1.9.0
New features
-
The
rodauth:views
generator now supports the new webauthn_autofill feature added in Rodauth 5.30.Existing applications can upgrade by using
rodauth.login_form_footer
method instead of rendering the partial directly, and usingrodauth.login_field_autocomplete_value
for theautocomplete
attribute value on the email field in the login form.
Other improvements
-
The
rodauth:views
generator now requires explicitly specifying thetwo_factor_base
feature in order to generate its view templates. Previously these view templates were generated automatically with a dependent feature (otp
,sms_codes
,recovery_codes
,webauthn
). -
The generated
app/misc/rodauth_main.rb
now setslogin_param "email"
for better compatibility with other authentication frameworks such as Devise. -
The generated mailer now prepends
rodauth.email_subject_prefix
to all email subjects, just like Rodauth does by default. -
The Trilogy adapter is now better handled in generators. Note that you'll be able to use it starting from Sequel 5.69, which will include the corresponding Sequel adapter.
-
Fixed a typo in the
unlock_account
email template (thanks to @zavan)
Backwards compatibility
-
The
#rails_account
method now leverages Rodauth's newaccount!
method, which greatly simplifies the logic. As a result, the#rails_account
method no longer clears the session if the logged in account was deleted. The primary goal behind that functionality was for easier development, but the session cookie never actually got cleared when Rails rendered an error response. If you were relying on this behavior, I recommend usingrodauth.require_account
instead ofrodauth.require_authentication
, and possibly even using theactive_sessions
feature. -
Support for Rails 4.2 has been dropped.