Releases: aws-samples/cloudfront-authorization-at-edge
Releases · aws-samples/cloudfront-authorization-at-edge
v2.1.4
What's Changed
- Update version of s3-spa-upload by @ottokruse in #214
Full Changelog: v2.1.3...v2.1.4
Contributors
ottokruse
Assets 2
v2.1.3
What's Changed
- Fix: architecture diagram background compatible with darkmode by @ottokruse in #212
- Preload JWKS into JWKS cache by @ottokruse in #213
Full Changelog: v2.1.2...v2.1.3
Contributors
ottokruse
Assets 2
v2.1.2
What's Changed
- Bump node-forge from 1.2.1 to 1.3.0 in /src/cfn-custom-resources/react-app/react-app by @dependabot in #193
- Bump plist from 3.0.4 to 3.0.5 in /src/cfn-custom-resources/react-app/react-app by @dependabot in #194
- Bump minimist from 1.2.5 to 1.2.6 in /src/cfn-custom-resources/react-app/react-app by @dependabot in #195
- Bump ansi-regex from 4.1.0 to 4.1.1 in /src/cfn-custom-resources/react-app/react-app by @dependabot in #196
- Bump simple-plist from 1.3.0 to 1.3.1 in /src/cfn-custom-resources/react-app/react-app by @dependabot in #200
- Bump ejs from 3.1.6 to 3.1.8 in /src/cfn-custom-resources/react-app/react-app by @dependabot in #201
- Bump async from 2.6.3 to 2.6.4 in /src/cfn-custom-resources/react-app/react-app by @dependabot in #202
- Bump terser from 5.10.0 to 5.14.2 in /src/cfn-custom-resources/react-app/react-app by @dependabot in #204
- Bump terser from 5.10.0 to 5.14.2 by @dependabot in #203
- fix: Append other cookie properties when expiring cookies by @peter-at-work in #207
- Updated dependencies by @ottokruse in #208
- Add lambda:TagResource permission by @ottokruse in #209
- Validate redirect path by @ottokruse in #210
- v2.1.2 by @ottokruse in #211
New Contributors
- @peter-at-work made their first contribution in #207
Full Changelog: v2.1.1...v2.1.2
Contributors
ottokruse, dependabot, and peter-at-work
Assets 2
v2.1.1
What's Changed
- Bump follow-redirects from 1.14.7 to 1.14.8 in /src/cfn-custom-resources/react-app/react-app by @dependabot in #186
- Support using pre-existing user pool in another AWS account by @ottokruse in #191
Full Changelog: v2.1.0...v2.1.1
Contributors
ottokruse and dependabot
Assets 2
v2.1.0
- Cookies are host-only by default
- In static site mode, the refresh token is set to the refresh path, so it isn't send to other paths (more secure and more performant)
- Refreshing of tokens is no longer performed ahead of time, but rather now "lazily" when needed
v2.0.19
v2.0.18
v2.0.17
What's Changed
- Fix for #172 - Remove ClientSecret from UpdateClientPool by @mikereinhold in #173
New Contributors
- @mikereinhold made their first contribution in #173
Full Changelog: v2.0.16...v2.0.17
Contributors
mikereinhold
Assets 2
v2.0.16
v2.0.15
Added support for (all in #166):
- Use a pre-existing S3 bucket (this e.g. skips creation of the sample React app)
- Use a custom origin (e.g. non S3). Also included are parameters with which you can set a custom secret header that is sent along with each request to your custom origin, that your custom origin can check for to make sure the request comes from your CloudFront distribution.
- Use a pre-existing WAF Web ACL
- Use a pre-existing S3 bucket to store CloudFront access logs
- Ability to specify the
DefaultRootObject(previously this would always be set toindex.html)
Note: these things were possible before, if you choose to set CreateCloudFrontDistribution to false. Now they are also possible in the "easy" path, when you set CreateCloudFrontDistribution to true, i.e. with the in-built CloudFront distribution.
Fixed:
- Errors, when logged, were logged as
{}in CloudWatch (#164), but are now properly formatted.