Identity 0.9.2

What's Changed

• Supporting Flask and Quart's APPLICATION_ROOT by @rayluo in #41

Full Changelog: 0.9.1...0.9.2

Identity 0.9.1

What's Changed

• There was a regression for the Logout feature in Flask. Now fixed by @rayluo in #35

Full Changelog: 0.9.0...0.9.1

Identity 0.9.0

What's Changed

• Introduce an init_app(app) for Flask and Quart's factory pattern by @rayluo in #31

Full Changelog: 0.8.1...0.9.0

Identity 0.8.1

What's Changed

• Bugfix: Flask and Quart can now redirect back to the original page after login #27, #28
• Bugfix: Django's requires_login() can now also work when the route is deep #26
• Improvement: Provide graceful error message when redirect_uri is not configured Azure-Samples/ms-identity-python-webapp#148

New Contributors

• @runxiyu made their first contribution in #28

Full Changelog: 0.8.0...0.8.1

Identity 0.8.0

What's Changed

• Add support for Quart by @pamelafox in #25
• The default login template will automatically redirect to the real Identity Provider (IdP)'s login page by @rayluo

Full Changelog: 0.7.0...0.8.0

Identity 0.7.0

• New feature: A high level API for Flask that has feature parity with the high level API of Django which was released in 0.6.0
• Breaking change: Normalize the logout url of Django API to <a href="{% url 'identity.logout' %}">Logout</a>

Identity 0.6.0

This release brings lots of improvements to the high level API for Django.

• New feature: Supports Microsoft Entra External ID with custom domain. Please refer to the configuration for the details.
• New feature and breaking change: Those Django views decorated by @settings.AUTH.login_required must accept a keyword parameter context now, such as def index(request, *, context). And the signed-in user's information is available in context["user"].
• New feature and breaking change: Django views can now be decorated by @settings.AUTH.login_required(scopes=["your_scope"]) and accept a keyword parameter context, such as def call_web_api(request, *, context). The access token will be available in context["access_token"]. The old pattern identity.django.Auth(...).get_token_for_user() is removed. The token usage is therefore vastly simplified.
• Enhancement: After a successful re-sign-in triggered by @settings.AUTH.login_required, the user will be brought back to the current page, not the index page.
• Enhancement: The initial sign-in no longer uses scope, thus more likely to succeed. The subsequent token-demanding views will automatically trigger the consent (when necessary); this is also known as "incremental consent".
• Breaking change: identity.django.Auth(..., scopes=...) parameter is removed.
• Dropping support for Python 3.7.

Full Changelog: 0.5.2...0.6.0

Identity 0.5.2

• Enhancement: The django adapter no longer requires a view named "index" (#18)

Identity 0.5.1

Bugfix: The logout feature was broken for Microsoft Entra external ID. Now fixed. (#17)

Identity 0.3.3

• Bugfix: Microsoft Entra ID B2C's edit profile feature was broken. Now fixed. Existing web apps (such as this sample) that were using identity 0.3.x series does not need any change other than upgrading Identity to 0.3.3.