AtHeartEngineer/devise
1
1
Fork 0
mirror of https://github.com/heartcombo/devise.git synced 2026-01-09 15:47:59 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
baf0d8eff2a977208120b5b98bf319b781598ae9
devise/CHANGELOG.md
Vasiliy Ermolovich baf0d8eff2 Update CHANGELOG.md
2024-10-22 20:45:41 +02:00

1.0 KiB
Raw Blame History

Unreleased

  • breaking changes

    • Drop support to Ruby < 2.7

    • Drop support to Rails < 6.0

    • Remove SecretKeyFinder and use app.secret_key_base as the default secret key for Devise.secret_key if a custom Devise.secret_key is not provided.

      This is potentially a breaking change because Devise previously used the following order to find a secret key:

      app.credentials.secret_key_base > app.secrets.secret_key_base > application.config.secret_key_base > application.secret_key_base

      Now, it always uses application.secret_key_base. Make sure you're using the same secret key after the upgrade; otherwise, previously generated tokens for recoverable, lockable, and confirmable will be invalid. https://github.com/heartcombo/devise/pull/5645

  • enhancements

    • Removed deprecations warning output for Devise::Models::Authenticatable::BLACKLIST_FOR_SERIALIZATION (@soartec-lab)

Please check 4-stable for previous changes.

Reference in New Issue View Git Blame Copy Permalink