Update dependency simple-oauth2 to v5

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
simple-oauth2	2.5.2 -> 5.1.0

---

Release Notes

lelylan/simple-oauth2 (simple-oauth2)

v5.1.0

Compare Source

Fixes

• #​434 Preserve existing refresh token when refreshed token doesn't contain a new refresh token

v5.0.1

Compare Source

Fixes

• #​440 Update @hapi/hoek to v11.x to avoid URL clonning issues

Documentation

• #​430 Update authorizeURL docs with a custom param example
• #​421 Fix typo on API.md
• #​422 Improve jsdocs
• #​409 Remove build badge

v5.0.0

Compare Source

New features

• #​332 Preserve query params on authorizePath on authorizeURL method

Maintainance

• #​341 Rewrite integration tests
• #​382 Update eslint parser dependencies
• #​390 Add Node 16 to test matrix
• #​404 Update ava to v4.x
• #​405 Update @hapi/hoek to v10.0.0
• #​406 Update @hapi/wreck to v18.0.0
• #​407 Update @hapi/boom to v10.0.0
• #​407 Update doctoc to v2.x
• #​408 Add Node 18 to test matrix

v4.3.0

Compare Source

New features

• #​387 Add support to configure refreshPath

Maintainance

• #​386 Update eslint v8
• #​379 Use c8 to collect code coverage
• #​356 Update development dependencies
• #​355 Add package support info

Documentation

• #​385 Documentation update
• #​380 Deprecate simple-oauth2 v3
• #​373 Documentation update

v4.2.0

Compare Source

Improvements

• #​354 Add support for custom http options to access token refresh and revoke operations

Maintainance

• #​329 Documentation updates for persistent access token refresh
• #​330 Upgrade module to use eslint v7
• #​331 Internal module reorganization
• #​333 Add template for issues
• #​341 Segregate integration tests by responsability area
• #​352 Use Node 14 as default runtime version for development. Document support matrix
• #​353 Use joi instead of the deprecated @​hapi/joi module

v4.1.0

Compare Source

Improvements

• #​328 Add support to refresh persistent access tokens

Maintainance

• #​326 Remove usage of date-fns production dependency
• #​325 Setup volta instead of nvm to handle node versions
• #​322 Update acorn version in package-lock file

v4.0.0

Compare Source

Breaking changes

• #​292 #​313 Require at least Node 12
• #​292 Use private class fields for non-public API's
• #​292 Access token .token property is now frozen
• #​318 New public API separating each grant type into it's own submodule
• #​321 Rename resource owner credentials module to be accurate

Maintainance

• #​292 Upgrade @​hapi/hoek to v9 (requires Node 12)
• #​292 Upgrade @​hapi/joi to v17 (requires Node 12)
• #​292 Upgrade @​hapi/wreck to v17 (requires Node 12)
• #​311 Upgrade nock dev library to v12
• #​319 Add Node 14 to test matrix

Documentation

• #​314 Add client credentials token refresh disclaimer
• #​317 Fix output documentation for boom errors
• #​320 Add complete reference documentation

v3.4.0

Compare Source

Improvements

• #​301 Refactor module schema to reuse constants across the codebase
• #​302 Extract access token parsing functionality from token class
• #​310 #​312 Change how date-fns is imported do make it compatible with webpack

Maintainance

• #​303 #​304 Add more references to API documentation on library README
• #​306 Add documentation for URL resolution on host/paths configurations
• #​307 Replace travis CI with github actions

v3.3.0

Compare Source

• #​299 Add support to verify for token expiration with a custom expiration window
• #​300 Add support to set the header credentials' encoding mode with options.credentialsEncodingMode.

v3.2.0

Compare Source

New features

• #​298 Add support for custom scope separator by using options.scopeSeparator configuration

Improvements

• #​290 Valid token presence is verified on access token creation
• #​290 Valid tokenType presence is verified on .revoke calls

Maintainance

• #​289 Remove dev lodash library from tests
• #​285 Update ava test runner to v3
• #​287 Update chance-access-token dev library to v2
• #​288 Update nyc instrumentation dev library to v15
• #​297 Add tests for empty credentials support
• #​291 Improve library documentation. Separate API reference from main documentation

v3.1.0

Compare Source

New features

• #​277 Add support to parse access tokens's expire_at property as UNIX timestamps

v3.0.1

Compare Source

Publishing changes

• #​273 Deprecate unsupported library versions

v3.0.0

Compare Source

Breaking changes

• #​260 Use @​hapi/wreck v15. This version changes how a baseUrl is resolved against a path, affecting how auth.tokenHost, auth.tokenPath, auth.authorizeHost and auth.authorizePath are resolved when using the .getToken methods. See @​hapi/wreck breaking changes to better understand potential issues that may arise.

• #​260 Use new Node.js WHATWG URL api instead of the legacy url module. This change affects how auth.authorizeHost and auth.authorizePath are resolved when using the authorizationCode.authorizeURL method.

• #​256 Users can override the grant_type parameter when performing a token exchange throught the .getToken method. Useful in cases where the auth server uses a value different from the standard.

• #​256 Token exchange methods no longer mutate provided arguments

• #​255 Follow up to 20 redirects by default

• #​200 #​256 Change default multiple scope encoding from using comma to spaces on all token exchange methods

• #​88 Change JSON response parsing mode from smart to strict. Since the OAuth2 specification indicates only JSON responses are valid, any non-JSON response throws an error instead of resolving into a Buffer. Use http.json = true to restore the previous behavior.

New features

• #​270 All token exchange methods now accept an optional argument to override non-essential http options or read parsing options.

• #​268 All token exchange methods can be called without arguments

• #​263 Use @​hapi/joi v16. No breaking changes are expected.

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
static-cms-next-vercel-template	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Jun 30, 2024 5:40am
static-cms-next-vercel-template-jkhf	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Jun 30, 2024 5:40am