-
#565
0795917Thanks @ryanbas21! - remove shared array buffer type from webauthn ParsedCredentials. -
f35d9b2Thanks @ryanbas21! - fixes a bad export syntax in package.json -
90099e5Thanks @cerebrl! - This aligns ping-protect and protect initialize callbacks to the new Journey Nodes -
#564
0ddd28fThanks @ancheetah! - Add support for KBAallowUserDefinedQuestionsflag
- #544
58360deThanks @ryanbas21! - Fix condition for determining session endpoint request for terminating session in AIC/AM
-
#535
a5daf4cThanks @cerebrl! - Add new PingOne signoff, remove unneeded /session call, add flag for iframe -
#537
fc00259Thanks @cerebrl! - Add feature to provide JSON outcome response to callback if requested
- #530
db41dccThanks @ryanbas21! - add-device-client
- #527
5119dc0Thanks @cerebrl! - In order to display a more user-friendly name when saving a WebAuthn/Passkey device to an account, we prioritized displayName over userName for assignment to thenameproperty of the WebAuthn options object. This avoids the display of UUIDs for saved credentials.
-
ping-fed-central-login (57e7c80)
-
recaptcha-enterprise-callback (006cec9)
-
support-metadata-marketplace-protect (a3494b9)
-
javascript-sdk: refactor authorize URL utilities for DaVinci (b34e458)
-
javascript-sdk: recaptcha-enterprise (8b4656c)
-
javascript-sdk: allowed-error-messages (88ece3f)
-
javascript-sdk: change pkce utility to return storage function (b4e0fbe)
- Justin Lowery
- ryanbas21
Features: feat: new request header by @juangarmendia05 in #432
Fixes: fix(javascript-sdk): fix-exports-update-protect by @ryanbas21 in #433 fix(javascript-sdk): circular-dep by @ryanbas21 in #435 fix(javascript-sdk): change x-requested-platform to opt-in by @cerebrl in #438 fix(javascript-sdk): add logout redirect for pingone by @cerebrl in #443
Fixes: fix(javascript-sdk): Export the classes of ping-protect callbacks from index
Features:
feat(javascript-sdk): add config.setAsync for wellknown endpoint support feat(javascript-sdk): handle-device-name-in-response
Fixes fix(javascript-sdk): add PingOne login error to allowed errors fix(javascript-sdk): sessionStorage conflict fix(javascript-sdk): circular-dependency
Features
- Make a prefix to the storage keys configurable via the Config class
- Added a QR Code utility class to determine if a step has a QR Code and handle QR Codes in SDK
Fixes
- Fix main and module fields in package.json being undefined
Features:
- Added ability for SDK to accept a logLevel and customLogger option in the config. The default to the logger is
nonewhich means the SDK will no longer output to the console messages/warnings/console.error calls.
Features:
- Minor changes to prepare for an upcoming Token Vault release
Fixes:
- fix(javascript-sdk): get-tokens-default-destructure (360df9968d)
Features:
- Transaction Authorization advices information adds support for JSON, HTTPClient modified to support this change
Fixes:
- Improved types when in strict mode of Typescript
Breaking Changes:
- Dropped UMD bundle support, if you would like to use a UMD bundle it's available in 3.4 or you can produce your own by git cloning the repo and setting up the ability to do so.
- Removed Event and FRUI modules
Deprecated:
- JavaScript support configuration property deprecated.
Features:
- Updated the esmodule bundle
- Added interface to register a name to a webauthn device
Fixes:
- Fixed Policy Types so that a PolicyRequirement array is outputted from
failedPolicies
Infrastructure:
- Updated tags in github to be prefixed with package name
- Fixed HTTP headers by capitalizing all header names
- Add support for TextInput Callback
- Fix object checks for device profile callback and use globalThis instead of window
- Fixed issue where UMD bundle namespace changed
- OAuth token threshold config property and proactive refresh of tokens expiring soon
- Add Angular sample app to the repo
- Fixed typescript transpilation bug in esmodule config
- Updated readme
/authorizecall not honoring middleware overwrites- expand middleware passing to call-site so that it overwrites middleware set in
config
- Refactor of end-to-end test suite to use playwright test runner instead of jest
- Upgrade rxjs version from 6 to 7 in
autoscriptfiles for e2e tests - Remove SSL certificate dependency in CI
- Move to using Github Actions for CI
- Convert to monorepo using
nx - Add react sample app to the repo
- Remove certificate dependency across all sample apps
- Replaced development bundle with a rollup production bundle in javascript-sdk package
- Update Readme's in all packages / samples
- Added a CONTRIBUTING.MD file
- Added a pull request template for contributors
- "Native" Social Login callbacks for both the original AM nodes in 6.5 and the new IDM nodes in 7.0
- SDK Social Login feature officially supports Apple, Facebook and Google
- New
FRAuthmethods for handing redirection to provider and resuming an authentication journeyFRAuth.redirectfor redirecting to an Identity Provider for authenticationFRAuth.resumesupports both return from an IdP and returning from Email Suspend node
- New
FRAuth.startmethod that aliasesFRAuth.nextto align native mobile SDKs - E2E test pages will now follow your OS's dark mode setting
- Arbitrary query parameters are now passed along through to the
/authorizeendpoint supporting the use of ACR values for tree specificity - Fixed build issue when using Windows PowerShell
- WebAuthn error handling is now standardized according to the WebAuthn spec
- When WebAuthn encounters an error, the SDK now formats the error appropriately for AM and sets it into the hiddenValueCallback; this allows the developer to just send it to AM "as is" or handle it specially when catching the thrown error
- Changed the default behavior in case of unidentified storage, to be the localStorage option
- Increased timeout (20 to 60 seconds) for E2E tests to avoid pure timeout failures
- WebAuthn's thrown error message text has been changed to align with spec, so check all conditionals comparing error message strings
- Renamed
getAuthorizeUrlmethod togetAuthCodeByIframe - Removed the single parameter from
createVerifierfunction - Removal of
noncefunction
- Centralized login support has been added
- OAuth authorize endpoint now supports both iframe and fetch through the new
supportproperty in the config - Support for TypeScript 4.0
step.getStage()is no longer used in sample app;getStage(step)is now used for better compatibility with AM 6.5FRUser.logoutnow uses a try-catch around each endpoint call, rather than a single try-catch, ensuring an error in one doesn't interrupt other endpoints being called- Paths for sample app now point to correct favicon image
- Improved automation testing
- Compatibility with AM 6.5.3 WebAuthn nodes
- Step detection with
getWebAuthnStepTypeand "usernameless" configuration getTokensmethod withforceRenewnow revokes existing tokens, if present, before requesting new ones
- Support for "usernameless" login (storing username on WebAuthn capable tech)
- Support for the recovery code display node and the parsing of the codes from the TextOutputCallback
- Support for user verification property for WebAuthn
- Updated support for new IDM nodes for registration and self-service: BooleanAttributeInputCallback and NumberAttributeInputCallback support
- Added SuspendedTextOutputCallback support for the new Email Suspended Node
- Added SessionManager.logout() call back to FRUser.logout()
- Conditionally set user verification, relying party and allow credentials to WebAuthn key options
- Added exclude credentials to script parsing for WebAuthn key options
- Ensure display name and username are correctly parsed and added to WebAuthn key options
- Add authenticator attachment to WebAuthn and other WebAuthn fixes for custom configuration
- Increased entropy for cryptographic functions related to PKCE for both state and verifier
- Improved instructions for cert creation for sample app
- Name change for
getAuthorizeUrl: method's name will change to better reflect its behavior in v3 - Removal of
nonce: this utility is no longer used in the SDK, and therefore will be removed in v3 - Function signature change for
createVerifier: the parameter will be removed in v3.
- Support for authorization by transaction
- Support for authorization by tree
- Support for device profile collection callback
- Allow server paths to be configurable
- Allow OAuth token storage to be configurable
- Support for request "middleware" for modifying request from SDK
- "Containerize" code base for easier development
- End-to-end tests now use Playwright and mock Node.js server
- Support for WebAuthn script-based authentication
- Increased default timeout to accommodate development/debugging
- Provide alternative token store for Firefox Private IndexedDB bug
- Aligned json-based WebAuthn with 7.0 release of AM
- Support for additional querystring parameters (e.g.
suspendedId) when invoking authentication trees
- Renamed
getWebAuthStepTypetogetWebAuthnStepTypeinFRWebAuthnmodule
- Replaced
urlandquerystringdependencies to avoid build issues in some environments
- Exported
Deferredandnonce
- Server mocking with Mirage JS for E2E tests
- Version header to all OpenAM calls to avoid CSRF problems
- Updated callback interface to reflect that some properties are optional
- WebAuthn module that can be used in custom UIs
- Improvements to
FRCallback - Addressed all linter warnings
- Non-relative import in FRAuth module
- OAuth2Client obeys
realmPathconfiguration setting
- FRPolicy module allows easy consumption and customization of policy-related errors
- Export
SessionManagermodule FRStep.typeproperty to simplify conditional handling of tree responses- Overhaul and expansion of tests to include unit, integration, and e2e testing
- Initial release for SDK
- Initial npm deployment for beta version