commons-auth

• added Impersonate options
• some typo-fixes

• upgraded commons-rest 2.0.1
• added invalid error code to token-validation
• improved initializeUser with extra parameters for firstName, lastName + keyValues
• changed hashcode/equals to id for InviteEntity + UserEntity
• added findAll to AppUserService/AppInviteService to have one main service

• move exception to api + added helpers
• renamed InviteUserService to AppInviteService
• fix messageSource problem + switched encoding of de-file

🎉 3.0.0 is out with many great new features + improvements 🎉

breaking changes

• switched to commons-rest 2.0.0
  • ErrorResponse has a change within fields (each field can now have a list of errors)
• split commons-auth-server into server + service
  • server only contains rest-controller + exception handler
  • service containing all the logic
  • commons-auth-mongo / commons-auth-jpa only have service as dependency not server
• column-name rename within jpa
  • user_keyvalue_pairs.id -> user_keyvalue_pairs.user_id
  • user_roles.id -> user_roles.user_id

new features

• allow to create invites in order to predefine a user without username/password/email that the invited can create after confirming the mail
• added keyValue search to user
• i18n for validation exception + details of configs
  • for example PasswordException will contain info like "insufficient digit min X"
• i18n for email-service
• added a new UsernameGenerator that helps to create valid usernames

improvements

• upgraded email-template-builder 1.4.0 + guava 28.2-jre + spring-boot 2.2.4
• added more api-docs
• added missing language headers to Resources in API
• improve cache handling (only invalidate after change + all keys id/username/email)
• add singular to api builders

• fixed role naming (now always with prefix of ROLE_)

• added hasRole to user-search as option
• rewritten + tested jpa + mongo persitence-service
• fixed security path for user-search

• upgrade versions spring-boot 2.2.2 + commons-rest 1.11.2
• fixed typos and translations of forms
• increased avatar default size up to 256
• some cleanups

• fixed forgot forms flow
• added default deserialize classes to interfaces (AppUserReference, AppUserToken)
• added refreshExpiresIn to oauth endpoint
• upgraded commons-rest 1.11.1

• fixed configuration mistake
• added cors annotation to oauth endpoint (security ignore lead to manual configuration)

• upgraded spring-boot 2.2.1 + commons-rest 1.10.2
• changed logic of security config helpers (work with instance now)
• flexibilize the oauth login

• added oauth2 endpoint
  • /auth/oauth2/token
  • supports grant_type password/refresh_token
• simplify testing etc. within postman

• fixed cache invalidation

• upgraded to spring-boot 2.2.0 + commons-rest 1.9.1
• allow to overwrite verificationUrl for RegistrationRequest + ForgotPasswordRequest
• added cache also for id + email search within DefaultAppUserService
• removed findAll within AppUserPersistenceService use find with Query

• upgraded spring-boot 2.1.9 + email-template-builder 1.2.0
• fixed LoginCookieFilter now should work also with refresh in case of expired accessToken

• upgraded spring-boot 2.1.8 and commons-rest 1.8.0
• fixed authProperties security path helpers

• added option to prefix controller + forms endpoints
• auth.prefix allows to add custom path before regular api endpoints

• upgraded commons-rest
• switch property auth.api.baseUrl to auth.base-url (that also works with kubernetes)

• fixed autoConfiguration for jpa
• improved jpa entity and schema definitions
• added email-length check to validation
• upgraded guava 28.1

• extended adapters
• improved/refactored module
• refactored testing

• moved adapters and commonsPrincipal + authToken to core
• removed WebAuthenticationDetails from CommonsAuthenticationToken (now it's just an Object)