dartapi_auth 0.0.11

DEPRECATED: Auth is now part of dartapi_core ^0.1.0. This package re-exports everything from dartapi_core for one-version backwards compatibility. Migrate by replacing `dartapi_auth` with `dartapi_cor [...]

0.0.11

Final release — package deprecated.

Auth is now part of dartapi_core ^0.1.1. This release is a backwards-compatible re-export shim.

• lib/dartapi_auth.dart re-exports JwtService, TokenStore, InMemoryTokenStore, authMiddleware, apiKeyMiddleware, and TokenHelpers from dartapi_core.
• All original source files removed; dartapi_core is the new canonical home.
• Migrate: replace dartapi_auth: ^0.0.x with dartapi_core: ^0.1.1 and update imports from package:dartapi_auth/dartapi_auth.dart to package:dartapi_core/dartapi_core.dart.

0.0.10

• Upgrade dart_jsonwebtoken from ^3.1.1 to ^3.4.1
• Upgrade lints from ^5.0.0 to ^6.1.0

0.0.9

• verifyRefreshToken now automatically revokes the used refresh token when a tokenStore is configured — prevents token-reuse attacks (rotation). Without a tokenStore the behaviour is unchanged (backwards-compatible).

0.0.8

• Add concurrent JTI uniqueness test: generate 1000 tokens concurrently and assert all JTIs are distinct
• Add false_secrets in pubspec.yaml to suppress pub.dev false-positive secret warnings on test RSA keys

0.0.7

• Improve README: better structure and clarity

0.0.6

• Add RS256 (asymmetric RSA) support via JwtService.rs256() constructor
• Add token revocation via injectable TokenStore interface and InMemoryTokenStore
• Add apiKeyMiddleware for API key-based authentication
• verifyAccessToken and verifyRefreshToken are now async (Future<Map?>)
• Add revokeToken(String token) method to JwtService

0.0.5

• Fix non-unique JWT token IDs (JTI): replace microsecond timestamp with 128-bit cryptographically random value

0.0.4

• update docs

0.0.3

• License change

0.0.2

• Fix static analysis.

0.0.1

• Initial version.