API Encoding issue in 4.6.1

tstrimple commented 2 months ago

Checklist

[X] I have looked into the Readme and the documentation, and have not found a suitable solution or answer.
[X] I have searched the issues and have not found a suitable solution or answer.
[X] I have searched the Auth0 Community forums and have not found a suitable solution or answer.
[X] I agree to the terms within the Auth0 Code of Conduct.

Description

After upgrading from 4.6.0 to 4.6.1 our custom database integration started failing. When investigating the problem, we found that the /index.php?a0_action=migration-ws-login endpoint was returning invalid JSON. It appears that the results are being htmlspecialchars encoded before being returned.

Results from 4.6.1: bad

Results from 4.6.0 good

Reproduction

Install version 4.6.1 of the 'Login by Auth0' plugin and make a call to the migration-ws-login endpoint.

Additional context

No response

wp-auth0 version

4.6.1

WordPress version

6.5.5

PHP version

8.0.30

evansims commented 2 months ago

Thanks for the heads up; it looks like some of the additional HTML sanitizations we added in the patch release are being mistakenly applied to the JSON payload. Let me see if I can track it down

evansims commented 2 months ago

Hi @tstrimple 👋 I've just released 4.6.2, which should resolve the issue for you. It may take a few minutes before the Marketplace shows the update. Please let me know if you continue encountering problems. Thanks!

auth0 / wordpress