PHP SDK for Auth0 Authentication and Management APIs.
MIT License
Bot releases are hidden (Show)
Published by jimmyjames about 4 years ago
Published by joshcanhelp over 4 years ago
Published by joshcanhelp over 4 years ago
Closed issues
Added
Published by joshcanhelp almost 5 years ago
BEFORE YOU UPGRADE
This is a major release with several breaking changes. Please see the v5 to v7 migration guide here before you upgrade.
Added
Changed
Removed
Published by joshcanhelp almost 5 years ago
Added
Deprecated
Fixed
Published by joshcanhelp about 5 years ago
Closed issues
upsert
as a paramater for the importUsers
feature #353
Added
Deprecated
Published by joshcanhelp over 5 years ago
Closed issues
Fixed
Published by joshcanhelp over 5 years ago
Closed issues
Added
Published by joshcanhelp over 5 years ago
Notes for this release:
\Auth0\SDK\Auth0
now accepts a $config
key called skip_userinfo
that uses the decoded ID token for the user profile instead of a call to the /userinfo
endpoint. This will save an HTTP call during login and should have no affect on most applications.Closed issues
Auth0::exchange()
assumes a valid id_token #317
auth0-forwarded-for
header #208
Added
Auth0-Forwarded-For
header for RO grant #320 (joshcanhelp)Changed
Deprecated
JWKFetcher
method #328 (joshcanhelp)
\Auth0\SDK\Helpers\JWKFetcher::fetchKeys()
User
methods #327 (joshcanhelp)
\Auth0\SDK\API\Management\Users::search()
\Auth0\SDK\API\Management\Users::unlinkDevice()
ClientGrants
method #326 (joshcanhelp)
\Auth0\SDK\API\Management\ClientGrants::get()
InformationHeaders
methods #325 (joshcanhelp)
\Auth0\SDK\API\Helpers\InformationHeaders::setEnvironment()
\Auth0\SDK\API\Helpers\InformationHeaders::setDependency()
\Auth0\SDK\API\Helpers\InformationHeaders::setDependencyData()
Authentication
methods #324 (joshcanhelp)
\Auth0\SDK\API\Authentication::setApiClient()
\Auth0\SDK\API\Authentication::sms_code_passwordless_verify()
\Auth0\SDK\API\Authentication::email_code_passwordless_verify()
\Auth0\SDK\API\Authentication::impersonate()
Fixed
Auth0::exchange()
to handle missing id_token #318 (joshcanhelp)Published by joshcanhelp almost 6 years ago
Closed issues
Fixed
Published by joshcanhelp almost 6 years ago
Closed issues
Added
Changed
Fixed
Published by joshcanhelp about 6 years ago
Closed issues
Added
Changed
Deprecated
Removed
Fixed
Security
Published by joshcanhelp over 6 years ago
Closed issues
Added
Changed
Fixed
Published by joshcanhelp over 6 years ago
Closed issues
Added
Fixed
Published by joshcanhelp over 6 years ago
State validation was added in 5.1.0 for improved security. By default, this uses session storage and will happen automatically if you are using a combination of Auth0::login()
and any method which calls Auth0::exchange()
in your callback.
If you need to use a different storage method, implement your own StateHandler and set it using the state_handler
config key when you initialize an Auth0
instance.
If you are using Auth0::exchange()
and a method other than Auth0::login()
to generate the Authorize URL, you can disable automatic state validation by setting the state_handler
key to false
when you initialize the Auth0
instance. It is highly recommended to implement state validation, either automatically or otherwise
Closed issues
Added
Changed