3.3.2

• Total issues resolved: 0
• Total pull requests resolved: 1
• Total contributors: 1

Documentation

• 356: fix php docblock thanks to @prolic

3.3.1

This version fixes the inconsistencies with the upcoming major release.

• Total issues resolved: 0
• Total pull requests resolved: 3
• Total contributors: 1

Documentation

• 297: Fix method name for audience configuration thanks to @lcobucci
• 296: Fix method name to match interface in v4 thanks to @lcobucci
• 295: Fix deprecation notes thanks to @lcobucci

3.3.0

This version provides a major performance improvement for the ECDSA algorithm, making it compatible with PHP 7.1+ too. We're also starting to add deprecation notes and will soon backport things from v4.x to create an upgrade path.

• Total issues resolved: 7
• Total pull requests resolved: 8
• Total contributors: 11

Improvement

• 288: Backport ECDSA improvements thanks to @lcobucci
• 283: Grammatical exception message fix thanks to @zanechua
• 261: Adjust build thanks to @lcobucci
• 260: Fixes memory leak in RSA-Signer thanks to @Fahrenholz
• 248: Issue #191: Allow leeway to handle clock skew thanks to @m777z
• 137: Update PHPECC to remove mcrypt dependency thanks to @lcobucci
• 282: There is no support for PHP 7.3 thanks to @aksafan
• 259: Unable to use ECDSA signer on PHP 7.2 (request to update mdanter/ecc dependency) thanks to @shakura
• 246: mdanter_ecc Singer Ecdsa KeyParse Issue thanks to @kapil-infobeans

Documentation

• 278: Corrected typos in README.md thanks to @msimion
• 258: Add Key typehint for verify() thanks to @francislavoie
• 196: Update README.md thanks to @jagDanJu
• 133: Add deprecation notes on methods thanks to @lcobucci

Bug

• 191: Validation of iat breaks on systems with a clock skew. thanks to @viviivanov

4.0.0-alpha3

• Total issues resolved: 1
• Total pull requests resolved: 1
• Total contributors: 2

Improvement

• 292: Make audience argument variadic in builder thanks to @lcobucci and @samjudge

4.0.0-alpha2

• Total issues resolved: 0
• Total pull requests resolved: 25
• Total contributors: 8

BC-break

• 247: Use OpenSSL to handle ECDSA signature thanks to @lcobucci

Improvement

• 287: Require PHPUnit v8.0 thanks to @lcobucci
• 286: Upgrade Infection to 0.12 thanks to @lcobucci
• 285: Upgrade PHPStan to v0.11 thanks to @lcobucci
• 281: Fix deprecation notices thanks to @lcobucci
• 277: Upgrade infection thanks to @lcobucci
• 276: ECDSA Alg improvements thanks to @Spomky
• 275: Revert "Remove assertion count manipulation" thanks to @lcobucci
• 272: Various minor improvements thanks to @lcobucci
• 271: Add leeway to ValidAt constraint thanks to @lcobucci
• 270: Remove assertion count manipulation thanks to @lcobucci
• 269: Make build more strict thanks to @lcobucci
• 264: Add validation constraints to configuration object thanks to @daniruizcamacho
• 224: Improve build tools thanks to @lcobucci
• 202: Remove file level docblock from all files thanks to @lcobucci
• 200: Re-enable Humbug since we now have a RC version thanks to @lcobucci
• 199: 198: Add CS checking to build thanks to @vanbrabantf
• 197: Switched public and final to match PSR2 thanks to @vanbrabantf
• 189: Add PHPBench as performance test tool thanks to @lcobucci
• 188: Add PHPCS configuration thanks to @lcobucci

Documentation

• 242: Fix travis link in readme thanks to @BackEndTea
• 221: Make it super obvious that the stable docs are at at 3.2 branch. thanks to @frankdejonge
• 218: Update license year thanks to @m1guelpf
• 208: Add information about Auth0's support thanks to @lcobucci
• 184: Fix README.md link to issue #37 thanks to @ricardoseriani

v3.2.5

• Total issues resolved: 0
• Total pull requests resolved: 1
• Total contributors: 1

Documentation

• 274: Fix documentation of internal components thanks to @lcobucci

3.2.4

This release fixes a compatibility issue introduced in v3.2.3.

• Total issues resolved: 1
• Total pull requests resolved: 1
• Total contributors: 2

Bug

• 257: Fix PHP 5.5 compatibility thanks to @lcobucci, @Ocramius, and @taasan

Release 3.2.3

• Total issues resolved: 1
• Total pull requests resolved: 3
• Total contributors: 3

Improvement

• 250: Add newer PHP versions (allowing some to fail) thanks to @lcobucci

Documentation

• 225: Add missing docblock argument thanks to @Quezler

Bug

• 209: Add content check after key file reading thanks to @misantron and @lcobucci

Release 3.2.2

This version fixes some small documentation issues.

Total issues resolved: 2

• 194: Fix Builder#sign() docblock to allow Key|string on $key thanks to @msvrtan
• 195: Fix documentation to have the correct claim name (exp instead of nbf) thanks to @carlnordenfelt

4.0.0-alpha1

• Total issues resolved: 24
• Total pull requests resolved: 25
• Total contributors: 10

BC-break

• 113: Improve token builder interface thanks to @lcobucci
• 73: Replaced Token->validate with Validator class handling token validation thanks to @dannydorfel
• 72: Token Validation API thanks to @schnittstabil
• 52: Do we really need to throw an exception when verifying the signature of an unsigned token? thanks to @lcobucci
• 51: Move to PHP 7 thanks to @lcobucci

Improvement

• 204: Add validation constraints to configuration object thanks to @lcobucci
• 201: Improve build process thanks to @lcobucci
• 198: Add PHPCS as a dev dependency thanks to @lcobucci
• 187: Implement ECDSA signer that uses OpenSSL thanks to @lcobucci
• 180: Use a time provider instead on ValidAt constraint thanks to @lcobucci
• 171: Handle claims conversion thanks to @lcobucci and @henriquemoody
• 170: Enhancement: Keep packages sorted without specifying --sort-packages thanks to @localheinz
• 169: Enhancement: Add .gitattributes thanks to @localheinz
• 168: Fix: Cache dependencies installed with composer between builds thanks to @localheinz
• 167: Fix: Remove unused imports thanks to @localheinz
• 166: Add keys to config thanks to @lcobucci
• 165: Simplify registered claims usage thanks to @lcobucci
• 164: Rename builder methods thanks to @lcobucci
• 163: Fix RSA failures and add tests to it thanks to @lcobucci
• 161: Add key(s) to configuration object thanks to @lcobucci
• 160: Create none signer thanks to @lcobucci
• 159: Move string references of registered claims to constants thanks to @lcobucci
• 153: Require PHP 7.1 thanks to @lcobucci
• 146: Require PHP 7.1 thanks to @lcobucci
• 139: Use a time provider to get the current system time thanks to @lcobucci
• 131: Make sure there are no duplicated audiences while building token thanks to @lcobucci
• 130: Extract the registered claim names to constants thanks to @lcobucci
• 129: Create new validation API thanks to @lcobucci
• 122: Simplify signer API thanks to @lcobucci
• 118: Improve tests and add humbug thanks to @lcobucci
• 117: Improve the token interface thanks to @lcobucci
• 95: Removing some bad mutations thanks to @lcobucci
• 84: Using external coverage (and keeping track of just unit tests coverage). thanks to @lcobucci
• 78: Allow arrays or audience claim and issuer validation. thanks to @SamThePsychoticLeprechaun
• 74: Introducing a configuration object thanks to @lcobucci
• 49: Introduce configuration object thanks to @lcobucci
• 38: Extract Encoder and Decoder so they can be used in other libs thanks to @lcobucci
• 29: Private/public claims validation thanks to @lcobucci

Documentation

• 125: Documentation is incorrect / refers to changes not yet in dev-master thanks to @gramorris
• 87: Update required PHP version thanks to @Nyholm

Bug

• 121: Just try to send the report when it exists thanks to @lcobucci
• 111: Update to latest manter/ecc thanks to @lcobucci and @craigcarnell