srizan/archived-next-auth
1
0
Fork 0
mirror of https://github.com/SrIzan10/next-auth.git synced 2026-05-01 10:55:20 +00:00
Code Issues Packages Projects Releases Wiki Activity
2,126 Commits 57 Branches 511 Tags
@auth/solid-start@0.1.1
Commit Graph

2126 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Iain Collins
475f0e7b51 Update documentation 2020-07-27 05:20:34 +01:00
Iain Collins
a9131724d6 Update copy on homepage 2020-07-27 05:20:34 +01:00
Iain Collins
55bfb6d9dc Update docs 2020-07-27 05:20:34 +01:00
Iain Collins
af3da3abf8 Fix linting errors 2020-07-27 05:20:34 +01:00
Iain Collins
339d9f2d03 CSS tweaks 2020-07-27 05:20:34 +01:00
Iain Collins
a24fb8b380 Update JWT documentation and FAQs 2020-07-27 05:20:34 +01:00
Iain Collins
65319e3927 Update JWT defaults 
* Set encryption: false  by default
 * Use 64 bit input for generated signing key
 2020-07-27 05:20:34 +01:00
Iain Collins
19917972ef Review JWT comments; enable zip encoding 2020-07-27 05:20:34 +01:00
Iain Collins
c1b412814a WIP refactor JWT based on feedback 2020-07-27 05:20:34 +01:00
Iain Collins
53ea8407ea Remove default iss check (makes it optional) 2020-07-27 05:20:34 +01:00
Iain Collins
66f46e8cc7 Use URL to ensure secret is unique per instance 2020-07-27 05:20:34 +01:00
Iain Collins
fec69a21be Refactor JWT payload to use claims 
Resovles #224
 2020-07-27 05:20:34 +01:00
Iain Collins
505ebb8ae1 Clean up cruft in JWT class; add comments 2020-07-27 05:20:34 +01:00
Iain Collins
fb4381d8eb Implement JWE 2020-07-27 05:20:34 +01:00
Iain Collins
4772f5b571 WIP evaluating JWE solutions 2020-07-27 05:20:34 +01:00
Iain Collins
481db425d6 WIP Add JWE 
Working implementation (with limited key length and no exp check) using node-jose from Cisco.

I want to compare it panva/jose which has more features before building it out.
 2020-07-27 05:20:34 +01:00
Iain Collins
b886729bb8 Update version to 3.0.0-beta.18 2020-07-27 05:20:34 +01:00
Iain Collins
3a21a9c9f1 Enforce HMAC-256 on JWT 
Now that we are going to expose the option to disable encryption on tokens we need to enforce the algorithm is valid (e.g. not 'None' or 'RSA') to prevent vultrabilties being exploited by tampering with the token.

Custom encode/decode routines can be specified if someone needs to use another algorithm.
 2020-07-27 05:20:34 +01:00
Iain Collins
9e4a6fec59 Update JWT and session docs 2020-07-27 05:20:34 +01:00
Iain Collins
86921022dc Refactor JWT support 
* Adds option to disable encryption
* Easy to add custom helper
* Removed getJWT helper
* Added getToken helper
* Helper does not fallback to trying non-prefixed cookie on HTTPS sites
* Supports bearer tokens in HTTP header on helper #397
 2020-07-27 05:20:34 +01:00
Iain Collins
f57f11e6ff Bump version to 3.0.0-beta.17 2020-07-27 05:20:34 +01:00
Iain Collins
77ad6bd97e Update FAQ 2020-07-27 05:20:34 +01:00
Iain Collins
78c7041b3f Improve docs site on mobile 2020-07-27 05:20:34 +01:00
Iain Collins
99edead0f2 Add FAQ 2020-07-27 05:20:34 +01:00
Iain Collins
b0b3dbc0fc Add provider icons to homepage 2020-07-27 05:20:34 +01:00
Iain Collins
8b5af54e1c Update documentation 2020-07-27 05:20:34 +01:00
Iain Collins
0b5b04a22f Apply datetime transforms on properties in custom models 
It makes sense to change this behaviour now we have a tutorial and have been testing this functionality.

Docs are being updated to reflect this change.
 2020-07-27 05:20:34 +01:00
Iain Collins
890be1de0d Update email provider 2020-07-27 05:20:34 +01:00
Iain Collins
40ae747bc1 Add support for passing appContext to getCsrfToken 
Requested in #345

getSession() already does this so seems reasonable to support it in getCsrfToken too.
 2020-07-27 05:20:34 +01:00
Iain Collins
5a8022e9a2 Update homepage and refactor CSS 
Making an attempt to clean up some of crusty CSS I've added.
 2020-07-27 05:20:34 +01:00
Iain Collins
3e512b5cf5 Tweak CSS on homepage 2020-07-27 05:20:34 +01:00
Iain Collins
81071d7776 Update adapters documentation 2020-07-27 05:20:34 +01:00
Iain Collins
fc05140c1f Improve homepage 2020-07-27 05:20:34 +01:00
Iain Collins
faec6824ba Disable use of state on Apple provider 
It is not supported by Apple ID.
 2020-07-27 05:20:34 +01:00
Iain Collins
b91bfef16d Refactor and document state provider option 2020-07-27 05:20:34 +01:00
Iain Collins
ba9dc17e44 Update homepage 2020-07-27 05:20:34 +01:00
Iain Collins
c220bcc57e Update version to 3.0.0-beta.13 2020-07-27 05:20:34 +01:00
Iain Collins
f8a4808aa7 Fix bug with NEXTAUTH_URL parsing 2020-07-27 05:20:34 +01:00
ndo@$(hostname)
495d0a47db fix: marquee icons 2020-07-27 05:20:34 +01:00
Iain Collins
8cda627fe6 Update adapter documentation 2020-07-27 05:20:34 +01:00
Iain Collins
d0a0ccc6bc Update TypeORM tutorial 2020-07-27 05:20:34 +01:00
Iain Collins
999222cd97 Refactor to simplify site URL configuration 
Includes some linter fixes
 2020-07-27 05:20:34 +01:00
Iain Collins
72eb7fda3f Fix error merging branches for v3 
Accidentally squashed a couple of lines in OAuth callback.
 2020-07-27 05:20:34 +01:00
Iain Collins
3c94940ae6 Respect existing cookies on a request object 
Unproven, but should fix #395 and improve middleware compatibility.
 2020-07-27 05:20:34 +01:00
Iain Collins
1a8ed2aec1 Update version to 3.0.0-beta.9 2020-07-27 05:20:34 +01:00
Iain Collins
0e2321dc14 Update pages documentation 2020-07-27 05:20:34 +01:00
Iain Collins
78d1983f9a Update version to 3.0.0-beta.8 2020-07-27 05:20:34 +01:00
Iain Collins
5435df110c Fix linter errors 2020-07-27 05:20:34 +01:00
Iain Collins
32853b8d1e Update events, callbacks & pages to use camelCase 
* This is a breaking change in v3
* Includes updated documentation
 2020-07-27 05:20:34 +01:00
Iain Collins
9737b4c6ab Only invoke setTimeout client side 
This should never be called server side, but just in case someone calls setOptions server side this prevents it from being invoked at all.
 2020-07-27 05:20:34 +01:00