Skip to content
This repository was archived by the owner on Jul 12, 2023. It is now read-only.

v0.5.0
Compare
Choose a tag to compare
@sethvargo sethvargo released this 25 Aug 19:31
· 1599 commits to main since this release
v0.5.0
866deed
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

This release contains mandatory database migrations to support per-realm signing keys!

Changelog since v0.4.0

Changes

  • /api/verify returns correct error codes now code_expired/code_invalid instead of token_invalid/token_expired (#339, @mikehelmick)
  • Accept SMS codes for 2 factor auth (#301, @whaught)
  • Add Cloud Identity to Terraform, remove firebase service account (no longer needed) (#315, @sethvargo)
  • Add caching layer for users, API keys, and realms (#355, @sethvargo)
  • Add formal specification of ens:// Resource Identifier (RI) schema (#259, @mikehelmick)
  • Added a signout redirect back to login (#331, @whaught)
  • Adds the capability of per-realm signing keys. There is a shared key ring in the backing KMS service for all keys, but each realm can have its own key on that key ring. The keys are entirely managed by the verification server. Upgrade process is built in. Realms can pre-create and distribute their per-realm key before switching to using it. Realm key rotation is built in for changing to a new key, destruction of old key material will be delivered in a subsequent release. (#330, @mikehelmick)
  • Allow authorized apps to check code status (#343, @whaught)
  • Allow for SMS enrollment (#299, @whaught)
  • BUG FIX - check expiration correctly after verification code HMAC upgrade. (#278, @mikehelmick)
  • Cache app and user stats (#318, @sethvargo)
  • Calculate app and user statistics on save (#287, @sethvargo)
  • Changed dependency on exposure-notifications-sever from v0.4.0 to v0.5.0 (#342, @mikehelmick)
  • Create a custom create auth page (#302, @whaught)
  • Create a new login page without firebaseUI (#270, @whaught)
  • Create a phone registration page for 2nd factor auth (#290, @whaught)
  • Enhancements to code issue page and flow (#300, @sethvargo)
  • Fix data race in cleanup (#328, @sethvargo)
  • Fixes the verfication flow chart in README. (#272, @yegle)
  • HMAC verification codes in the database - this prevents someone with access to the database from (easily) retrieving the plaintext tokens (#258, @sethvargo)
  • Make KMS key ring name configurable in Terraform (#334, @sethvargo)
  • Move realm settings under admin menu (#364, @sethvargo)
  • Optimized SQL for issuing verification codes. (#360, @mikehelmick)
  • Page for email verification (#280, @whaught)
  • Potentially breaking: Renamed pkg/signer to pkg/keys and renamed the interface from KeyManager to Manager (#281, @mikehelmick)
  • Prompt the user for a 2nd factor (#320, @whaught)
  • Proper content-type set on all HTTP responses. (#275, @mikehelmick)
  • Remove the firebaseUI based login page (#288, @whaught)
  • Require all users have verified email address to log-in (#284, @whaught)
  • Sets cloud run request timeout for three main API services to 25s. (#336, @icco)
  • Show countdown for code status. Format as list. (#368, @whaught)
  • Support up to 10 characters in region code (#316, @sethvargo)
  • Switch to JSON encoding for cacher, decouple cacher from database (#329, @sethvargo)
  • The terraform module now requires Terraform 0.13 (#285, @icco)
  • Turns on debug logging when running the migrate command through terraform (#262, @icco)
  • Update login screen layout (#297, @sethvargo)
  • Update ratelimiter package, add more logging (#269, @sethvargo)
  • Update to firebase 7.14.5 (#279, @sethvargo)
  • Upgrade to Go 1.15 (#277, @sethvargo)
  • Upgrades dependencies (#271, @icco)

Dependencies

Added

  • github.com/gomodule/redigo: v1.8.2
  • github.com/jpillora/backoff: v1.0.0
  • github.com/sethvargo/go-redisstore: v0.1.0

Changed

Removed

Nothing has changed.

Assets 2
Loading