Releases: Tmeister/wp-api-jwt-auth
Releases · Tmeister/wp-api-jwt-auth
1.3.4
1.3.3
1.3.2
Update PHP Version and Refactoring
- Updating the minimum version of PHP to 7.4
- Validate the signing algorithm against the supported algorithms https://github.com/see https://www.rfc-editor.org/rfc/rfc7518#section-3
- Sanitize the REQUEST_URI and HTTP_AUTHORIZATION values before using them
- Use get_header() instead of $_SERVER to get the Authorization header when possible
- Added typed properties to the JWT_Auth class where possible
- Along with this release, I release a new simple JWT Client App for testing purposes https://github.com/see https://github.com/Tmeister/jwt-client
- WP Code Standards
- Remove unnecessary tests
Update firebase/php-jwt to the latest version 6.3
- Update encode and decode functions to use the new arguments
- Add a new filter to change the algorithm used, default HS256
- Fix warning register_rest_route was called incorrectly
- Allow for Basic Auth, by not attempting to validate Authentication Headers if a valid user has already been determined
1.2.6
Cookies && Token compatibility
- Fix the root problem with gutenberg infinite loops and allow the token validation/generation if the WP cookie exists.
- More info (#138)
- Props: https://github.com/andrzejpiotrowski
1.2.5
1.2.4
Version 1.2.4
- Update firebase/php-jwt to v5.0.0 ( https://github.com/firebase/php-jwt )
- Add Requires PHP Tag