v4.8.0

Features

• add dynamic scope value support (caa8f0e)

v4.7.1

Bug Fixes

• check_session regression fix (32975d9)

v4.7.0

Bug Fixes

• conform claims param parsing (c553a92)
• set session params as undefined instead of delete (a872091)

Features

• accepted scope and rejected claim tracking (b4c2655)
• session_state changes (f64d040)

v4.6.0

Features

• add client meta to setProviderSession (1174c76), closes #352
• check session client Origin check (6c27f10)
• option to set interactionResult without redirecting to resume right away (6aeedf2), closes #350
• session management client helper is now inline with other helpers (96802df)
• update JWT Response for OAuth Token Introspection draft (039ab90)

v4.5.0

Bug Fixes

• message displayed on blank /device (86541df)

Features

• update device flow to draft-12 (e00fa52)

v4.4.0

Features

• JWT Response for OAuth Token Introspection (72142fd)

v4.3.2

Bug Fixes

• add a clear error description when sector uri isn't a valid json (05c14d1)
• allow clients that do not use authorization to utilize pairwise (c24ea70)

v4.3.1

Bug Fixes

• device_authorization w/ offline_access scope (19a85ac)

v4.3.0

Bug Fixes

• allow for pkce to be disabled (3aca2c8)
• debug revocation after yield (bf4c012)
• pathFor returns a valid route for issuers with terminating "/" (9e4b1a0), closes #315

Features

• add Device Flow experimental/draft feature (461a8e3)
• add gty storage claim for access and refresh token (a492a5e)
• change the requests's uuid to a previous value of grantId (28673e2)

v4.2.2

• fixed expiresIn sent to adapter#upsert when interaction session are saved using interactionFinished()