Releases: silinternational/idp-pw-api
Releases · silinternational/idp-pw-api
Dependency update
Security
- Update phpseclib/phpseclib to address CVE-2023-49316, though it's not certain whether this vulnerability affected this app.
add Sentry logging option
Added
- Added option to use Sentry for error logging and alerting.
- Added a pull request template.
Fixed
- Use
YII_ENVin common/config/main.php instead ofAPP_ENV.
Remove status check of other microservices
Fixed
- Removed the check of email-service in /site/system-status because that service has its own check. Having that check here was causing ECS to mark this service as unhealthy and terminate the task.
- Use a more deterministic dependency list format.
- Dependency update, including new
email-service-php-clientandidp-id-broker-php-clientthat report DNS error correctly. - Removed obsolete and out-of-date
CHANGELOG.mdfile
Get latest zxcvbn with guzzlehttp/psr7 security fix
Merge pull request #261 from silinternational/develop Release 6.5.1 Update dependencies to get latest zxcvbn with guzzlehttp/psr7 security fix
SQL session storage
Changed (non-breaking)
- Changed session storage from memcached to SQL, using a new table in the existing database.
phpseclib 3.0.19
Fixed
- Update dependencies to get phpseclib 3.0.19
Name new webauthn and allow password to contain user's name if it's short
Added
- Accept a label while adding a new webauthn
Fixed
- Don't prevent password from including first/last name if that name is less than 3 characters long
- Update dependencies
Allow user to have multiple webauthns
Merge pull request #251 from silinternational/develop Release 6.3.0 Allow user to have multiple webauthns
Workaround recaptcha error and catch potential future error.
Merge pull request #247 from silinternational/develop Release 6.2.1 Workaround recaptcha error and catch potential future error.
Upgrade to PHP8 and related tweaks
Merge pull request #245 from silinternational/develop Release 6.2.0 Upgrade to PHP8 and related tweaks