1.4.0

Changelog:

• BC Break: dropped Symfony 5.0 support as it is EOL,
• BC Break: dropped PHP 7.2 support as it is EOL,
• BC Break: changed __construct() argument for OAuth/RequestDataStorage/SessionStorage, from SessionInterface $session to RequestStack $requestStack,
• BC Break: all internal classes are "softly" marked as final,
• Added: Symfony 5.1 Security system support,
• Added: Forward compatibility layer for session service deprecation,
• Added: state support for service authentication URL's,
• Added: ability to change the response after HWIOAuthEvents::CONNECT_COMPLETED is fired,
• Added: PHPStan static analyse into CI,
• Fixed: OAuthProvide to properly refresh data inside tokens,
• Fixed: PHP notice in AppleResourceOwner,
• Fixed: use new GitHub API in GitHubResourceOwner,
• Fixed: functional tests with & without FOSUserBundle,
• Fixed: controller don't depend on service container if possible,
• Maintain: removed Wunderlist resource owner,
• Maintain: removed several Symfony BC layers,
• Maintain: removed Prophecy in favour of PHPUnit mocking,

1.3.0

• BC Break: dropped support for Symfony <4.4,
• BC Break: dropped support for Doctrine Bundle <2.0,
• Added PHP 8 support,
• Upgraded Facebook API to v8.0,
• Upgraded Twitch resource owner to incorporate latest Twitch API,
• Fixed: undefined id_token exception in Azure resource owner,
• Docs: changed firewall name to match flex receipt,
• Maintain: moved from Travis CI to Github Actions

1.2.0

• BC Break: dropped Symfony 4.3 support,
• Added first_name & last_name in AzureResourceOwner,
• Added: support for multiple OAuth2 state parameters,
• Added: Apple resource owner,
• Fixed: updated Azure authorization & access_token urls,
• Fixed: Doctrine persistence deprecation errors,
• Allow modification of the response in FilterUserResponseEvent,

1.1.0

• Added Symfony 5 support,
• Added domain whitelist service to avoid open redirect on target_path,
• Fixed: session service was not injected in LoginController,
• Fixed: missing setContainer call to service configuration for LoginController,
• Fixed: client id and client secret must be set in Auth0ResourceOwner::doGetTokenRequest,
• Fixed: missing client id and client secret in Auth0ResourceOwner,
• Twig dependency on LoginController is now optional,

1.0.0

• Dropped support for PHP 5.6, 7.0 and 7.1,
• Dropped support for FOSUserBundle 1.3,
• Dropped support for Symfony 2.8,
• Minimum Symfony 3 requirement is 3.4,
• Minimum Symfony 4 requirement is 4.3,
• Fixed: WindowsLive Resource Owner token request,
• Fixed: Update Facebook API to v3.1,
• Fixed: Update Linkedin API to v2,
• Fixed: YahooResourceOwner::doGetUserInformationRequest uses wrong arguments,
• Fixed: Symfony deprecation warning in symfony/config,
• Fixed: SensioConnect now uses new API URLs,
• Fixed: Do not add Authorization header if no client_secret is present,
• Fixed: LoginController::connectAction should not fail if no token is available,
• Added: Genius.com resource owner,
• Added: HTTPlug 2.0 support,
• Added: Keycloak resource owner,
• Added: The controller is now available as a service,
• Added: Allow to use HTTP Basic auth for token request,
• [BC break] Class Configuration has been marked final,
• [BC break] Class ConnectController has been marked final,
• [BC break] Class HWIOAuthExtension has been marked final,
• [BC break] Class OAuthExtension has been marked final,
• [BC break] Class SetResourceOwnerServiceNameCompilerPass has been marked final,
• [BC break] Class ConnectController extends AbstractController instead of Controller,
• [BC break] Service hwi_oauth.http_client has been marked private,
• [BC break] Service hwi_oauth.security.oauth_utils has been marked private,
• [BC break] Several service class parameters have been removed,

0.6.3 - bugfix release

Here are some details what's in release:

• Fixed: Vkontakte profile picture & nickname path,
• Fixed: Content-Length header must be a string,
• Fixed: Upgraded GitLab end point to v4,
• Fixed: Resource owner map parameters must be public,
• Fixed: Azure resource owner infos_url should not be empty,
• Fixed: Don't start sessions twice & don't start sessions if already started,
• Fixed: Updated BitBucket docs,
• Added: Further compatibility changes for Symfony 4.1,
• Added: LinkedIn first- & last- names,
• Added: Facebook profile picture

0.6.2 - bugfix release

Here are some details what's in release:

• Fixed: VK requires API version now,
• Fixed: Updated Slack resource owner to use new Slack API methods,
• Fixed: Changing authorization and access token to v2 for LinkedIn,
• Fixed: Fix double call of getUserInformation() in ConnectController,
• Fixed: Fix serialization of AccountNotLinkedException,
• Fixed: Check for grant_rule value IS_AUTHENTICATED_FULLY in DI configuration,
• Fixed: Don't execute OAuthProvider::refreshAccessToken() when there is no refresh token

0.6.1 - bugfix release

Here are some details what's in release:

• BC BREAK: Replaced PHPUnit_Framework_TestCase with PHPUnit\Framework\TestCase in tests,
• Added: Implemented getUserInformation() for Dropbox v2,
• Fixed: Headers passed to httpRequest() method in various resource owners,
• Fixed: Marked some services as public to make code compatible with Symfony 4

0.6.0 - new major release

Finally a long awaited version 0.6.0 arrived!

Here are some details what's in release:

• BC BREAK: Fully replaced Buzz library with usage of HTTPlug & Guzzle 6,
• BC BREAK: hwi.http_client config options are remove. HTTP configuration must rely on the HTTPlug client,
• BC BREAK: Template engine other than Twig are no longer supported,
• BC BREAK: Option hwi_oauth.templating_engine was removed,
• Added: Symfony 4 support,
• Added: php-http/httplug-bundle support, to auto-provide needed HTTPlug services and get full Symfony integration,
• Added: hwi.http.client and hwi.http.message_factory config keys to provide your own HTTPlug services,
• Added: HWIOAuthEvents class with definition of bundle events,
• Added: ResourceOwnerInterface::addPaths() method for easier managing paths in resource owners,
• Fixed: Update Facebook API to v2.8

0.5.3 - bugfix release

Note: this is last bugfix release for version 0.5, please upgrade to version 0.6.

Here are some details what's in release:

• Fixed: Bitbucket2 resource owner,
• Fixed: GitHub resource owner documentation,
• Fixed: Don't require any form for the connect feature,
• Fixed: Uncaught exception with custom error page,
• Fixed: php-cs-fixer updated to latest version & run on base code