- #140 fix: pulls
acr_values
from idToken rather than accessToken
- #134 Fixed providing
OKTA_CONFIG
withOktaAuthModule
when config is loaded at runtime
- #135 Fixes okta extended user agent header to correct SDK version
- #132 Supports Step-up authentication in
OktaAuthGuard
by specifyingokta.acrValues
in route data
- #124 Supports asynchronous configuration of
OktaAuthModule
inAPP_INITIALIZER
withOktaAuthConfigService.setConfig()
- #118 Supports
OktaAuthModule.forRoot()
- #119 Uses
ng-packagr
to build the library in APF v12. Uses@angular-builders/jest
to run Jest tests withng test
.
- #90 Enables Ivy engine and partial compiling. Updates library to ESM. Minimum supported version of Angular is 12.
- #99 query parameters are now passed through the
canLoad
guard
- #89 Updates okta-auth-js to 6.2.0 in test apps and SDK
- #91 Add Angular version in Okta UA. Add Angular to peerDependencies
- #83 Fixes okta-auth-js v6 compatibility issues:
- allows okta-auth-js v6 in peerDependencies
- uses available
isInteractionRequiredError
method incallback.component
- #81 Set okta-auth-js minimum supported version as 5.3.1,
AuthSdkError
will be thrown if oktaAuth instance cannot meet the version requirement
- #79 Uses
OKTA_AUTH
injection token instead ofOktaAuth
type to injectoktaAuth
instance. This change is introduced to fix production build issue for Angular v7 & 8. See MIGRATING for detailed information.
#74 Fixes old version angular compatibility issue
- #65 Supports lazy loaded routes in
OktaAuthGuard
- #66 Adds lite role/group based authorization directive (
*oktaHasAnyGroup
) to only render content for authorized users (users in groups)
#60 See MIGRATING for detailed information
- Enables injecting oktaAuth instance via
OktaConfig
- Replaces the
OktaAuthService
with the injectedOktaAuth
instance - Removes oktaAuth related configs from
OktaConfig
- Removes
isAuthenticated
callback option fromOktaConfig
- Removes
OktaLoginRedirectComponent
#60 Adds OktaAuthStateService
that exposes an observable authState$
#58 Requires @okta/okta-auth-js ^5.3.1
#51 Fix token auto renew by using @okta/okta-auth-js ^5.2.3
#48 fix: start tokenService on login redirect
#40 Requires @okta/okta-auth-js 5.x
#33 Adds option onAuthResume
to resume authorization flow on custom login page.
#9 fix: handle --base-href option
#5 Release 3.0.0 - OktaAuthService
now inherits from an instance of @okta/okta-auth-js
so all configuration options and public methods are available. See MIGRATING for detailed information.
#2 Builds library using Angular 7 package format for compatiblity with Angular 7+.
#794 OktaAuthService.getUser
only uses /userinfo
endpoint to retrieve user claims. OktaAuthService.getUser
should be the recommended method to acquire user information as idToken.claims
may become stale due to data updating.
#867 The current instance of the OktaAuthService
is passed to isAuthenticated
callback function.
#867 Default onSessionExpired
behavior is removed, as it was causing concurrency issues.
#776 OktaAuthGuard
now implements canActivateChild
OktaCallbackComponent
will catch and display exceptions thrown fromhandleAuthentication()
onAuthRequired
callbacks will now receive the Angular injector as the 2nd parameter. This change allows logic using any services available within your application.
- Saved URI is now stored in
sessionStorage
instead oflocalStorage
. This fixes an issue which can occur when multiple instances of the app are loading at the same time. OktaCallbackComponent
useswindow.location.replace()
to complete the login flow afterhandleAuthentication
completes. This fixes an issue where the user could navigate back to the callback hander.
- Signature for
onAuthRequired
callback functions has changed. Callbacks will receive theOktaAuthService
as the first argument, and the AngularInjector
as the second argument. - Static initializer
OktaAuthModule.initAuth()
has been removed.OKTA_CONFIG
should be provided directly by your module. getFromUri
now returns an absolute URI as a stringsetFromUri
takes a string. If it is a relative path, it will be converted to an absolute URI before being saved.- Legacy config formats are no longer supported. See Configuration Reference for supported values.
- The
pkce
option now defaults totrue
, using the Authorization Code w/PKCE flow- Those using the (previous default) Implicit Flow should pass
pkce: false
to their config - See the @okta/okta-auth-js README regarding PKCE OAuth2 Flow for PKCE requirements
- Which include the Application settings in the Okta Admin Dashboard allowing for PKCE
- Those using the (previous default) Implicit Flow should pass
- Upgrades
@okta/okta-auth-js
to version 3.0.0
- #648
- Adds a default handler for onSessionExpired
- Adds a new option isAuthenticated which works with onAuthRequired
- Expose TokenManager
- Adds documentation for postLogoutRedirectUri
- #646 - Fixes regression with AOT compilation. Also tested against Angular 9.
558696
- Upgrades to@okta/[email protected]
which includes new options for signout:3e8c65
558696
- Upgrades to@okta/[email protected]
which includes new options for signout:3e8c65
ef10d85
- Support PKCE authorization flow
-
654550
- All configuration options are now accepted. See Configuration Reference. Camel-case (clientId) is now the preferred syntax for all Okta OIDC libraries. Underscore syntax (client_id) will be deprecated in a future release. -
a2a7b3e
- Configuration propertyscope
(string) is deprecated in favor ofscopes
(array). Normalize config format for the propertiesresponseType
andscopes
, used in get token flows. Fully support deprecated config propertiesrequest_type
andscope
as previously documented and used within the okta-angular samples.
0703aff
- Relaxes peerDependency to include latest versions of Angular
f972822
- Deprecates 'initAuth' method.
2ae1eff
- Adds TokenManager configuration parameters.
2945461
- Updates@okta/configuration-validation
version
6242f2d
- Fixes an issue where the library was not correctly building the/dist
output before publishing tonpm
.
29d04f6
- Adds configuration validation forissuer
,clientId
, andredirectUri
when passed into the auth service.
3582f25
- Rely on shared environment configuration from project root.c8b7ab5a
- Migrate dependencies to project root utilizing yarn workspaces.
5862e32
- Fixes an issue where the library would enter an error state when attempting to renew expired tokens (errorCode:login_required
).
- Updated
@okta/okta-auth-js
dependency to version 2.
- The supported range of Angular peer dependencies has been upgraded to include versions 4, 5, and 6. At the moment we only test on the latest stable version of Angular, currently version 6.