Version History

v1.12

• Fixed : Reset password code was not being sent from the login app after user clicked "Send password reset code". User had to click "Resend code" to receive a code.

v1.11

• Improved : TSphinxLogin published the Client property which can be used to configure the underlying THttpClient object used in HTTP connections. Ticket #23416.
• Improved : Plus signs (+) in query strings are now decoded as spaces, for example scope=openid+email is understood as scope=openid email.
• Fixed : Sphinx simple demo failing to create sample users in an empty database.

v1.10

• New : Two-Factor Authentication (2FA) is now implemented, enhancing application security.
• Fixed : When choosing "forgot password" from login page, the password reset code was being generated twice.
• Fixed : Language JSON files for the login web app were not being included in distribution (regression). Ticket #23173
• Fixed : Do not use manager of the context if it does not belong to the Sphinx model. Ticket #22921.

v1.9

• New : TLoginOptions.?Forbid?Self?Registration property prevents or allows new users to create a new account by themselves. Request #19339.
• New : Full documentation page for login web application explaining how to customize and configure it.
• New : Developers can now choose which information can be used to perform a login (e-mail, phone number, username) by setting additional properties in TLoginOptions class. Request #19741.
• New : Added new methods and events in several classes to fully support phone number confirmation (token generation, confirmation with token). Request #19069.
• Improved : Registration (sign-up) page now automatically asks for username and phone number fields, in addition to e-mail, if they are configured as required in TUserOptions. Ticket #21929.
• Fixed : Some server-side error messages were not being localized.
• Fixed : Option TLoginOptions.?Require?Confirmed?Email was not being applied unless TUserOptions.?Require?Email was true. Now it will apply whenever the email is not empty, regardless if it''s required. Same for phone number.
• Fixed : Do not use manager of the context if it does not belong to the Sphinx model. Ticket #22921.
• Fixed : Demo web application was not being run from the default TMS Web Core application URL. Ticket #22440.

v1.8.0.1

• New : Added Italian translation. Thanks to Francesco Todini for the contribution.

v1.7

• Fixed : Delphi 12 specific issue: JSON serialization of numbers was serializing integers ending with ".0" due to a change in JSON serialization behavior in Delphi 12. This was also causing "missing iat" error in Sphinx due to wrongly generated JWT.

v1.6

• New : Delphi 12 support.

v1.5.0.0

• New : TSphinxClient?App.?OnValidate?Secret allows for arbitrary client secret validation.
• New : TConfigureToken?Args.?Client property provides client information at token configuration time in TSphinxConfig.?OnConfigure?Token event.
• Improved : Support for ARM64 macOS and ARM64 iOS Simulator platforms.
• Improved : Sphinx server doesn''t require database connection if only client credentials flow is used.
• Improved : Login web app now better integrates with browser autocompletion, receiving suggestions for user names, saved password and confirmation codes.
• Fixed : TSphinxWebLogin component compatibility with latest TMS Web Core releases. It now disables HandleOAuth property. Ticket #21678.

v1.4

• Improved : New Dutch translation. Thanks to Jacco Uijlenhoet.

v1.3

• Fixed : OAuth client was sending scope parameter when processing authorization code response. This was causing issues with some servers rejecting such parameter which is indeed not expected according to OAuth standard.
• Fixed : Access Violation when the well-known URL for OpenID Connect server fails to load.

v1.2

• New : Added French translation (thanks to Sylvain - Ticket #19301.
• New : Added Belgian Dutch translation (thanks to Smet Filip - Ticket #19442.
• Improved : TSphinxLogin now doesn't cause desktop client application to ask for firewall permissions.
• Improved : Swedish translation updated.
• Improved : Some TSphinxLogin messages are now translatable ("application authorized succcesfully", for example).
• Fixed : Refresh token was not being retrieved when using TSphinxLogin component.
• Fixed : Client secrets of clients created directly in the TSphinxConfig component were not being used. Ticket #19861.

v1.1

• New : Swedish translation of Sphinx messages and UI available (thanks to Åke Pettersson).
• New : Localization of UI and server messages is now available. Language JSON files were added to distribution, making it easier for users to localize Sphinx login app UI and server messages.**
• New : Demo application updated to show use of login page in form-embedded browser: The demo uses TEdgeBrowser component, check unit Forms.Main in project VclClient.dproj. Enable the directive USE_EDGEBROWSER to show the login page embedded in a form.
• New : Demo application updated to show API usage: A new multitenant API Server was added. This shows how to use Sphinx to also authorize the backend API used by the application (web or desktop).
• New : Brazilian Portuguese translation of Sphinx messages and UI available.
• Improved : User email is now being sanitized and saved as lowercase in database.
• Improved : Design-time components were greyed out in component palette if current platform was different than Win32.

v1.0

• New : First release.