Identity 0.11.0

What's Changed

• Prompt parameter customizable and default to None by @rayluo in #58, #59
  This improvement allows users to automatically sign in when they already have an active signed-in session with upstream identity provider. If you want the old behavior which always pops up a login page, you can explicitly opt in for prompt by auth = Auth(..., prompt="select_account").

Full Changelog: 0.10.0...0.11.0

Identity 0.10.0

What's Changed

• Flask, Quart and Django support customizing a web view to be displayed after the user being logged out. Auth(..., post_logout_view=...) by @rayluo in #50

Full Changelog: 0.9.2...0.10.0

Identity 0.9.2

What's Changed

• Supporting Flask and Quart's APPLICATION_ROOT by @rayluo in #41

Full Changelog: 0.9.1...0.9.2

Identity 0.9.1

What's Changed

• There was a regression for the Logout feature in Flask. Now fixed by @rayluo in #35

Full Changelog: 0.9.0...0.9.1

Identity 0.9.0

What's Changed

• Introduce an init_app(app) for Flask and Quart's factory pattern by @rayluo in #31

Full Changelog: 0.8.1...0.9.0

Identity 0.8.1

What's Changed

• Bugfix: Flask and Quart can now redirect back to the original page after login #27, #28
• Bugfix: Django's requires_login() can now also work when the route is deep #26
• Improvement: Provide graceful error message when redirect_uri is not configured Azure-Samples/ms-identity-python-webapp#148

New Contributors

• @runxiyu made their first contribution in #28

Full Changelog: 0.8.0...0.8.1

Identity 0.8.0

What's Changed

• Add support for Quart by @pamelafox in #25
• The default login template will automatically redirect to the real Identity Provider (IdP)'s login page by @rayluo

Full Changelog: 0.7.0...0.8.0

Identity 0.7.0

• New feature: A high level API for Flask that has feature parity with the high level API of Django which was released in 0.6.0
• Breaking change: Normalize the logout url of Django API to <a href="{% url 'identity.logout' %}">Logout</a>

Identity 0.6.0

This release brings lots of improvements to the high level API for Django.

• New feature: Supports Microsoft Entra External ID with custom domain. Please refer to the configuration for the details.
• New feature and breaking change: Those Django views decorated by @settings.AUTH.login_required must accept a keyword parameter context now, such as def index(request, *, context). And the signed-in user's information is available in context["user"].
• New feature and breaking change: Django views can now be decorated by @settings.AUTH.login_required(scopes=["your_scope"]) and accept a keyword parameter context, such as def call_web_api(request, *, context). The access token will be available in context["access_token"]. The old pattern identity.django.Auth(...).get_token_for_user() is removed. The token usage is therefore vastly simplified.
• Enhancement: After a successful re-sign-in triggered by @settings.AUTH.login_required, the user will be brought back to the current page, not the index page.
• Enhancement: The initial sign-in no longer uses scope, thus more likely to succeed. The subsequent token-demanding views will automatically trigger the consent (when necessary); this is also known as "incremental consent".
• Breaking change: identity.django.Auth(..., scopes=...) parameter is removed.
• Dropping support for Python 3.7.

Full Changelog: 0.5.2...0.6.0

Identity 0.5.2

• Enhancement: The django adapter no longer requires a view named "index" (#18)