Releases: SymfonyCasts/reset-password-bundle
New translation: Arabic
Howdy Resetters!
This is a small release containing community-contributed translations for the Arabic language:
Feature
- #165 - Add Arabic Translations - @zairigimad
Diff: v1.7.0...v1.8.0
Happy Resetting!
New Translation: Turkish
Howdy Resetters!
This is a small release containing community-contributed translations for the Turkish language.
Diff: v1.6.0...v1.7.0
Happy Resetting!
Add ability to generate fake reset tokens!
Howdy!
This release adds a new helper method that allows you to generate fake reset tokens (#156).
Why would I want to do that? This can be used to display a "reset confirmation email sent" page that includes a valid "expiration date", even if the requested email was not actually found.
Diff: v1.5.0...v1.6.0
Happy Resetting!
New translations (Italian, Spanish, Portuguese) + language fixes
Hi Resetters!
This release contains more community-supplied translations for Italian, Spanish, Portuguese as well as some fixes for French (#155) and Polish (#153) Thank you to all the contributors ❤️ .
Diff: v1.4.0...v1.5.0
Have fun!
New translations: German, French, Polish, Serbian, Ukranian & Russian
Hi Resetters!
This release contains a bunch of new community-supplied translations for German, French, Polish, Serbian, Ukranian & Russian. Thank you to all the contributors ❤️ .
Diff: v1.3.0...v1.4.0
Have fun!
Added trait methods to store token in the session
Hi Resetters!
This release contains #143 from @jrushlow which introduces 2 new methods in ResetPasswordControllerTrait for storing the entire ResetPasswordToken object in the session. The purpose of this - see symfony/maker-bundle#785 - is to allow you to store the object in the session so that you can accurately show the expiration time on the next page.
Diff: v1.2.2...v1.3.0
Have fun!
Fix timezone regression in 1.2.1 with timezone
Bug fix for "link expiration" time & timezones
Hi friends!
This is a small release that contains one bug fix in #135 thanks to @jrushlow - which fixes #119
Previously, depending on your server timezone, the "reset password link expiration" email may have rendered incorrectly, for example telling the user that they had, for example, 7 hours until the token expired, when in reality it was only 1.
The fix also adds native translation support. To use it, in the template that sends the verification email, make the following change:
- <p>This link will expire in {{ tokenLifetime|date('g') }} hour(s).</p>
+ <p>This link will expire in {{ resetToken.expirationMessageKey|trans(resetToken.expirationMessageData, 'ResetPasswordBundle') }}.</p>Have fun!
Allowing PHP 8
Hi friends!
This is a tiny release that simply makes this bundle installable on PHP 8. This support should be considered experimental - we don't expect any issues, but we're waiting on GH actions support for PHP 8 before the CI pipeline will fully test PHP 8.
Highlights
#134 - Allow the bundle to be used with PHP 8 - thanks to @ker0x
Cheers!
Security Enhancement: clear all user requests after usage
Hi friends!
This release contains one change to harden security:
While not normally possible (unless you change the throttle timeout), if a user does have multiple, active "password reset requests" in storage, after using one of them to change their password, all "password reset requests" for that user should be removed. This is safer than allowing other password reset requests to remain active.
Cheers!