All notable changes to the Kinde Python SDK will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
- Security Improvements: Fixed XSS vulnerabilities by properly escaping JSON user data and HTML error messages
- Cookie Security: Enhanced cookie security and code quality in OAuth server
- Storage Initialization: Improved storage initialization with enhanced security logging
- Error Handling: Better error handling across multiple modules with proper exception chaining
- Framework Support: Fixed framework support for null framework with improved error handling
- Code Quality: Enhanced error handling, thread safety, and code organization across the SDK
- Cookie Parsing: Improved OAuth server functionality with better cookie handling and security
- Session Management: Added KindeSessionManagement for standalone mode
- Configuration: Simplified configuration error messages and parameter masking logic
- Management API: Fixed users get/update/delete endpoints to use correct
/api/v1/user?id=...format - Project Configuration: Updated project configuration and dependencies
- Dependency Management: Configured Renovate for automated dependency updates
- Entitlements Support: Enhanced entitlements functionality with improved API integration
- Force API Configuration: Added SDK-level force_api configuration support
- Reauth Functionality: Implemented reauth functionality in FastAPI and Flask frameworks
- HTTPX Upgrade: Upgraded httpx dependency version for better performance and security
- Code Structure: Restructured kinde_client_api for improved modularity
- Token Management: Enhanced token manager with comprehensive testing and introspection logic
- Management API: Improved management API client with better token handling
- Management API: Resolved mapping and claims logic issues in management and auth modules
- User Details Bug: Resolved user details bug in SDK components
- Management API: Fixed management API client issues and endpoint configurations
- Project Configuration: Updated project configuration and dependencies
- Permissions, Claims, and Feature Flags: Added comprehensive permissions, claims, and feature flags functionality
- Billing Profile Support: Added billing profile support with pricing table key parameter
- Portal Implementation: Converted profiles to portals implementation with improved URL handling
- Management Client: Added management client wrapper with comprehensive documentation
- Migration Documentation: Added detailed migration documentation from v1 to v2
- Token Claims Handling: Improved token claims handling with enhanced tests and examples
- URL Handling: Improved URL handling in portals authentication
- Deadlock Issues: Resolved deadlock issues in management module
- Dependencies: Updated project dependencies and requirements
- Import Issues: Fixed management client import issues in OpenAPI build process
- Code Coverage: Enhanced test coverage and added edge cases
- Framework Support: Better support for Flask and FastAPI frameworks
- Error Handling: Improved error handling across multiple modules