v4.1.5 - Helm chart with extraEnv support

Added

• Helm chart included in release
• extraEnv support for injecting secrets from K8s secrets
• Google OAuth secret injection via secretKeyRef

v4.1.1 - Chart fixes for extraEnv support

Fixed

• Chart now properly included in release
• extraEnv support working for secret injection

v4.1.0 - Google OAuth 2.0 Support

🎉 New Features

Google OAuth 2.0 Authentication

• Add complete Google OAuth 2.0 flow with CSRF protection
• Automatic user creation and profile updates from Google
• Session management with JWT cookies
• State token validation with Redis expiry

New Routes:

• GET /oauth/google?redirect_uri=<app_url> - Initiate OAuth flow
• GET /oauth/google/callback - Handle OAuth callback

Environment Variables:

• GOOGLE_CLIENT_ID - Google OAuth client ID
• GOOGLE_CLIENT_SECRET - Google OAuth client secret
• GOOGLE_REDIRECT_URI - OAuth callback URL

🧪 Testing

• 9 comprehensive tests covering full OAuth flow
• User creation/update scenarios
• State validation and expiry
• Error handling (invalid state, failed token exchange, missing params)
• All tests passing ✓

🔧 Fixes

• Use lowercase Redis commands (setex, getdel) for ioredis compatibility
• Refactor to plain Redis GET/SET (no RedisJSON dependency)
• Add pino-pretty for development logging

📦 Docker

• Image available: sgp.vultrcr.com/noxcolony/hydre-auth:v4.1.0
• Multi-platform support (linux/amd64)

🔐 Security

• CSRF protection via state tokens
• Secure cookie handling (HttpOnly, Secure, SameSite)
• State tokens auto-expire after 10 minutes
• OAuth users auto-confirmed (no email verification required)

---

Full Changelog: v4.0.3...v4.1.0

🤖 Generated with Claude Code