All notable changes to this project will be documented in this file. This project adheres to Semantic Versioning.
- resolve issue with IWA in ArcGIS Enterprise not passing expires_in
- resolve issue with IWA in ArcGIS Enterprise not using esri_aopc cookie.
- added support for esri_aopc cookie in ArcGIS Enterprise (will only work on 10.9+, but should not error on downlevel)
- when creating the
UserSessionwe were incorrectly assuming theexpires_inwas in minutes, vs seconds.
- for ArcGIS Enterprise, do not store credentials in localStorage
- add support for
esri_aopccookie, with calls to platformSelf
- drop support for
esri_authcookie
session.hasPrivilegewill handle the case where user.privileges isundefined, as it is for "public" users.
arcgis-oath-bearer::openhandlesredirectUriQueryStringoption by appending it to the redirectUri
- url decode username we get back on the url hash
- allow
customRedirectUrito be a path (i.e. /redirect.html) instead of just a full url. If a path, prepend the current window.location. - ArcGIS REST JS v2.x is now used under the hood
- ember-auto-import is now used to load ArcGIS REST JS
- nothing - release snafu
- added
@esri/arcgis-rest-common-typesto dependencies
- upgraded to ember-fetch 6.2.0
- bug where subsequent reloads would keep extending the token expiry by a massive factor. On the third reload, the timestamp was so large it was an invalid date.
- do not serialize
UserSessioninto local storage - when fetching portalSelf, always use the url from the torii config, as this forces an existing token to be used against the configured API, which will cause things to reject if we have a valid token that's for a different environment (DEV/QA/PROD)
- set isDevelopingAddon to false
session.authMgr.portalwill now be the full ssl org portal url, using the ports and paths from the portalSelf hash
- match behavior of ArcGIS Online cookie, which caches usernames as an
email.
- correctly cache
usernameandemailwhen an authentication session is initiated.
- bump arcgis-rest-js dependencies to
v1.7.1 - use shims instead of relying on the
arcgisRestglobal.
- use a
GETto fetch user metadata to sidestep situations in which a302redirect doesn't pass along the request body.
- adapter was not but should have been
throw-ing an exception out ofopen
- removed debugger in
redirect.html
- bumped arcgis-rest-js dependencies to 1.2.1
- typo in the 1.0.3 change
- include the
request.umd.jsfile which is the actual current build output from ArcGIS Rest JS
- fixed eslint error re: unused var in
/app/ext/torii-provider-arcgis.js - fixed for Ember 2.18.x build error when vendorTree is null
- support for web-tier authentication
session.authTypewith values oftokenorweb-tiersession.withCredentials, will betrueifauthType === web-tiersession.authMgrwhich is anIAuthenticationManagerto allow consuming apps to pass this intoarcgis-rest-jsmethods- added
npm run build:ecswhich sets aTARGETenv var to allow theecstarget to use the production build of ember.
- uses
arcgis-rest-jsinternally
0.12.0 - 2018-01-22
- upgrade torii to 0.9.6
- isPublicUser CP on session
- isCommunityOrgUser CP on session
- isEsriUser CP on session
- always store token - even if using iframe. This is because portal may not set the
esri_authcookie during it's login process, if it's not perfectly configured. So - we will just always store the credentials ourselves.
- upgrade to torii v 0.8.4 for compatibility with ember > 2.12.0
- when constructing the url for iframed oauth, pass the port with the
parentparam, as Firefox now requires an exact match including port on theX-Frame-Optionsheader
- ability to change remoteServiceName at runtime
- isLevelOne and isLevelTwo CPs to session
- null reference error because this was undefined
- arcgis-oauth-bearer handles options differently - we now do not
setthe options on the bearer - arcgis-oath-bearer now handles additional queryString params: autoAccountCreateForSocial & socialLoginProviderName
isAdmin()which will returnt true ifrole === 'org_admin' && !roleId- which is how we know if a user is a FULL org admin
- configuration option to loadGroups during sign-in process. This makes an additional xhr to
/community/users/{username}which returns the users groups. - added
isGroupMemberto the gatekeeper which is exposed assession.isGroupMember(groupId)in consuming applications
- typo in gatekeeper.js
- fix error in portalHostname (it used
portalHostNameinstead ofportalHostnamefrom portal.self) - deprecate
portalHostNamein favor ofportalHostname
- removed all use of
ENV.APP.portalBaseUrlin favor ofENV.torii.providers['arcgis-oauth-bearer'].portalUrl
- support for
ENV.rootURLwhile still usingENV.baseURLif that is set - portalHostName returns protocol-less hostname for Authenticated and Unauthenticated sessions.
- orgPortalUrl marked as deprecated
- now using a fork of torii master that is ~0.8+
- orgPortalUrl CP on session service mixin
- upgrade to ember 2.8
- option to configure a
customRedirectUriin thetorii:{...}config section, allowing greater flexibility with where the oAuth redirect page lives. - bumped to node 6.3.0 in
.nvmrcand.travis.yml
redirect_urinow respectsENV.baseURLif set
- gh-pages deploy
- removed gratuitous logging
- the provider finds a cookie with a token, and makes the portals/self call but gets a 200 response that contains an error payload, reject the promise so that the app does not think the user is logged in.
- withdrawn
- option to redirect to static page for much faster iframe auth flows
- fixed typo in some logic in the dummy
- gatekeeper service
- gatekeeper route + template
- fixed .nvmrc typo
- minor updates to readme and package.json
- Example app can sign out when using Application auth
- support for iframe (*.argis.com only apps) oAuth
- support for application (pop-up) oAuth