Skip to content

Latest commit

 

History

History
22 lines (15 loc) · 1.06 KB

CHANGELOG-2.x.md

File metadata and controls

22 lines (15 loc) · 1.06 KB
Raw

CHANGELOG for 2.x

This changelog references the relevant changes done in 2.x versions.

v2.1.0

  • Uses "gdbots/iam": "^2.1"
  • Uses "gdbots/ncr-bundle": "^2.1"

v2.0.1

  • Use TokenVerifier instead of IdTokenVerifier in Auth0JwtDecoder::decodeRS256 because we are validating an access token not an id token.

v2.0.0

BREAKING CHANGES

  • Upgrade to support Symfony 5 and PHP 7.4.
  • Uses "gdbots/iam": "^2.0"
  • Uses "gdbots/ncr": "^2.0"
  • Supports "auth0/auth0-php": "^7.0"
  • Adds ncr permission checks in PbjxPermissionValidator. Commands and requests with node_ref(s) will translate into a permission in the format of vendor:label:action, e.g. acme:article:publish. This is in addition to the message permission check itself gdbots:ncr:command:publish-node. This is being done to eliminate the need to implement all the ncr commands/events/requests at the app level but still have precise permission controls.
  • Adds AUTH0_CURRENT_SIGNING_SECRET and AUTH0_NEXT_SIGNING_SECRET which gives the Auth0JwtDecoder simple key rotation capability.