@backstage/plugin-auth-backend 0.6.1 → 0.6.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (5) hide show
  1. package/CHANGELOG.md +17 -0
  2. package/dist/index.cjs.js +1 -1
  3. package/dist/index.cjs.js.map +1 -1
  4. package/dist/index.d.ts +9 -24
  5. package/package.json +9 -9
package/CHANGELOG.md CHANGED
@@ -1,5 +1,22 @@
1
1
  # @backstage/plugin-auth-backend
2
2
 
3
+ ## 0.6.2
4
+
5
+ ### Patch Changes
6
+
7
+ - 5333451def: Cleaned up API exports
8
+ - da9c59d6e0: Removed `@backstage/test-utils` dependency.
9
+ - 20ca7cfa5f: Switched the secure cookie mode set on the `express-session` to use `'auto'` rather than `true`. This works around an issue where cookies would not be set if TLS termination was handled in a proxy rather than having the backend served directly with HTTPS.
10
+
11
+ The downside of this change is that secure cookies won't be used unless the backend is directly served with HTTPS. This will be remedied in a future update that allows the backend to configured for trusted proxy mode.
12
+
13
+ - Updated dependencies
14
+ - @backstage/config@0.1.12
15
+ - @backstage/backend-common@0.10.3
16
+ - @backstage/errors@0.2.0
17
+ - @backstage/catalog-client@0.5.4
18
+ - @backstage/catalog-model@0.9.9
19
+
3
20
  ## 0.6.1
4
21
 
5
22
  ### Patch Changes
package/dist/index.cjs.js CHANGED
@@ -2873,7 +2873,7 @@ async function createRouter(options) {
2873
2873
  secret,
2874
2874
  saveUninitialized: false,
2875
2875
  resave: false,
2876
- cookie: { secure: enforceCookieSSL }
2876
+ cookie: { secure: enforceCookieSSL ? "auto" : false }
2877
2877
  }));
2878
2878
  router.use(passport__default["default"].initialize());
2879
2879
  router.use(passport__default["default"].session());