Changelog
All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
[Unreleased]
v0.3.1 - 2022-08-12
- Support multi-tenant applications by allowing dynamic Okta configs in the conn (Thanks @ryanzidago :heart:)
v0.3.0 - 2021-07-30
Potentially breaking changes
- bump
ueberauth
0.7.0 - If you require >= 0.6 then you may need to adjust things before updating- support CSRF attack protection bia the
with_state_param
from ueberauth (thanks @Jonathan-Arias!)
- support CSRF attack protection bia the
v0.2.1 - 2021-06-01
No breaking changes
- Fix some compiler warnings (Thanks @zillou!)
- Bump development/release deps
v0.2.0 - 2020-10-19
Addresses issues between Okta API and OAuth2 implementation (Thanks @Deconstrained)
- The client credentials are included in both the body (params) and in the basic authorization header; Okta will issue a 403 in response to this.
- Okta's response containing the access token is JSON-encoded, and since oauth2 does not by default support the JSON mimetype, the JSON string containing the token is treated as the token itself, which results in a 401 when making the final request to authenticate the user back to Okta.
v0.1.0 - 2018-04-25
- Initial Release