v9.12.0

Added

• [CAUTH-239] Add getChallenge method #1057 (jfromaniello)

Fixed

• Fixed passwordless params priority #1058 (stevehobbsdev)
• Bugfix for WebExtension #1054 (STK913)
• Readme develop #1043 (jsoref)
• Fixed typo #1039 (Nyholm)

Security

• [SDK-974] Improved OIDC compliance #1059 (stevehobbsdev)

v9.11.2

Fixed

• Upgrade idtoken-verifier to fix importing auth0.js in SSR apps #965 (luisrudge)

v9.11.1

Fixed

• Fix nonce error when id_token doesn't have a nonce #954 (luisrudge)

v9.11.0

Added

• Add method to patch root user attributes #949 (luisrudge)

Changed

• Fix/check nonce state hs256 tokens #952 (luisrudge)

Fixed

• Ignore syntax errors from popups #948 (luisrudge)

v9.10.4

Fixed

• Fix checksession success response casing #943 (luisrudge)

v9.10.2

Full Changelog

Changed

• Modify telemetry inside the ULP #922 (luisrudge)

v9.10.1

Full Changelog

Fixed

• Throw nonce error when using HS256 id_tokens #913 (luisrudge)
• Fix different id_token payload casing between authorize and popup.authorize #911 (luisrudge)

8.9.2

Full Changelog

Fixed

• Fix passwordlessVerify not sending nonce #489 (luisrudge)

Change Log

8.9.1

Full Changelog

Fixed

• Fixed credentialType url #487 (luisrudge)

Change Log

8.9.0

Full Changelog

Added

• Add flag to retry requests #484 (luisrudge)
• Add cross-origin-auth support to Passwordless #482 (luisrudge)

Changed

• Avoid snake casing of metadata on signup #475 (hzalaz)

Fixed

• Send empty verifier when can't access sessionStorage #470 (luisrudge)

Change Log