django-allauth 64.2.0 released

Posted by Raymond Penners on 2024-08-30

Note worthy changes

Verifying email addresses by means of a code (instead of a link) is now supported. See settings.ACCOUNT_EMAIL_VERIFICATION_BY_CODE_ENABLED.
Added support for requiring logging in by code, so that every user logging in is required to input a login confirmation code sent by email. See settings.ACCOUNT_LOGIN_BY_CODE_REQUIRED.

Security notice

In case an ID token is used for authentication, the JTI is now respected to prevent the possibility of replays instead of solely relying on the expiration time.

Next: django-allauth 64.2.1 released Previous: django-allauth 64.1.0 released

Archives

2024 25
2023 13
2022 5
2021 3
2020 3
2019 4
2018 5
2017 5
2016 8
2015 8
2014 4
2013 11
2012 9