Due to small inconsistencies between the ABNF grammar and the RegExp parser it was decided that it will no longer be supported and as of this version was removed. (#120)
Library improvements
With this release is now possible to extend the behavior of the verify function. Using the argument verificationFallback in the VerifyOpts object makes it possible to create a custom condition for verifying a SIWE message in case of failure (#85).
verificationFallback requires a function that has the same return as verify (Promise<SiweResponse>) and is provided with four arguments, those being:
params: VerifyParams: same params used in the verify call;
opts: VerifyOpts: same opts used in the verify call;
message: SiweMessage: the message currently being verified by verify;
EIP1271Promise: Promise<SiweResponse>: the result of the verification if the message was signed by a SmartContract Wallet.
Thanks to #99 a big performance upgrade was also possible making the library even better.
Additional tests were also introduced, additional checks and safeguards and general improvements to code quality.
Fixes a build issue from 2.0.4 where a dist folder with nested files was created from an added flag to enable typing for the JSON tests. These issues have since been resolved (#91).
SIWE 2.0.4 Release
To improve code quality and allow for easier contribution two new scripts to check for code smells and lint the code were added to package.json:
lint, which checks for code smells.
format, which fixes code accordingly to lint and format rules.
The deprecated function validate() was returning the result of the new function verify(), which was not the previous behavior therefore it is being fixed on this release to return the previous object (SiweMessage), tests were also added to make sure existing behavior will be maintained while this function is supported.
Upgrading from SIWE 1.x to 2.0
As mentioned in the previous release for most implementers, the existing code will continue to work as expected without changes, but there will be a warning message that validate() has been deprecated, and may be removed in future versions. To get rid of this warning, you can simply update instances of validate(signature) to const { data } = verify({ signature: signature }).
SIWE 2.0 Release
SIWE 2.0 has been released. The interfaces have been updated to allow consistent usage across languages for SIWE message parsing, creation, and verification. Message parsing has been split into its own package, siwe-parser, allowing implementers to utilize this functionality standalone without importing larger cryptographic dependencies.
This version was pushed to npm by sbihel, a new releaser for @spruceid/siwe-parser since your current version.
You can trigger a rebase of this PR by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps @spruceid/siwe-parser from 2.0.2 to 2.1.2.
Release notes
Sourced from
@spruceid/siwe-parser's releases.... (truncated)
Commits
4290e1fPublish030e079build: npm bump update apg-js ^4.1.1 -> ^4.3.0 (#199)3abfc12Publishc952d36Revert "Publish"c39a750Upgrade nvm node version to 16c7c697fAdd publish command with build includedba24640Publish08ed2c1Publish3aad7aeFix ethers v5 and v6 handling (#198)681993cPublishMaintainer changes
This version was pushed to npm by sbihel, a new releaser for
@spruceid/siwe-parsersince your current version.You can trigger a rebase of this PR by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show