v0.5.0

What's Changed

• feat: introduce user demo feature - add, change, remove a user's nickname (6e57e8b)
• feat: display form error as red text (38a031e)
• fix: align local JWT type with auth hooks custom token docs (fa4c1ef)
• fix: allow x-supabase-api-version response header (5dd93e0)
• refactor: destructure event sooner (1adbb23)

New Contributors

• @scottrblock made their first contribution in #2

Full Changelog: v0.4.0...v0.5.0

v0.4.0

[feat]

• add anon signin (186b7e9)

[refactor]

• separate oauth page action (186b7e9)

v0.3.0

[feat]

• Handle route protection in hooks (cfb1264)

[fix]

• Properly validate the session, without throwing warnings (cfb1264)

v0.2.3

[fix]

• use sync version of jwt.verify, which throws an error if needed (55f4659)
• update packages to latest release (1316e12)

[docs]

• add .git extension to repo path (18bc03f)
• reference security vulnerability discussion (0d457a5)
• update Security section in readme (568a9ff)
• clarify safe use of session.user, on server-side, when rendering sensitive user data (1dba8c2)

v0.2.2

[docs]

• Update readme: instruct to clone repo, not install SvelteKit fresh. (9b008e8)

v0.2.1

[fix]

• auth redirect loop (1a5d87a)

[refactor]

• centralize JWT verification (dfe2383)

v0.2.0

[fix]

• verify session in global +layout.server.ts (82bea5e)

[build]

• update packages (834b9bf)

[docs]

• clarify attack surface (5852d76)

v0.1.1

[fix]

• server-side session checks (50f4f2e)
• unneeded depends (44a12b6)

Full Changelog: v0.1.0...v0.1.1

v0.1.0

[feat]

• Migrate to SvelteKit 2 (a8d0dee)

[fix]

• Set cookie path, based on new SvelteKit requirement (0ec93ce)

Full Changelog: https://github.com/j4w8n/sveltekit-supabase-ssr/commits/v0.1.0