This changelog includes important updates to PropelAuth. For larger features, we’ll provide links where you can find more details.
For any item with the Beta label, if you are interested in testing it out, please email us at support@propelauth.com.
2023-11-10
| Category | Description |
|---|
| Feature | Added User Insights, which includes churn and reengagement reports for users and organizations. |
| Feature | You can now set alerting when a user impersonation session is started. |
| Improvement | The metrics on the homepage now tell you how your numbers compare to the previous month. |
| Improvement | SAML permissions are now enabled for account owners by default. |
| Improvement | We now display expired invitations on the hosted pages, so users can easily see who they might need to reinvite. |
| Bugfix | Magic link icons on the login page now match the text color. |
2023-11-03
| Category | Description |
|---|
| Improvement | Email invite expiration time has been increased to 5 days. |
| Improvement | Impersonating a user no longer updates their last active at time. |
| Bugfix | It is no longer possible to set a negative number in max users. |
| Bugfix | Fixed a bug where profile pictures were not always been set correctly during login with SSO. |
2023-10-27
| Category | Description |
|---|
| Feature | We now send a webhook when a user logs out. |
| Feature | Post-login redirects have been added to all social login flows. |
2023-10-20
| Category | Description |
|---|
| Feature | Emails can now be configured to send from a custom domain. |
| Feature | Metrics around sign up and activity numbers are now available on the PropelAuth dashboard. |
| Improvement | Our migration endpoint now supports PBKDF2 hashes (the default for Django). |
2023-10-13
| Category | Description |
|---|
| Feature | Released a new version of our Next.js library that supports post-login redirects. |
2023-10-06
| Category | Description |
|---|
| Feature | Our Node and Express libraries have been updated to include clearPassword and inviteUser. |
| Improvement | Additional arguments have been added to createOrg, updateOrgMetadata and updateUserMetadata in our Node and Express libraries. |
| Feature | Our Go library has been updated to include ClearPassword, Disable2FA, ChangeRole. and CreateOrgV2 |
| Improvement | Additional arguments have been added to updateOrg in our Go library. |
| Feature | Our Rust library has been updated to include create_access_token, delete_org, and clear_password |
| Improvement | Additional arguments have been added to update_org and update_user_metadata in our Rust library. |
| Improvement | Added a force refresh option to getUserFromServerSideProps in our Next.js library |
| Improvement | Reduced the cases where Next.js middleware was necessary. |
| Bugfix | Fixed some issues in our Next.js library around logout |
2023-09-29
| Category | Description |
|---|
| Feature | Settings pages have been added to both users and organizations in the dashboard. These pages include things like changing user emails and updating joining restrictions on organizations. |
| Feature | Our Python, Django, Flask and FastAPI libraries have been updated to include change_role, delete_org, invite_user. |
| Feature | We now support AWS AppSync. You can use your auth URL as an OIDC endpoint and then you can use your Access Tokens to make GraphQL requests. |
| Improvement | Additional arguments have been added to create_org, update_org, and update_user_metadata in the Python, Django, Flask and FastAPI libraries. |
| Improvement | The limit of permissions per role has increased from 50 to 100. |
| Improvement | The Hosted Pages sidebar has been updated to be more specific about which API key pages are being linked to. |
| Improvement | We updated our Magic Link/Passwordless functionality to handle cases where the links were being automatically clicked by both email providers and email protection services. |
| Bugfix | Fixed some issues where redirects weren’t working when multiple tabs were open. |
2023-09-22
| Category | Description |
|---|
| Feature | You can now add a user to an org during the user creation process in the dashboard. |
| Improvement | Org Search in the dashboard now supports org IDs in addition to names. |
| Improvement | We’ve increased limits around requests that can be made to us, so customers with large amounts of user properties or permissions will no longer see an error message when saving to the dashboard. |
2023-09-15
| Category | Description |
|---|
| Feature | The Frontend Integration page on the PropelAuth dashboard can now take in any URL. |
| Feature | Added a copy button on the Users table in the PropelAuth dashboard. |
| Feature | Added mobile optimization to the recently refreshed hosted pages. |
| Bugfix | Fixed a bug that caused users to sometimes get redirected incorrectly after confirming their email. |
2023-09-08
| Category | Description |
|---|
| Feature | Added webhooks for OrgSamlSetup and OrgSamlRemoved |
2023-09-01
| Category | Description |
|---|
| Feature | Released improved versions of our Account & Org Management pages, as well as new customization options in the Dashboard. |
2023-08-04
| Category | Description |
|---|
| Feature | We have released support for configurable User Properties. A set of properties is available out of the box, and users on paid plans can create custom properties. For more information, check out the docs. |
2023-07-21
| Category | Description |
|---|
| Feature | Made a few changes to improve email deliverability, including updated email templates. |
| Feature | Added PCKE support for OAuth use cases. |
2023-06-30
| Category | Description |
|---|
| Release | We have released official support for applications built with NextJS 13, including both the App Router and the Pages Router For more information, check out our guide |
| Feature | We’ve reorganized our documentation, and have added a new How To section, focused on specific needs and scenarios. |
| Feature | To the dashboard we’ve added new, more intuitive sections to your projects, and made various user experiences more streamlined and natural. |
2023-06-06
| Category | Description |
|---|
| Release | We have released API Key Authentication! For more information, checkout our quickstart guide |
| Feature | Added new endpoints to enable and disable organization creation for specific users. |
| Feature | Added the ability to set maximum user limits in specific organizations. |
| Bugfix | No longer sending two “Org Created” webhooks in some cases when orgs were created. |
| Bugfix | Small fixes to the dashboard to improve the overall experience. |
2023-05-19
| Category | Description |
|---|
| Release | We have released our Go Backend library! Find out more here |
| Beta | Currently we are running a beta program for customers interested in SSR support. For more information, please contact us at support@propelauth.com |
| Feature | Added more flexibility to our frontend integration location URLs. |
2023-05-05
| Category | Description |
|---|
| Feature | We have released support for User Impersonation! Find out more here |
2023-04-28
| Category | Description |
|---|
| Release | New look to the dashboard with several user experience improvements. |
| Feature | We now provide another isolated development environment in the PropelAuth dashboard: Staging. |
| Feature | Added new front end configuration options to the dashboard. |
| Feature | We added the ability to name your API keys in the PropelAuth dashboard, as well as making them “ReadOnly” |
| Feature | You now have the ability to search for organizations by name in the dashboard. |
2023-04-21
| Category | Description |
|---|
| Feature | New “metadata” fields have been added to the user and organization objects where you can assign JSON objects of customizable data. |
| Feature | We now provide access to email, name, and username on the JWT. Previously, to access this data you would need to make another external request to us. |
| Beta | Added user_id and org_id query options for API Authentication. Previously you would have to sort through all results at once. |
| Release | Recently underwent our annual penetration testing via 3rd party, and we passed. Find more here. |
| Feature | RedirectToSignup and RedirectToLogin now take in props for postSignupRedirectUrl and postLoginRedirectUrl |
2023-03-31
| Category | Description |
|---|
| Bugfix | “Create Org” and “Join Org” now on the same page as separated functions. Previously, if you disabled the ability for users to create organizations, the “join org” functionality would be hidden as well. Users can now join organizations regardless of their ability to create one. |
| Bugfix | Changed the “disable public signups” option so that invited users can still create an account even if the feature is turned on. Previously this feature was blocking some users who were invited and choose to join through SSO, but this has been fixed. |
| Bugfix | Fixed Microsoft login issue. For users that didn’t have their first name or last name set in their Microsoft account, signing in with Microsoft was failing. This only affected users who enabled the “collect name on signup” feature. We’ve resolved this issue, and users can now sign in seamlessly with their Microsoft account, and if we cannot pull their first and last name from Microsoft, we prompt the user to provide it afterwards |
| Bugfix | Increased the acceptance time for confirmation emails to 5 days (previously it was only 2) |
| Bugfix | Made small styling fixes to our component library and hosted pages to improve the overall look and feel of the platform |
2023-03-15
| Category | Description |
|---|
| Feature | Added an API to create access tokens for testing purposes. Previously, you would need to use our frontend libraries to get tokens, and the tokens were all short-lived. Now you can make an API call to get an access token for a specified user, with a custom expiration. |
| Feature | Added refreshAuthInfo to @propelauth/react so you can force refresh the auth information |
| Feature | Improved useAuthInfo so that you can now destructure without needing to check loading first |
| Feature | Added new redirect function redirectToSetupSAMLPage |
| Feature | For each redirect function (e.g. redirectToLoginPage), we now also provide a getter function to get the underlying URL (e.g. getLoginPageURL). This allows for more flexible usage. |
| Bugfix | Fixed issue with fetch_org in the Rust crate where it’s return type was incorrect |
| Bugfix | Updating your email no longer sends a confirmation if you had “email confirmation not required” in that environment |
2023-03-01
| Category | Description |
|---|
| Release | Released support for Chrome Extensions alongside Plasmo |
| Beta | Beta support for API authentication. You can generate API keys for your customers tied to either your users, your organizations, or both. |
| Bugfix | Fixed issue with propelauth-py which made it fail to build on some OS’s |
| Bugfix | Fixed issue with Google login where it wasn’t always updating the user object with their name |
2023-02-14
| Category | Description |
|---|
| Beta | Beta release for our Component Library! |
| Release | Updated our example apps section with new examples and forkable git repos |
| Feature | Updated our libraries with a new optional boolean field askUserToUpdatePasswordOnLogin in all three of: createUser, migrateUser, and updatePassword. This forces the user to set/update their password. |
| Feature | You can now disable password authentication in the dashboard. |
| Feature | Added options for you to specify how long your users remain logged in and whether it’s based on inactivity or just a fixed amount of time |
| Feature | Added deeper organization configuration options, like requiring all users to be in at least one org. |
2023-01-18
| Category | Description |
|---|
| Release | Added backend support for Cloudflare Workers |
| Feature | Added support for Ngrok as a replacement for localhost in the test environment |
| Feature | Added organization settings in the hosted pages, enabling your users to toggle domain allow/denylists |
| Bugfix | Fixed a few styling issues in the hosted pages |
2022-12-28
| Category | Description |
|---|
| Release | Added backend support for Rust with support for Axum and Actix. |
| Feature | Added APIs to make it easier to programmatically manage your users (managing/deleting orgs, updating user metadata, etc.) |
| Feature | Added a new webhook on user login. |
| Bugfix | Cleaned up the workflow around verifying a domain. You can now verify ownership via a TXT record on a special subdomain, instead of using the root domain. |
| Beta | User login duration can be configured now. You can either specify an absolute amount of time the user is logged in, or a period of inactivity, after which they will be logged out. |
2022-12-05
| Category | Description |
|---|
| Feature | Usernames now support unicode characters. |
| Feature | Added AuthProviderForTest to our React library that’s useful for testing (thanks to mykeels for the suggestion). |
| Feature | Added an option for copying user IDs out of the dashboard. |
| Bugfix | Updated copy on the default create org page |
2022-11-18
| Category | Description |
|---|
| Release | Custom Roles & Permissions (RBAC) is live! This feature enables you to create custom roles and permissions. We also updated all our libraries to add advanced authorization with these roles and permissions. |
| Feature | Added the concept of an active organization (see getActiveOrgFn). For users in multiple organizations, this allows you to set the organization they are operating within and works with the roles and permissions update. |
| Beta | Added option to disable signups from personal email domains (e.g. gmail.com, yahoo.com, etc). |
2022-10-28
| Category | Description |
|---|
| Feature | Added the ability to disable 2FA/MFA for your users either programmatically or through our dashboard |
| Feature | Added the ability to customize what you call “Organizations”. This will automatically update all the hosted UIs and user facing error messages. |
| Feature | When logging a user in, you can specify where to redirect the user outside of the default redirect URL. |
| Bugfix | You can now create organizations even if the feature is disabled. This allows for a smoother process of migrating to organizations if you are already live. |
| Beta | Added more options to the concept of organizations. You can require that your users are in at least one organization, require that users must log in directly to their organization, and more. Reach out if you’d like to try this out. |
| Beta | Added more granular controls over which domains/subdomains can access authentication information. This includes creating staging environments that can be reached by localhost, having a small set of subdomains that are NOT allowed to check if a user is logged in (for vendors you might not trust), and more. |
2022-09-30
| Category | Description |
|---|
| Release | Self-service SAML is live! This feature allows your customers to log in to your product using their existing identity provider, like Okta, Google, OneLogin, and more. |
| Feature | Added support for Azure AD to our list of SAML IDPs, including documentation for your customers |
| Feature | Added additional APIs for our backend libraries for enabling/disabling/deleting users. Also handles logging users out remotely. |
2022-09-16
| Category | Description |
|---|
| Feature | Added new APIs for disabling, enabling, and deleting users. Disabling/Deleting a user will both log them out and prevent them from logging back in. |
| Feature | Added option for your users to test their SAML connections before enabling them. |
| Feature | Added new APIs for explicitly picking which organizations can login via SAML. This can also be done via the dashboard, or you can enable it globally for all organizations. |
| Bugfix | @propelauth/react library was re-rendering more than it needed to. |
| Release | Created demo site where you can experiment with different themes without needing to sign up. |
2022-08-26
2022-08-12
| Category | Description |
|---|
| Feature | Our hosted authentication pages can now be embedded in your application via an iframe. |
| Feature | Added more options for you to manage your users directly in your dashboard, like resending confirmation emails or manually confirming the email. |
| Feature | Allow your users to revoke organization invitations and see invitations that expired. |
| Feature | You can now search directly for a user by ID (in the dashboard). |
| Beta | Added self-service wizards for existing IDPs within our SAML beta. This walks your users through the steps of setting up a SAML connection. |
2022-07-29
| Category | Description |
|---|
| Feature | Allow subdomains of your application to also fetch authentication information. In other words, if you set https://example.com as your application URL, you can now set up additional authenticated applications at any subdomain like https://app.example.com. |
| Feature | Added option to disallow users from creating their own organizations. They can still manage the organization and invite new users, but it allows you to create and setup organizations on their behalf. |
| Bugfix | Added event_type to webhooks to make it easier to distinguish |
| Bugfix | Added additional options to verify your domain name |
| Beta | Added non-hierarchical roles (RBAC) support to our custom roles beta |
2022-07-15
| Category | Description |
|---|
| Release | Added @propelauth/node library to support serverless use cases or frameworks that don’t accept Express middleware. |
| Feature | Our backend libraries can now check org membership by name instead of just id, allowing for better subdomain-per-customer support. |
| Feature | You can now manage your user’s organizations through our dashboard, instead of just programmatically. |
| Bugfix | Allow you to submit logos as SVGs. |
And more…
If you have any questions about features or changes before July 15, please reach out at support@propelauth.com.
