hashed_password_field
### Improvements:
* set confirmed field to `nil`, for reconfirmation (#136)
* set confirmed field to `nil`, for reconfirmation
* only change `confirmed_at_field` if its not changing, and only on updates
## [v3.6.0](https://github.com/team-alembic/ash_authentication/compare/v3.5.3...v3.6.0) (2023-01-13)
### Breaking Changes:
* TokenResource: Store the token subject in the token resource. (#133)
* TokenResource: Store the token subject in the token resource.
### Bug Fixes:
* don't call `hash_provider.valid?` on `nil` values (#135)
* use configured hashed_password_field
## [v3.5.3](https://github.com/team-alembic/ash_authentication/compare/v3.5.2...v3.5.3) (2023-01-13)
### Bug Fixes:
* Confirmation: send the original changeset to confirmation senders. (#132)
## [v3.5.2](https://github.com/team-alembic/ash_authentication/compare/v3.5.1...v3.5.2) (2023-01-12)
### Improvements:
* add user context when creating tokens (#129)
## [v3.5.1](https://github.com/team-alembic/ash_authentication/compare/v3.5.0...v3.5.1) (2023-01-12)
### Bug Fixes:
* missing icons in OAuth2 strategies. (#126)
## [v3.5.0](https://github.com/team-alembic/ash_authentication/compare/v3.4.2...v3.5.0) (2023-01-12)
### Breaking Changes:
* GitHub: Add GitHub authentication strategy. (#125)
## [v3.4.2](https://github.com/team-alembic/ash_authentication/compare/v3.4.1...v3.4.2) (2023-01-12)
### Bug Fixes:
* improve some error message/validation logic
### Improvements:
* add policy utilities and accompanying guide (#119)
* add policy utilities and accompanying guide
* fix build/warnings/dialyzer/format
## [v3.4.1](https://github.com/team-alembic/ash_authentication/compare/v3.4.0...v3.4.1) (2023-01-12)
### Bug Fixes:
* Confirmation: correctly generate confirmation token subjects. (#124)
## [v3.4.0](https://github.com/team-alembic/ash_authentication/compare/v3.3.1...v3.4.0) (2023-01-11)
### Features:
* Add token-required-for-authentication feature. (#116)
## [v3.3.1](https://github.com/team-alembic/ash_authentication/compare/v3.3.0...v3.3.1) (2023-01-09)
### Improvements:
* Set Ash actor and tenant when executing internal plugs. (#115)
## [v3.3.0](https://github.com/team-alembic/ash_authentication/compare/v3.2.2...v3.3.0) (2023-01-09)
### Features:
* Make strategy names optional where possible. (#113)
## [v3.2.2](https://github.com/team-alembic/ash_authentication/compare/v3.2.1...v3.2.2) (2023-01-08)
### Improvements:
* Allow the strategy name to be passed for password validations and changes. (#102)
## [v3.2.1](https://github.com/team-alembic/ash_authentication/compare/v3.2.0...v3.2.1) (2022-12-16)
### Improvements:
* add `icon` field to OAuth2 strategy. (#100)
## [v3.2.0](https://github.com/team-alembic/ash_authentication/compare/v3.1.0...v3.2.0) (2022-12-16)
### Features:
* Auth0: Add a pre-configured Auth0 strategy. (#99)
## [v3.1.0](https://github.com/team-alembic/ash_authentication/compare/v3.0.4...v3.1.0) (2022-12-14)
### Breaking Changes:
* Jwt: Use token signing secret into the DSL.
### Features:
* Add option to store all tokens when they're created. (#91)
### Improvements:
* remove the need for a strategy in changeset/query contexts. (#89)
* add transaction reason
* try a simpler way of ensuring module is compiled
## [v3.0.4](https://github.com/team-alembic/ash_authentication/compare/v3.0.3...v3.0.4) (2022-12-08)
### Improvements:
* update to latest ash version
## [v3.0.3](https://github.com/team-alembic/ash_authentication/compare/v3.0.2...v3.0.3) (2022-12-07)
### Bug Fixes:
* break potential compiler dependency loops. (#64)
## [v3.0.2](https://github.com/team-alembic/ash_authentication/compare/v3.0.1...v3.0.2) (2022-12-05)
### Improvements:
* supervisor: require that the user adds the supervisor to their OTP app. (#62)
## [v3.0.1](https://github.com/team-alembic/ash_authentication/compare/v3.0.0...v3.0.1) (2022-12-05)
### Improvements:
* actions: All actions now take optional arguments for the underlying API call. (#61)
## [v3.0.0](https://github.com/team-alembic/ash_authentication/compare/v2.0.1...v3.0.0) (2022-12-04)
### Breaking Changes:
* TokenResource: Move `TokenRevocation` -> `TokenResource`.
### Improvements:
* Confirmation: Store confirmation changes in the token resource.
## [v2.0.1](https://github.com/team-alembic/ash_authentication/compare/v2.0.0...v2.0.1) (2022-11-24)
### Improvements:
* Confirmation: Confirmation is not a strategy. (#46)
* Confirmation: Confirmation is not a strategy.
* Confirmation: Support more than one confirmation entity.
## [v2.0.0](https://github.com/team-alembic/ash_authentication/compare/v1.0.0...v2.0.0) (2022-11-22)
### Breaking Changes:
* Major redesign of DSL and code structure. (#35)
## [v1.0.0](https://github.com/team-alembic/ash_authentication/compare/v0.6.1...v1.0.0) (2022-11-15)
### Breaking Changes:
* OAuth2Authentication: Make the `site` option runtime configurable. (#31)
## [v0.6.1](https://github.com/team-alembic/ash_authentication/compare/v0.6.0...v0.6.1) (2022-11-15)
### Bug Fixes:
* OAuth2Authentication: Return the failure reason even if it's not a changeset. (#29)
## [v0.6.0](https://github.com/team-alembic/ash_authentication/compare/v0.5.0...v0.6.0) (2022-11-10)
### Features:
* OAuth2Authentication: Add support for generic OAuth2 endpoints. (#28)
## [v0.5.0](https://github.com/team-alembic/ash_authentication/compare/v0.4.3...v0.5.0) (2022-11-04)
### Features:
* Confirmation: Add extension that allows a user to be confirmed when created or updated. (#27)
## [v0.4.3](https://github.com/team-alembic/ash_authentication/compare/v0.4.2...v0.4.3) (2022-11-03)
### Improvements:
* docs: Improve endpoint docs for PasswordAuthentication and PasswordReset.
## [v0.4.2](https://github.com/team-alembic/ash_authentication/compare/v0.4.1...v0.4.2) (2022-11-03)
### Bug Fixes:
* PasswordReset: Generate the reset token using the target action, not the source action. (#25)
* PasswordReset: Generate the reset token using the target action, not the source action.
### Improvements:
* PasswordReset: rework PasswordReset to be a provider in it's own right - this means it has it's own routes, etc.
## [v0.4.1](https://github.com/team-alembic/ash_authentication/compare/v0.4.0...v0.4.1) (2022-11-03)
### Improvements:
* PasswordReset: A reset request is actually a query, not an update. (#23)
## [v0.4.0](https://github.com/team-alembic/ash_authentication/compare/v0.3.0...v0.4.0) (2022-11-02)
### Features:
* PasswordReset: allow users to request and reset their password. (#22)
## [v0.3.0](https://github.com/team-alembic/ash_authentication/compare/v0.2.1...v0.3.0) (2022-10-31)
### Features:
* Ash.PlugHelpers: Support standard actor configuration. (#16)
* Ash.PlugHelpers: Support standard actor configuration.
### Improvements:
* docs: change all references to `actor` to `user`.
## [v0.2.1](https://github.com/team-alembic/ash_authentication/compare/v0.2.0...v0.2.1) (2022-10-26)
### Bug Fixes:
* deprecation warnings caused by use of `Macro.expand_literal/2`.
### Improvements:
* move subject_name uniqueness validation to compile time.
* remove `generated: true` from macros.
## [v0.2.0](https://github.com/team-alembic/ash_authentication/compare/v0.1.0...v0.2.0) (2022-10-24)
### Features:
* PasswordAuthentication: Registration and authentication with local credentials (#4)
## [v0.1.0](https://github.com/team-alembic/ash_authentication/compare/v0.1.0...v0.1.0) (2022-09-27)