GitPedia
Home/auth0/omniauth-auth0/Changelog
auth0

auth0/omniauth-auth0

OmniAuth strategy to login with Auth0

12 Releases
Latest: 1mo ago
v3.2.0Latest
github-actions[bot]github-actions[bot]·1mo ago·May 28, 2026
GitHub

Added

  • Support for Private Key JWT client authentication ([#203](https://github.com/auth0/omniauth-auth0/pull/203)) - You can now authenticate using a private key instead of a client secret by providing `client_assertion_signing_key` and optionally `client_assertion_signing_algorithm`. ([kaczowkad](https://github.com/kaczowkad))

📦 Dependency Bumps

  • Bump rack from 2.2.7 to 2.2.23 ([#217](https://github.com/auth0/omniauth-auth0/pull/217))
  • Bump faraday from 2.7.10 to 2.14.1 ([#215](https://github.com/auth0/omniauth-auth0/pull/215))
  • Bump rexml from 3.2.5 to 3.3.9 ([#206](https://github.com/auth0/omniauth-auth0/pull/206))
v3.1.1
auth0-ossauth0-oss·2y ago·July 25, 2023
GitHub

📋 Changes

  • [SDK-4410] Support Organization Name in JWT validation [\#184](https://github.com/auth0/omniauth-auth0/pull/184) ([stevehobbsdev](https://github.com/stevehobbsdev))
  • fix: upgrade to Sinatra 3 and use Rack::Session::Cookie in tests [\#165](https://github.com/auth0/omniauth-auth0/pull/165) ([stevehobbsdev](https://github.com/stevehobbsdev))
v3.1.0
stevehobbsdevstevehobbsdev·3y ago·December 8, 2022
GitHub

📋 Changes

  • Add ui_locales to permitted params [\#135](https://github.com/auth0/omniauth-auth0/pull/135) ([martijn](https://github.com/martijn))
  • Store plain Hash in session['authorize_params'] [\#150](https://github.com/auth0/omniauth-auth0/pull/150) ([santry](https://github.com/santry))
  • Redesign readme to match new style [\#148](https://github.com/auth0/omniauth-auth0/pull/148) ([stevehobbsdev](https://github.com/stevehobbsdev))
  • Fix authentication hash link in code sample [\#153](https://github.com/auth0/omniauth-auth0/pull/153) ([ewanharris](https://github.com/ewanharris))
  • [Snyk] Fix for 1 vulnerabilities [\#149](https://github.com/auth0/omniauth-auth0/pull/149) ([snyk-bot](https://github.com/snyk-bot))
  • Bump addressable from 2.7.0 to 2.8.0 [\#133](https://github.com/auth0/omniauth-auth0/pull/133) ([dependabot[bot]](https://github.com/apps/dependabot))
  • [Snyk] Security upgrade webmock from 3.12.2 to 3.12.2 [\#134](https://github.com/auth0/omniauth-auth0/pull/134) ([snyk-bot](https://github.com/snyk-bot))
v3.0.0
davidpatrickdavidpatrick·5y ago·April 19, 2021
GitHub

📦 Upgrading to omniauth-rails_csrf_protection v1.0.0

  • If you are using `omniauth-rails_csrf_protection` to provide CSRF protection, you will need to be upgrade to `1.x.x`.

💥 BREAKING CHANGES

  • ```html+ruby
  • <a href='/auth/auth0'>Login</a>
  • <%= link_to 'Login', 'auth/auth0', method: :post %>
  • <%= button_to 'Login', 'auth/auth0', method: :post %>
  • <%= form_tag('/auth/auth0', method: :post) do %>
  • <button type='submit'></button>
  • <% end %>
  • ```

📦 Allowing GET Requests

  • In the scenario you absolutely must use GET requests as an allowed request method for authentication, you can override the protection provided with the following config override:
  • ```ruby
  • OmniAuth.config.allowed_request_methods = [:get, :post]
  • ```
v2.6.0
davidpatrickdavidpatrick·5y ago·April 1, 2021
GitHub

📦 [v2.6.0](https://github.com/auth0/omniauth-auth0/tree/v2.6.0) (2021-04-01)

  • [Full Changelog](https://github.com/auth0/omniauth-auth0/compare/v2.5.0...v2.6.0)
  • Added
  • Org Support [SDK-2395] [\#124](https://github.com/auth0/omniauth-auth0/pull/124) ([davidpatrick](https://github.com/davidpatrick))
  • Add login_hint to permitted params [\#123](https://github.com/auth0/omniauth-auth0/pull/123) ([Roriz](https://github.com/Roriz))
v2.5.0
davidpatrickdavidpatrick·5y ago·January 21, 2021
GitHub

📦 [v2.5.0](https://github.com/auth0/omniauth-auth0/tree/v2.5.0) (2021-01-21)

  • [Full Changelog](https://github.com/auth0/omniauth-auth0/compare/v2.4.2...v2.5.0)
  • Added
  • Parsing claims from the id_token [\#120](https://github.com/auth0/omniauth-auth0/pull/120) ([davidpatrick](https://github.com/davidpatrick))
  • Changed
  • Setup build matrix in CI [\#116](https://github.com/auth0/omniauth-auth0/pull/116) ([dmathieu](https://github.com/dmathieu))
  • Fixed
  • Fixes params passed to authorize [\#119](https://github.com/auth0/omniauth-auth0/pull/119) ([davidpatrick](https://github.com/davidpatrick))
2.4.1v2.4.1
jimmyjamesjimmyjames·5y ago·October 8, 2020
GitHub

📦 [v2.4.1](https://github.com/auth0/omniauth-auth0/tree/v2.4.1) (2020-10-08)

  • [Full Changelog](https://github.com/auth0/omniauth-auth0/compare/v2.4.0...v2.4.1)
  • Fixed
  • Verify the JWT Signature [\#109](https://github.com/auth0/omniauth-auth0/pull/109) ([jimmyjames](https://github.com/jimmyjames))
v2.4.0
davidpatrickdavidpatrick·5y ago·September 23, 2020
GitHub

📦 [v2.4.0](https://github.com/auth0/omniauth-auth0/tree/v2.4.0) (2020-09-22)

  • [Full Changelog](https://github.com/auth0/omniauth-auth0/compare/v2.3.1...v2.4.0)
  • Security
  • Bump rack from 2.2.2 to 2.2.3 [\#107](https://github.com/auth0/omniauth-auth0/pull/107) ([dependabot](https://github.com/dependabot))
  • Update dependencies [\#100](https://github.com/auth0/omniauth-auth0/pull/100) ([Albalmaceda](https://github.com/Albalmaceda))
  • Added
  • Add support for screen_hint=signup param [\#103](https://github.com/auth0/omniauth-auth0/pull/103) ([bbean86](https://github.com/bbean86))
  • Add support for `connection_scope` in params [\#99](https://github.com/auth0/omniauth-auth0/pull/99) ([felixclack](https://github.com/felixclack))
v2.3.1
davidpatrickdavidpatrick·6y ago·March 27, 2020
GitHub

📋 Changes

  • Fixes dependency issue [\#97](https://github.com/auth0/omniauth-auth0/pull/97) ([davidpatrick](https://github.com/davidpatrick))
  • Fix "NameError: uninitialized constant OmniAuth::Auth0::TokenValidationError" [\#96](https://github.com/auth0/omniauth-auth0/pull/96) ([stefanwork](https://github.com/stefanwork))
v2.3.0
davidpatrickdavidpatrick·6y ago·March 10, 2020
GitHub

📋 Changes

  • Improved OIDC Compliance [\#74](https://github.com/auth0/omniauth-auth0/pull/92) ([davidpatrick](https://github.com/davidpatrick))
v2.2.0
joshcanhelpjoshcanhelp·7y ago·April 18, 2019
GitHub

📋 Changes

  • It supports custom domain? [\#71](https://github.com/auth0/omniauth-auth0/issues/71)
  • Valid Login, No Details: email=nil image=nil name="github|38257089" nickname=nil [\#70](https://github.com/auth0/omniauth-auth0/issues/70)
  • Custom issuer [\#77](https://github.com/auth0/omniauth-auth0/pull/77) ([ryan-rosenfeld](https://github.com/ryan-rosenfeld))
  • Add telemetry to token endpoint [\#74](https://github.com/auth0/omniauth-auth0/pull/74) ([joshcanhelp](https://github.com/joshcanhelp))
  • Remove telemetry from authorize URL [\#75](https://github.com/auth0/omniauth-auth0/pull/75) ([joshcanhelp](https://github.com/joshcanhelp))
2.1.0v2.1.0
joshcanhelpjoshcanhelp·7y ago·November 1, 2018
GitHub

📋 Changes

  • URL should be spelled uppercase outside of code [\#64](https://github.com/auth0/omniauth-auth0/issues/64)
  • Add prompt=none authorization param handler [\#58](https://github.com/auth0/omniauth-auth0/issues/58)
  • Could not find a valid mapping for path "/auth/oauth2/callback" [\#56](https://github.com/auth0/omniauth-auth0/issues/56)
  • I had to downgrade my gems to use this strategy :-( [\#53](https://github.com/auth0/omniauth-auth0/issues/53)
  • CSRF detected [\#49](https://github.com/auth0/omniauth-auth0/issues/49)
  • /auth/:provider route not registered? [\#47](https://github.com/auth0/omniauth-auth0/issues/47)
  • Add ID token validation [\#62](https://github.com/auth0/omniauth-auth0/pull/62) ([joshcanhelp](https://github.com/joshcanhelp))
  • Silent authentication [\#59](https://github.com/auth0/omniauth-auth0/pull/59) ([batalla3692](https://github.com/batalla3692))
  • + 4 more
← Back to omniauth-auth0 wiki