All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
10.0.0-rc.1 - 2024-11-04
DataType\Filter\StringFilter::matches()to check if string match the filter conditions- Refresh token functionality
- New queries:
OxidEsales\GraphQL\Base\Controller\Login::loginOxidEsales\GraphQL\Base\Controller\Token::refresh
- New datatypes:
OxidEsales\GraphQL\Base\DataType\Loginas a return type forloginquery, containing refresh and access tokenOxidEsales\GraphQL\Base\DataType\RefreshToken
- New event:
OxidEsales\GraphQL\Base\Event\BeforeTokenCreation
- New services:
OxidEsales\GraphQL\Base\Service\CookieServiceOxidEsales\GraphQL\Base\Service\FingerprintServiceOxidEsales\GraphQL\Base\Service\HeaderServiceOxidEsales\GraphQL\Base\Service\LoginServiceOxidEsales\GraphQL\Base\Service\RefreshTokenService
- New configuration options:
sRefreshTokenLifetime- options for refresh token lifetime, from 24 hours to 90 dayssFingerprintCookieMode- option for the authentication fingerprint cookie mode, same or cross origin
- New queries:
- Access and refresh tokens are now invalidated when the user's password is changed
- New methods:
OxidEsales\GraphQL\Base\Infrastructure\RefreshTokenRepositoryInterface::invalidateUserTokensOxidEsales\GraphQL\Base\Infrastructure\Token::invalidateUserTokensOxidEsales\GraphQL\Base\Infrastructure\Token::isTokenExpired
- New event subscriber:
OxidEsales\GraphQL\Base\Event\Subscriber\PasswordChangeSubscriber
- New methods:
- Renamed OxidEsales\GraphQL\Base\Infrastructure\Token::cleanUpTokens() to deleteOrphanedTokens()