0.8.0

What's Changed

• BACKWARDS INCOMPATIBILITY: In flight login sessions when the server is upgraded will fail.
  For a completely safe transition, stop the server, remove any temporary session data, and
  bring the new server up.
• BACKWARDS INCOMPATIBILITY: Repeated or trailing underscores are
  no longer allowed in usernames. Existing usernames are unaffected.
• The MultiFactor Authentication status is now available for tokens fetched from the service.
  Currently only OrcID supports MFA statuses other than Unknown. Other statuses are Used and
  Not Used.
• Fixed a bug where usernames with underscores would not be matched in username searches if an
  underscore was an interior character of a search prefix.
• Fixed a bug where a MongoDB error would be thrown if a user search prefix resulted in no search
  terms if it had no valid characters for the requested search, whether user name or display
  name. Now a service error is thrown.
• The /tokens endpoint can now accept Service or service to specify that a service token
  should be created.

New Contributors

• @dauglyon made their first contribution in #493

Full Changelog: 0.7.1...0.8.0

0.7.1

What's Changed

• Publishes a shadow jar on jitpack.io for supporting tests in other repos.

Full Changelog: 0.7.0...0.7.1

0.7.0

What's Changed

• BACKWARDS INCOMPATIBILITY - the auth server now logs to stdout vs. syslog.
• The the fatTestJar Gradle task has been replaced with the shadowJar task, which builds
  a shadowed version of the test fat jar.

Full Changelog: 0.6.1...0.7.0

0.6.1

What's Changed

• Gradle has replaced Ant as the build tool. As a consequence, all the built artifacts
  are now located in the build directory, including the manage_auth script.
• The MongoDB clients have been updated to the most recent version and the service tested
  against Mongo 7.
• Added the mongo-retrywrites configuration setting in deploy.cfg, defaulting to
  false.
• The docker-compose file has been updated to start an auth server in test mode.

Full Changelog: 0.6.0...0.6.1

0.6.0

What's Changed

• ADMIN ACTION REQUIRED - after the server is upgraded, use the manage_auth script to
  recanonicalize the user display names. See the README.md file.
• ADMIN OPTIONAL ACTION - on first startup, the service will build a sparse index on the anonid
  field in the users collection. If there are many users this could take some time. The
  index could be built in the background while the server is running to reduce or avoid
  downtime by starting the new version of the service pointed at the same database or manually
  creating the index in the MongoDB shell.
• User anonymous IDs have been added and are visible in the various endpoints that return
  user information.
• The /api/V2/admin/anonids endpoint has been added to translate anonymous IDs to user names.
• The user search API endpoint has been improved to allow for multiple tokens (e.g. "Dave Smith")
  in the search prefix. The prefix will be tokenized prior to search.

New Contributors

• @jsfillman made their first contribution in #388
• @bio-boris made their first contribution in #383

Full Changelog: 0.5.0...0.6.0

0.5.0

What's Changed

• BACKWARDS INCOMPATIBILITY - any in flight login or link flows will fail after the server is
  upgraded to 0.5.0.
• ADMIN ACTION REQUIRED - before starting the upgraded server, remove all data from the tempdata
  collection to avoid server errors for in flight login or link flows.
• Added PKCE to the login and link OAuth2 flows for Google and Globus.
  • See https://www.oauth.com/oauth2-servers/pkce/ for details.
  • OrcID currently does not support PKCE, see ORCID/ORCID-Source#5977
• The OAuth2 state value is now stored in the database rather than in a cookie.

Full Changelog: 0.4.3...0.5.0