Apostrophe2 v2.100.0 Release Notes
Release Date: 2019-11-21 // over 4 years ago-
- ๐ New feature: Google Authenticator two-factor authentication (TOTP) support for Apostrophe accounts. Set the
totp: true
option of theapostrophe-login
module. When enabled, users (including admins) are required to set up and complete authentication with Google Authenticator or a compatible TOTP app on their mobile device. On the user's next login they set up Google Authenticator; after that they must supply a code from Google Authenticator at each login. If a user loses their device, an admin can reset their access by editing that user via "Manage Users" and selecting "Reset TOTP 2-Factor Authentication." If the admin loses their device, they can use the newapostrophe-users:reset-totp
command line task. Thanks to Michelin for making this work possible via Apostrophe Enterprise Support. - ๐ New feature:
resetLegacyPassword: true
option forapostrophe-login
. When thepasswordRules
andpasswordMinLength
options are present, enablingresetLegacyPassword
permits the user to change their password right away at login time if it is correct, but does not meet your new standards for adequate passwords. This does not require receiving a confirmation email; if you are concerned by that, consider enablingpasswordReset
instead if you are willing to configure email delivery. Thanks to Michelin for making this work possible via Apostrophe Enterprise Support. - ๐ New feature:
resetKnownPassword: true
option forapostrophe-login
. When enabled, a currently logged-in user is permitted to change their own password without receiving an email, as long as they know their current password. This adds an additional admin bar item, which you may want to group. Thanks to Michelin for making this work possible via Apostrophe Enterprise Support. - ๐ Performance: Apostrophe is now much faster when editing a piece with hundreds of areas in its schema. Thanks to Bharathkumar Chandrasekaran of Freshworks for his contributions to finding the solution.
- ๐ Bug fix:
passwordRules
andpasswordMinLength
no longer break support for new users created viaapostrophe-passport
who use single sign-on and do not have explicit passwords in Apostrophe. - โ Developer warning: a module that implements a widget must have a name ending in
-widgets
or the editor will not work properly in the browser. We now display a warning. - ๐ง Developer warning: if the developer tries to configure
piecesFilters
for the pieces module, rather than the corresponding pieces-pages module, a warning is displayed. - ๐ป UI fix: modal dialog box height corrected. Thanks to Paul Grieselhuber for this contribution.
- ๐ป UI fix: better Microsoft Edge support. Thanks to Denis Lysenko.
- ๐ New feature: Google Authenticator two-factor authentication (TOTP) support for Apostrophe accounts. Set the