v2.4.0

oidc-client-ts 2.4.0 is a minor release.

Changelog:

• #1206: fix exception when id_token not set
• #1220: fix merging token id and user info data. 0 is being omitted
• feature #1212: add support for custom URL state values

thanks to @jafaircl, @dopry and @jeff-chd-g

v2.3.0

oidc-client-ts 2.3.0 is a minor release.

Changelog:

• #1187: dynamically generate package.json for ESM build
• #1173: signoutSIlent: added scriptOrigin parameter to work from another origin
• #1141: make code compatible for eslint-plugin >= v6.4
• feature #1146: popup window can be closed after some time
• feature #1158: make RefreshState public
• feature #1148: allow overriding navigators for non window browser environments

thanks to @Gitarcitano, @davidmrobins, @kwojtasinski-repo , @davesmits and @philjones88

v2.2.5

oidc-client-ts 2.2.5 is a bug fix release.

Changelog:

• #1038: specify the client identifier when post_logout_redirect_uri is used but id_token_hint is not
• #1026: remove sandbox attribute due to it being obsolete
• #1104: add resource param to signinSilent request
• #1076: add OidcClient constructor overload
• #1058: document state attribute in sample requests
• #1128: improve documentation file migration.md

thanks to @perguth, @forefrontmartingrantz, @Annouar, @howlettt, @demkom58 and @olenitsj

v2.2.4

oidc-client-ts 2.2.4 is a bug fix release.

Changelog:

• #982: allow auth_time to be undefined on token refresh
• #999: allow using OidcClient without window object
• #1001: add ui_locales to ExtraSigninRequestArgs

thanks to @misl-smlz, @ker-nicolaib, @paulius-valiunas and @cestorer

v2.2.3

oidc-client-ts 2.2.3 is a bug fix release.

Changelog:

• #977: add max_age to ExtraSigninRequestArgs
• #917: add new optional setting extraHeaders to OidcClientSettings

thanks to @BROUSSOLLE-Brice and @jackie-linz

v2.2.2

oidc-client-ts 2.2.2 is a bug fix release.

Changelog:

• #859: add login_hint to ExtraSigninRequestArgs
• #866: add scope to ExtraSigninRequestArgs
• #895: allow to to toggle off pkce
• #907: describe the openid metadata as per openid specifications

thanks to @bradamelton, @Peter-Lavigne, @satanshiro and @OsamaAbuSitta

v2.2.1

oidc-client-ts 2.2.1 is a bug fix release.

Changelog:

• #695: add filter list to scopes used with refresh tokens
• #780: filterProtocolClaims deletes properties required by the IdTokenClaims type
• #820: add extraTokenParams to ROPC Flow
• #782: allow multiple resource parameters
• #789: add migration info about code flow

thanks to @timgrohmann, @Badisi, @jsedanoj and @piwysocki

v2.2.0

oidc-client-ts 2.2 is a minor release with new features.

Changelog:

• #778: make it possible to include credentials on all requests
• #741: cannot use sample on new OS installation
• #721: unable to reach https://demo.identityserver.io/.well-known/openid-configuration
• #763 preserve id_token and profile even if no openid is in scope of refresh request
• feature #732: add revokeTokenContentTypes settings to pass into JsonService
• feature #761: add silent signout
• feature #747: add resource owner password credentials flow

thanks to @Sojborg, @tebeco, @philjones88, @robert-wettstaedt, @huysentruitw, @piwysocki and @jsedanoj

v2.1.0

oidc-client-ts 2.1 is a minor release with one new feature.

Changelog:

• #691: allow to override acr_values in signinRedirect
• #688: user profile information is lost when refresh token is used
• feature #609: WebStorageStateStore.store should be an async store

When extending WebStorageStateStore with a custom implementation, the public function must return new a Promise. See AsyncStorage.ts.

v2.0.6

oidc-client-ts 2.0.6 is a bug fix release.

Changelog:

• #580: add id_token_hint if includeIdTokenInSilentRenew is true for querySessionStatus
• #607: support configuring to pass cookies when renewing access token via fetch