OAuth 2 / OpenID Connect Client API for JavaScript Runtimes
MIT License
Bot releases are hidden (Show)
response_type=token
client_secret
value rather thenapplication/jwt
redirect_uri
or response_type
on a client instance. I sympathize and#client.authorizationParams()
will now attempt to resolve the redirect_uri
andresponse_type
from your client's metadata. If there's only one listed, it will be usedresource
to authorization code or refresh token exchange,@panva/jose
for all things JOSE. As a result of this the minimum requiredIssuer.defaultHttpOptions
getter and setter were removed. See documentation customizationclient.CLOCK_TOLERANCE
client property was removed. See documentation customization section forclient.authorizationCallback()
has been renamed to client.callback()
tokenset.claims
getter is now a function tokenset.claims()
useRequest
and useGot
methods were removed, with the maintenance mode and inevitablerequest
module i've decided to only support got as an http request library.keystore
options argument properties are now called just jwks
.response_type=code
is no longer defaulted to in #client.authorizationUrl()
if your clientresponse_types
members.===
equality operator is now used for assertions, while unlikely the breaking change is#client.revoke()
no longer returns or in any way processes the response body as per spec