This is a release candidate. See release-please PR #2626 for context.
Supabase Auth
This is a release candidate. See release-please PR #2626 for context.
This is a release candidate. See release-please PR #2626 for context.
This is a release candidate. See release-please PR #2626 for context.
This is a release candidate. See release-please PR #2626 for context.
Added experimental provider linking-domain groups. The session AAL is now downgraded after an admin deletes a MFA factor, and the AMR method (not factor type) is used when downgrading sessions to AAL1.
This is a release candidate. See release-please PR #2608 for context.
This is a release candidate. See release-please PR #2608 for context.
This is a release candidate. See release-please PR #2608 for context.
This is a release candidate. See release-please PR #2608 for context.
Custom OAuth providers now support a per-provider custom_claims_allowlist for controlling which claims are included in tokens. Also includes internal test fixes and a pgx vulnerability marked as unreachable.
This is a release candidate. See release-please PR #2587 for context.
This is a release candidate. See release-please PR #2587 for context.
This is a release candidate. See release-please PR #2587 for context.
RS256 signing keys can now be backed by AWS KMS. SAML now supports zero-downtime service provider key rotation, allowing key changes without disrupting active sessions.
This is a release candidate. See release-please PR #2582 for context.
JSON config file support has been added, and custom OIDC discovery URLs are now supported for non-standard configurations. Also fixed Azure issuer validation and improved WebAuthn configuration handling.
This is a release candidate. See release-please PR #2514 for context.
This is a release candidate. See release-please PR #2514 for context.
This is a release candidate. See release-please PR #2514 for context.
