googleapis_auth 2.2.0

googleapis_auth: ^2.2.0 copied to clipboard

• Added quotaProject support to existing credentials classes (ServiceAccountCredentials, ClientViaServiceAccount, ClientFromFlow).
• clientViaApplicationDefaultCredentials now extracts quotaProject correctly from service account credentials JSON.
• clientViaServiceAccountImpersonation and ImpersonatedAuthClient now accept an optional baseClient.
• Application Default Credentials (ADC) now supports impersonated_service_account source files.
• Application Default Credentials (ADC) now supports external_account source files for Workload Identity Federation using Google Security Token Service.
• Application Default Credentials (ADC) now propagate quota_project_id for Service Account credentials.
• Added CredentialsFileException and AuthorizationCallbackException classes.
• Replaced generic exception and error throws (such as Exception, ArgumentError, and UnsupportedError) with more specific exception types throughout the package to improve error handling and debuggability.
• AuthClientSigningExtension.sign() now accepts an optional serviceAccountEmail parameter that is passed down to signBlob.

• AuthClientSigningExtension: Added sign() which accepts an optional serviceAccountCredentials argument, and getServiceAccountEmail().
• ServiceAccountCredentials
  • Added parsing for projectId and universeDomain properties.
  • Added sign() method for RSA-SHA256 signing.
• Added signBlob() function for signing via IAM Credentials API.
• MetadataServerAuthorizationFlow
  • Now uses getMetadataValue (caching) and fetchMetadataValue (non-caching) from package:google_cloud.
  • Added refresh support to run().
• Added clientViaServiceAccountImpersonation() function and ImpersonatedAuthClient class for service account impersonation via IAM Credentials API.
• Export RSAPrivateKey which is exposed by ServiceAccountCredentials.
• Require google_cloud: ^0.3.0.
• Require meta: ^1.15.0.
• Require sdk: ^3.9.0.
• Drop unneeded args dependency.

• Removed deprecated RefreshFailedException.
• Removed deprecated auth.dart library.
• Require sdk: ^3.6.0

auth_browser.dart #

• Enable use via WebAssembly.
• Remove deprecated browser flows.
• Removed local definition of CodeResponse. Exports the same class from package:google_identity_serivces_web.

• Added support for custom post-auth html page

• auth_browser.dart: handle pop-up closed errors correctly.

• Add support for non-Google OAuth 2.0 providers.

• Require Dart 3.2 or later.
• Require
  • google_identity_services_web: ^0.3.0
  • http: ^1.0.0

• Require Dart 2.19 or later.
• Allow latest package:http.

• Update README to include a warning about Flutter application usage.
• Require Dart 2.17 or later.

googlapis_auth.dart

• authenticatedClient function: added optional bool closeUnderlyingClient parameter.

auth_browser.dart library

• Added AuthenticationException and use it instead of Exception or StateError in many cases where authentication can fail.
• Added requestAccessCredentials, requestAuthorizationCode, revokeConsent, and CodeResponse to support the new Google Identity Services.
• Deprecated createImplicitBrowserFlow function.

auth_io.dart library

• Added an optional listenPort parameter to clientViaUserConsent and obtainAccessCredentialsViaUserConsent.

• Include plugin_name during browser authorization.

• The secret param in ClientId constructor is now optional.
• Use the latest supported Google OAuth 2.0 URL
• auth_browser library:
  • Migrated to newer auth2 Javascript API.
  • Added support for hostedDomain to all applicable functions.
  • createImplicitBrowserFlow: added (unsupported) enableDebugLogs param. (Maybe helpful for debugging, but should not be used in production.)
• auth_io library:
  • Generate a longer, secure random state token.
  • Implement code verifier logic for the desktop auth flows. See https://developers.google.com/identity/protocols/oauth2/native-app#create-code-challenge
  • obtainAccessCredentialsViaCodeExchange
    • scopes are now acquired from the initial API call and not via a separate API call to the tokeninfo endpoint.
    • Added optional codeVerifier parameter.

• Added an optional hostedDomain parameter to many functions in auth_io.dart. If provided, restricts sign-in to Google Apps hosted accounts at that domain.
• Fix an error when doing OAUTH code exchanged with an undefined secret.
• clientViaApiKey is now exported from googleapis_auth.dart.
• Added String? details to UserConsentException.
• Update the host used to access metadata on Google Cloud. From http://metadata/ to http://metadata.google.internal.
• Require Dart 2.13
• Deprecated RefreshFailedException - ServerRequestFailedException is used instead.

• Added the googleapis_auth.dart library. It is convention to have the default library within a package align with the package name. auth.dart is now deprecated and will be removed in v2.
• Added fromJson factory and toJson method to AccessToken, AccessCredentials, and ClientId.
• Remove dynamic function invocations.

• Add support for null-safety.
• Require Dart 2.12 or later.

• Removed a dart:async import that isn't required for >=Dart 2.1.
• Require >=Dart 2.1.

• Add clientViaApplicationDefaultCredentials for obtaining credentials using ADC.

• Fix 'multiple completer completion' bug in ImplicitFlow.

• Add the force parameter to the obtainAccessCredentialsViaUserConsent API.

• Look for GCE metadata host in environment under $GCE_METADATA_HOST.

• Prepare for [Uint8List SDK breaking change](Prepare for Uint8List SDK breaking change).

• Initialize implicit browser flows statically, allowing multiple ImplicitFlow objects to initialize without trying to load the gapi JavaScript library multiple times.

• Support for specifying desired ResponseType, allowing applications to obtain an id_token using ImplicitBrowserFlow.

• Ignore script loading error after timeout for in-browser implicit login-flow.

• Support package:http >=0.11.3+17 <0.13.0.

• Support Dart 2.

• Switch all uppercase constants from dart:convert to lowercase.

• Add an optional loginHint parameter to browser oauth2 flow APIs which can be used to specify a hint as to which user is being logged in.

• Added id_token to AccessCredentials

• Migrated to Dart 2 BigInt.

• Fix async issue in oauth2 flow implementation

• Support the latest version of crypto package.

• Make package strong-mode compliant.

• Support package:crypto >= 0.9.2

• Use preferred "Metadata-Flavor" HTTP header in MetadataServerAuthorizationFlow instead of the deprecated "X-Google-Metadata-Request" header.

• Allow ServiceAccountCredentials constructors to take an optional user argument to specify a user to impersonate.

• Allow ServiceAccountCredentials.fromJson to accept a Map.
• Cleaned up README.md

• Added optional force and immediate arguments to runHybridFlow.

• Renamed forceUserConsent parameter to immediate.
• Added runHybridFlow function to auth_browser, with corresponding HybridFlowResult class.

• Add clientViaApiKey functions to auth_io ad auth_browser.

• First release.