Skip to content

Releases: scheb/2fa

v5.4.1

24 Jan 13:03
Compare
Choose a tag to compare
  • Address BC issue when TwoFactorFirewallConfig is instantiated by foreign code, #51

v5.4.0

23 Jan 19:32
Compare
Choose a tag to compare
  • Support JSON payloads when sending over the 2fa code, to better integrate the bundle with JSON APIs, #48
  • Fix the "form" event not being dispatched (and therefore the 2fa provider not being prepared) when the 2fa form path is configured for anonymous access in access_control

v5.3.1

01 Jan 15:54
Compare
Choose a tag to compare
  • Unset the preparation listener state after each request to solve an issue with PHP PM #43, thanks to @mathieudz

v5.3.0

31 Dec 11:37
Compare
Choose a tag to compare
  • #45 Added support for lcobucci/jwt v4, the minimum supported version bumped up to v3.4. Thanks to @wouterj
  • Annotated classes that aren't meant to be extended @final, the ones that aren't part of the public API @internal. Doesn't break your code, but code analysis tools and your IDE should warn you when you're trying something that is not intended.

v5.2.1

02 Dec 18:51
Compare
Choose a tag to compare

Fix issues related to lazy firewalls:

  • Fix not redirecting to 2fa form when firewall is lazy #40
  • Lazy firewall causes provider to not be prepared #39

v5.2.0

01 Dec 11:39
Compare
Choose a tag to compare

Improving the integration with Symfony's security component, made possible by some features added with Symfony 5.2. This is removing some of the "hacks" the bundle does to make things work. Coincidentally, this also version 5.2 of the bundle :)

  • With Symfony 5.2, the bundle is using a different way (less hacky) to manage access control during 2fa. Makes use of symfony/symfony#37336 and symfony/symfony#37337.
  • The bundle's support for Symfony's experimental authenticator security system has been updated. The bundle now requires at least Symfony 5.2 to work in combination with the new authenticator security system. Integrated with symfony/symfony#37359 to manage the security token after login. Support and minimum required version for the old security system hasn't changed, don't worry.

v5.1.4

13 Nov 09:48
Compare
Choose a tag to compare
  • Fix "Passing more than one Security attribute is not supported" in AccessDecisionManager #34

v5.1.3

30 Oct 19:33
Compare
Choose a tag to compare

Fix compatibility issue with Symfony 5.2 (Undefined class constant 'PUBLIC_ACCESS')

v5.1.2

26 Oct 23:52
Compare
Choose a tag to compare

Fix "Logout path not accessible during two-factor authentication when using CSRF protection" #28

v5.1.1

21 Sep 13:49
Compare
Choose a tag to compare

Fix FatalThrowableError in RememberMeServicesDecoratorCompilerPass when service id is not a string, thanks to @enemis