ultimate-jekyll-manager 1.3.0 → 1.3.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +7 -0
- package/dist/assets/js/core/auth.js +1 -1
- package/package.json +1 -1
package/CHANGELOG.md
CHANGED
|
@@ -14,6 +14,13 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/).
|
|
|
14
14
|
- `Fixed` for any bug fixes.
|
|
15
15
|
- `Security` in case of vulnerabilities.
|
|
16
16
|
|
|
17
|
+
---
|
|
18
|
+
## [1.3.1] - 2026-05-21
|
|
19
|
+
|
|
20
|
+
### Changed
|
|
21
|
+
|
|
22
|
+
- **`ENFORCE_CONSENT_GUARD` flipped to `true`** in `src/assets/js/core/auth.js`. The page-load consent guard now silently signs out any authenticated user whose doc has `consent.legal.status !== 'granted'`. Caveat: any pre-consent-system user doc (missing the field, or defaulted to `'revoked'`) will be signed out on page load — run the legacy-user migration first, or live-test against fresh signups.
|
|
23
|
+
|
|
17
24
|
---
|
|
18
25
|
## [1.3.0] - 2026-05-21
|
|
19
26
|
|
|
@@ -8,7 +8,7 @@ const SIGNUP_MAX_AGE = 5 * 60 * 1000;
|
|
|
8
8
|
// consent.legal.status !== 'granted' is silently signed out. Keep FALSE until the
|
|
9
9
|
// legacy user migration runs (sets all existing docs to status='granted',
|
|
10
10
|
// source='imported'). Otherwise every existing user gets locked out on signin.
|
|
11
|
-
const ENFORCE_CONSENT_GUARD =
|
|
11
|
+
const ENFORCE_CONSENT_GUARD = true;
|
|
12
12
|
|
|
13
13
|
// Auth Module
|
|
14
14
|
export default function () {
|