v1.6.46

What's Changed

• chore(deps): bump github.com/pilinux/crypt from 0.0.10 to 0.0.11 by @dependabot in #225
• chore(deps): bump github.com/qiniu/qmgo from 1.1.8 to 1.1.9 by @dependabot in #226
• chore(deps): bump golang.org/x/crypto from 0.28.0 to 0.29.0 by @dependabot in #228
• chore: bump github.com/golang-jwt/jwt from 4.5.0 to 5.2.1 in 7222418
• improvement: store key/value pair for all RegisteredClaims in the context 7222418

Full Changelog: v1.6.45...v1.6.46

v1.6.45

• When a user account is removed (soft or hard delete) from the database, it was possible to receive new sets of valid tokens using an existing valid refresh token. ValidateAuthID will now validate the authID against the database record to ensure that the user account is still active in the system.
• If refreshing the tokens over the Refresh endpoint is not possible (because of invalid refresh token, or non-existing user), API will delete existing JWTs from the cookies of the client device.

Full Changelog: v1.6.44...v1.6.45

v1.6.44

What's Changed

• chore(deps): bump golang.org/x/crypto from 0.27.0 to 0.28.0 by @dependabot in #224

Full Changelog: v1.6.43...v1.6.44

v1.6.43

Application firewall middleware now supports IPv4, IPv6, and CIDR notation.

To enhance performance, whitelisted/blacklisted IPs and CIDR notations are parsed and cached upon receiving the initial HTTP request. This minimizes overhead and reduces latency for future requests, improving overall response time.

Full Changelog: v1.6.42...v1.6.43

v1.6.42

What's Changed

• chore(deps): bump go.mongodb.org/mongo-driver from 1.16.0 to 1.16.1 by @dependabot in #215
• chore(deps): bump go.mongodb.org/mongo-driver from 1.16.1 to 1.17.1 by @dependabot in #220
• fix warning: (SA1006) go-staticcheck 20a21f2
• chore(deps): bump gorm.io/gorm from 1.25.11 to 1.25.12 by @dependabot in #217
• chore(deps): bump github.com/pilinux/crypt from 0.0.9 to 0.0.10 by @dependabot in #222
• chore(deps): bump github.com/pilinux/argon2 from 0.15.0 to 0.16.0 by @dependabot in #223
• chore(deps): bump github.com/pilinux/twofactor from 1.1.6 to 1.1.7 by @dependabot in #221

Full Changelog: v1.6.41...v1.6.42

v1.6.41

Updated Dependencies

• github.com/pilinux/argon2 from v0.14.0 to v0.15.0
• github.com/pilinux/crypt from v0.0.8 to v0.0.9
• github.com/pilinux/twofactor from v1.1.5 to v1.1.6
• golang.org/x/crypto from v0.25.0 to v0.26.0
• github.com/pilinux/cryptoengine from v0.1.5 to v0.1.6
• golang.org/x/sync from v0.7.0 to v0.8.0
• golang.org/x/sys from v0.22.0 to v0.23.0
• golang.org/x/text from v0.16.0 to v0.17.0
• golang.org/x/net from v0.25.0 to v0.28.0
• golang.org/x/arch from v0.8.0 to v0.9.0

Full Changelog: v1.6.40...v1.6.41

v1.6.40

Important

• minimum required go version is 1.20 10e0714

What's Changed

• chore(deps): bump golang.org/x/crypto from 0.24.0 to 0.25.0 by @dependabot in #212
• chore(deps): bump gorm.io/gorm from 1.25.10 to 1.25.11 by @dependabot in #213
• chore(deps): bump go.mongodb.org/mongo-driver from 1.15.1 to 1.16.0 by @dependabot in #211
• improve sentry logger 4f9db84, 891e91c, 14ca876

Full Changelog: v1.6.39...v1.6.40

v1.6.39

What's Changed

• chore(deps): bump github.com/pilinux/twofactor from 1.1.3 to 1.1.4 by @dependabot in #199
• chore(deps): bump github.com/pilinux/crypt from 0.0.6 to 0.0.7 by @dependabot in #201
• chore(deps): bump github.com/pilinux/argon2 from 0.12.0 to 0.13.0 by @dependabot in #200
• chore(deps): bump github.com/pilinux/crypt from 0.0.7 to 0.0.8 by @dependabot in #210
• chore(deps): bump github.com/pilinux/argon2 from 0.13.0 to 0.14.0 by @dependabot in #209
• chore(deps): bump github.com/pilinux/twofactor from 1.1.4 to 1.1.5 by @dependabot in #208
• chore(deps): bump github.com/mrz1836/postmark from 1.6.4 to 1.6.5 by @dependabot in #206
• chore(deps): bump go.mongodb.org/mongo-driver from 1.15.0 to 1.15.1 by @dependabot in #207
• chore(deps): bump gorm.io/driver/mysql from 1.5.6 to 1.5.7 by @dependabot in #204
• chore(deps): bump gorm.io/driver/sqlite from 1.5.5 to 1.5.6 by @dependabot in #203
• chore(deps): bump gorm.io/driver/postgres from 1.5.7 to 1.5.9 by @dependabot in #205

Full Changelog: v1.6.38...v1.6.39

v1.6.38

What's Changed

• chore(deps): bump github.com/gin-gonic/gin from 1.9.1 to 1.10.0 by @dependabot in #198

Full Changelog: v1.6.37...v1.6.38

v1.6.37

What's Changed

• chore(deps): bump github.com/pilinux/crypt from 0.0.5 to 0.0.6 by @dependabot in #190
• chore(deps): bump github.com/pilinux/argon2 from 0.11.0 to 0.12.0 by @dependabot in #189
• chore(deps): bump golangci/golangci-lint-action from 4 to 5 by @dependabot in #193
• chore(deps): bump github.com/pilinux/twofactor from 1.1.2 to 1.1.3 by @dependabot in #195
• chore(deps): bump gorm.io/gorm from 1.25.9 to 1.25.10 by @dependabot in #194
• chore(deps): bump go.mongodb.org/mongo-driver from 1.14.0 to 1.15.0 by @dependabot in #191
• chore: bump golang.org/x/net from 0.22.0 to 0.24.0 f43dad6 [security patch: CVE-2023-45288]

Full Changelog: v1.6.36...v1.6.37