Version 0.2.0
- Added CORS, with support for:
- Preflight request filtering
- Default or customized block page CORS headers
- Added Account Defender, including support for:
- Reporting of the cross tab session cookie
- Extracting user ID and additional fields from cookie- or header-based JWT
- Minor bug fixes and compatibility improvements.
Changed
- Replaced non-ES5 functions (e.g.
Object.assign,Array.prototype.includes,String.prototype.startsWith) for compatibility - Modified shared flow configuration version to be 4.0 (the only supported version)
