Releases: queueit/KnownUser.V3.Lua
Releases · queueit/KnownUser.V3.Lua
3.7.0
Release note
- Support for Secure and HttpOnly cookie flags in QueueITAcceptedCookies
- These options are now configured directly in integration configuration provided by GO Queue-it Platform.
- Queue ID is now included in the URL for cancel redirects.
- 'Access-Control-Expose-Headers' are set on AJAX redirect (hybrid integration)
3.6.5
Release note
- Added support for Request Body Validator in SDK.
- Implemented reading request body in ApacheHandler.
3.6.4
Release note
- Fixed all warnings identified via linting using luacheck
https://github.com/mpeterv/luacheck - Discontined samesite cookie option in ApacheHandler + example because older browers do not support it and some even treat it wrongly, if the value is set to 'None'. Samesite is not needed for the SDK to function.
- Public endpoints, in need of queue-it traffic protection, all run on standard ports like 80 (http) and 443 (https), so port was excluded from constructed/resolved absoluteUri in ApacheHandlerUsingConfigFromFile.lua.
3.6.3
Release note
Bugfixes
- Only remove 'queueittoken' (via 302) if trigger matches 'queue' action.
Some integrations have a page matching and ignore action. On this page AJAX calls are made to queue protected endpoints.
When user returns from queue (triggered by AJAX call), then queueittoken would be removed without user getting a valid cookie (because it matched the ignore action). Now, tokens will only be removed on queue actions (so we are sure user either has or will get a cookie).
3.6.2
Release note
Bug fixes
- Always remove old, no longer valid, queue-it (queue passed) cookies:
Only if client sent queue-it cookie to server. - Added max-age to server cache header in Apache handler.
3.6.1
Release note
Bugfix in KnownUserApacheHandler
- Caching headers should only be sent in queue redirect situations
3.6.0
Release note
NGINX or other non apache solutions: We recommend you to implement the method system.getConnectorName in your handler code. Look at KnownUserApacheHandler.lua for inspiration.
New features
- Support for matching any value (*) in a contains trigger operator.
- Matched action name available in code. Found as property on action result and config models.
- Improved system diagnostics
- Matched action name included as query string parameter in URL for queue redirect.
- Matched action name available in diagnostics/debug cookie as part of (queue/cancel)config information.
- Runtime, connector name and version available in diagnostics/debug cookie.
- Exception (if any) available in diagnostics/debug cookie.
- Apache handler: Support for httponly, secure and samesite cookie flags.
Quality improvements
- Consistent error handling in case of invalid tokens.
- Ensure that invalid/manipulated queue-it (queue passed) cookies are never accepted.
- Perform expiration checks on debug tokens.
- Always remove old, no longer valid, queue-it (queue passed) cookies.
- Ensure that debug information (cookie) is always available, ex. when integration configuration is missing or invalid.
3.5.2
Update README.md added missing function()...end to pcall in sample code