v1.0.0-beta.4

What's Changed

SECURITY

• Password Shucking Vulnerability

Breaking Changes

• feat: User activation checks and utility functions. by @lonnieezell in #580

Fixed Bugs

• fix: remove username in $validFields by default by @kenjis in #498
• fix: UserModel cannot save an array by @kenjis in #504
• fix: TypeError when checking invalid permission by @kenjis in #510
• fix: set only validated fields to User Entity in RegisterController by @kenjis in #501
• fix: Error exception occurs when user with pending activation tries magic-link login by @kenjis in #503
• fix: withIdentities() when user not exists by @michalsn in #514
• fix: minimum password length check by @kenjis in #527
• fix: findByCredentials() returns User when email is empty string by @kenjis in #548
• bug: Call to a member function inGroup() on null after logging out by @cornejobarraza in #576
• fix: update shield:setup for correct run in CI4.3.0+ by @datamweb in #594
• Fix: groups and permissions filter redirects by @sammyskills in #589
• fix: group entity can method by @jozefrebjak in #649
• fix: Custom login fields should work for logging in. by @lonnieezell in #629

New Features

• Feat: Force password reset by @sammyskills in #601
• Feature: Banning Users by @davidnsai in #650

Enhancements

• feat: add request info to all emails by @jozefrebjak in #431
• Italian Translation by @virdb in #530
• feat: add Turkish lang file by @mcsaygili in #549
• Add filter permission and group by @lonnieezell in #535
• dev: Allow easier overriding of views in developer applications. by @lonnieezell in #565
• feat: add shield:model command by @paulbalandan in #558
• Fix: Unnamed Auth routes returns an error when inside a route group by @sammyskills in #577
• feat: customize name of Shield Tables w/o constant by @kenjis in #633

Refactoring

• refactor: use ::class constants by @kenjis in #540
• refactor: updateActiveDate query builder by @kpeu3u in #520
• refactor: remove unused Auth::class by @datamweb in #588
• refactor: remove namespace from language files by @datamweb in #619
• refactor: replace deprecated Faker property access by @kenjis in #620
• test: fix ForcePasswordResetTest::forceGlobalPasswordReset() by @kenjis in #621
• refactor: UserIdentityModel::update() throws Exception by @kenjis in #622
• refactor: use getIdentity() for improve action Email2FA by @datamweb in #625
• refactor: change return type to void by @kenjis in #626

New Contributors

• @michalsn made their first contribution in #514
• @activivan made their first contribution in #513
• @virdb made their first contribution in #530
• @mcsaygili made their first contribution in #549
• @kpeu3u made their first contribution in #520
• @cornejobarraza made their first contribution in #576
• @caosdp-rs made their first contribution in #618
• @totoprayogo1916 made their first contribution in #623
• @cijagani made their first contribution in #657

Full Changelog: v1.0.0-beta.3...v1.0.0-beta.4