6.1.0 (2024-01-27)
6.0.0 (2023-03-03)
- release dependency update of jsonwebtoken to version 9 (eede274)
- middy-middleware-jwt-auth now relies on jsonwebtoken version 9. The breaking changes from that library apply. See https://github.com/auth0/node-jsonwebtoken/wiki/Migration-Notes:-v8-to-v9 for migration notes.
5.1.1 (2022-11-27)
5.1.0 (2022-04-05)
- support Websocket API requests (225a676)
5.0.0 (2021-10-10)
- feat!: update for middy 2.x (72cbfaa)
- uses middy 2.x. This only updates the types and dependencies, so you likely don't need to do anything beyond updating your middy version. Follow middy's upgrade guide to do this.
4.1.0 (2021-10-04)
- Address review comments (9e05a90)
- remove circular dependency in type guards (7c7b955)
- tests (d53e26e)
- support API Gateway HTTP APIs (72fad79)
4.0.6 (2020-08-30)
- add tslib dependency (22c6bd5)
- depend on stable middy packages for dev (6233456)
- update all dependencies and remove snyk (bb6dbe5)
4.0.5 (2020-08-17)
- package.json to reduce vulnerabilities (9541b6c)
4.0.4 (2020-08-09)
- package.json to reduce vulnerabilities (1c94bb5)
4.0.3 (2020-06-20)
- package.json & .snyk to reduce vulnerabilities (7fde50e)
4.0.2 (2020-06-20)
- package.json & .snyk to reduce vulnerabilities (8aeded9)
- package.json & .snyk to reduce vulnerabilities (677802b)
- package.json to reduce vulnerabilities (a384060)
4.0.1 (2020-06-20)
- package.json to reduce vulnerabilities (414d9ee)
4.0.0 (2020-04-30)
- upgrade to middy@1.0.0 (52f7e22)
- As of this version this middleware only supports middy@1.0.0 and upwards. See https://github.com/middyjs/middy/blob/master/UPGRADE.md for middy upgrade instructions.
3.0.4 (2020-04-18)
- upgrade middy from 0.34.0 to 0.36.0 (6e1ff2f)
3.0.3 (2020-04-16)
- make snyk a dev dependency (53d72e7)
3.0.2 (2020-04-10)
- package.json & .snyk to reduce vulnerabilities (7e56ba0)
- package.json & .snyk to reduce vulnerabilities (7598fbc)
3.0.1 (2020-03-27)
- package.json to reduce vulnerabilities (e6269bc)
3.0.0 (2019-11-19)
- move payload to event.auth.payload (c48a741)
- give access to token in event.auth (4ed1ef5)
- Previously the payload was found directly in event.auth, now it is in event.auth.payload to be able to put additional information into event.auth
2.4.0 (2019-07-29)
- add an option that allows making authorization mandatory (cac01c1)
- reject unauthorized events when authorizationRequired is set (e292328)
- update README.md (c3acb83)
2.3.0 (2019-06-07)
- build module to commonjs (a548656)
2.2.0 (2019-03-12)
- allow for tokenSources in middleware options (01197c1)
- get token via tokenSource if it is set in the options (dc28c2d)
- set default tokenSources (e2d5593)
2.1.1 (2019-02-16)
- stringify JWTAuthMiddleware options in error (2f09634)
2.1.0 (2019-02-16)
- standardize date format in TokenExpired error message (8ac46c9)
- add logging of encryption algorithm in debug mode (d4854b1)
- allow to check token payload with a type guard (842232b)
- throw more explicit error if token expired (50896bd)
- throw more explicit error if token isn't valid yet (3cb1c33)
2.0.0 (2019-02-16)
- Previously lowercase authorization headers were ignored. Now if both a lower case authorization and an upper case Authorization header are present, an error is thrown. Currently the middleware does not support use cases where both headers are present.
1.1.0 (2019-02-16)
- accept multivalue header format (7d30dd1)