- FIX: use proper authentication in revoke endpoint (issue #83). (09d49652)
- FIX: Exception thrown before redirecting on web (#76). (7c803048)
- FEAT: add support for additional parameters (pull request #101 from twklessor). (dee2e3b5)
- FIX: update contentSecurityPolicy of keycloak server to allow silent refresh with iframe. (df9ef506)
- FIX: initial token persisted in browser Authenticator. (a4ac2c50)
- FIX: logout from Authenticator on web. (05343c8a)
- FIX: length of random string always 50. (850acc96)
- FIX: bug only first supported scope included in the auth request (pull request #63 from insertjokehere). (fd2f3b3e)
- FEAT: add optional prompt parameter to Flow and Authenticator constructors. (f0af92fc)
- FEAT: add
trySilentRefresh
method to browserAuthenticator
. (e74d8e3f) - FEAT: add device parameter to implicit flow. (5a6bf046)
- FEAT: add support for password flow. (c89d11b1)
- FEAT: add scopes argument to Flow.authorizationCodeWithPKCE constructor (pull request #64 from insertjokehere). (bd37e6d9)
- FEAT: added possibility to hide or change message after redirect (pull request #66 from BetterBOy). (aafaab80)
- DOCS: add docs to Authenticators. (65f9b285)
- DOCS: fix logout button in browser_example. (70ffbebc)
- DOCS: add funding info. (e006d6de)
- DOCS: add example usage with keycloak server. (a2939419)
- keep old refresh token when access token refreshed and no new refresh token received
- handle tokens without expiration
- added
onTokenChanged
stream toCredential
- added
Authenticator.fromFlow
constructor
- handle non successful http requests correctly, throwing either an
OpenIdException
when the response is in the openid error format or anHttpRequestException
otherwise
client
inFlow
,issuer
andclientId
inClient
andclient
inCredential
are now non-nullable
- Bugfixes
- Null safety
- Fix not using Client's httpClient for getTokenResponse
- Add http.Client arguments
- Breaking change:
clientSecret
is now a named argument inClient
constructor - Add optional
forceRefresh
argument togetTokenResponse
- Add
fromJson
andtoJson
toCredential
- Add
revoke
method toCredential
- Add
generateLogoutUrl
method toCredential
- Add jwtBearer flow for grant_type
urn:ietf:params:oauth:grant-type:jwt-bearer
- Added
getTokenResponse
method - Added
createHttpClient
method
- Allow only signing algorithms specified in
id_token_signing_alg_values_supported
parameter of issuer metadata
- Fix Authorization Code PKCE flow
- Dart 2/flutter compatibility
- Initial version