v2.1.0

What's Changed

Other Changes

• Include refreshToken in Verify by @hgeldenhuys in #32
• Fix tests and update test for refresh_token by @na2hiro in #33
  • Bump Remix to 1.19

New Contributors

• @hgeldenhuys made their first contribution in #32

Full Changelog: v2.0.2...v2.1.0

v2.0.2 security updates for crypto-js

What's Changed

Security updates

• Bump @babel/traverse from 7.21.4 to 7.23.2 by @dependabot in #30
• Bump crypto-js from 4.1.1 to 4.2.0 by @dependabot in #31

Full Changelog: v2.0.1...v2.0.2

v2.0.1: security update for `word-wrap`

What's Changed

Other Changes

• Bump word-wrap from 1.2.3 to 1.2.4 by @dependabot in #29

Full Changelog: v2.0.0...v2.0.1

v2.0.0: OAuth 2.0 support

Adding OAuth 2.0 support

• Implement OAuth2 (Twitter2Strategy) by @na2hiro in #27 #28

Omitting API v1.1 usage from OAuth 1.0a

• Remove V1.1 verify_credentials call after successful token retrieval by @na2hiro in #26
• Breaking changes
  • Renamed the class TwitterStrategy → Twitter1Strategy
  • Renamed the default name twitter → twitter1 (should be no harm)
  • Renamed clientId, clientSecret → consumerKey, consumerSecret in the options to match the names in Twitter Developer Portal
  • Profile passed to verify function has only userId (numeric string) and screenName (string), instead of a big object with bunch of fields. You would need to call Twitter APIs yourself using the access token and access secret token. https://github.com/plhery/node-twitter-api-v2 is one of the client for API client for Twitter.

Full Changelog: v1.0.0...v2.0.0

v2 pre-release: Add OAuth 2.0 (Twitter2Strategy)

This is a prerelease version for testing purposes in case auth doesn't work currently.

• Renamed TwitterStrategy to Twitter1Strategy. Also default name is now twitter1 instead of twitter
• Added Twitter2Strategy which uses OAuth 2.0

v2 pre-release: Remove Twitter API 1.1 usage

Profile to be returned has only userId (numeric string) and screenName (string), instead of a big object with bunch of fields. You need to call Twitter APIs yourself using the access token and access secret token. https://github.com/plhery/node-twitter-api-v2 is one of the client for API client for Twitter.

See #26 for the context and more details.

v1.0.0

What's Changed

Breaking changes

• Don't always ask permission by default (Closes #22) by @na2hiro in #24
  • When a user is logging in, the library was sending users to /oauth/authorize endpoint, where Twitter always asks about permission it gives even though the user has previously consented. However, there's /oauth/authenticate endpoint, which Twitter just ask to login (if not logged in yet) or redirect back (if already logged in). That seems to be the most of apps use cases for logging in, so the default behavior is changed to only ask permission once.
    • To maintain the v0 behavior, set alwaysReauthorize: true to the first argument to TwitterStrategy

Full Changelog: v0.1.2...v1.0.0

v0.1.2

What's Changed

• Removed react-dom from dependency #23

Other Changes

• Actions to use node 16 (Closes #20) by @na2hiro in #21
• Bump json5 from 2.2.0 to 2.2.2 by @dependabot in #17

Full Changelog: v0.1.1...v0.1.2

v0.1.1

What's Changed

Improvements

• Export default name by @TheRealFlyingCoder in #15

Other Changes

• Add lint:fix target; Fix lint by @na2hiro in #16
• Remove template more by @na2hiro in #19
• Bump minimatch from 3.0.4 to 3.1.2 by @dependabot in #13
• Bump decode-uri-component from 0.2.0 to 0.2.2 by @dependabot in #14

New Contributors

• @TheRealFlyingCoder made their first contribution in #15

Full Changelog: v0.1.0...v0.1.1

v0.1.0

What's Changed

Changes

• Follow Remix 1.6.3 by @na2hiro in #10

Other Changes

• Add badge to README by @na2hiro in #11

Full Changelog: v0.0.4...v0.1.0