v3.1.2

• Use latest auth0-php library but also ensure correct algo is used when decoding.

v3.1.1

• Use latest auth0-php library.

v3.1.0

• Updates for symfony 6.4.x deprecations and typehint changes.

v3.0.0

BREAKING CHANGES

• Upgrade to support Symfony 6 and PHP 8.1.

v2.1.0

• Uses "gdbots/iam": "^2.1"
• Uses "gdbots/ncr-bundle": "^2.1"

v2.0.1

• Use TokenVerifier instead of IdTokenVerifier in Auth0JwtDecoder::decodeRS256 because we are validating an access token not an id token.

v2.0.0

BREAKING CHANGES

• Upgrade to support Symfony 5 and PHP 7.4.
• Uses "gdbots/iam": "^2.0"
• Uses "gdbots/ncr": "^2.0"
• Supports "auth0/auth0-php": "^7.0"
• Adds ncr permission checks in PbjxPermissionValidator. Commands and requests with node_ref(s) will translate into a permission in the format of vendor:label:action, e.g. acme:article:publish. This is in addition to the message permission check itself gdbots:ncr:command:publish-node. This is being done to eliminate the need to implement all the ncr commands/events/requests at the app level but still have precise permission controls.
• Adds AUTH0_CURRENT_SIGNING_SECRET and AUTH0_NEXT_SIGNING_SECRET which gives the Auth0JwtDecoder simple key rotation capability.

v1.0.0

• Initial stable version.

v0.3.1

• Use two colons for route config as single is deprecated since Symfony 4.1.

v0.3.0

BREAKING CHANGES

• Remove use of Symfony's AdvancedUserInterface as it is now deprecated.
• Update Auth0UserProvider so it can load an gdbots:iam:mixin:user or an gdbots:iam:mixin:app node.
• Require "symfony/security": "^4.1".