0.6.0

• New subcomand mairu show dumps informations about 'auto' role.

0.5.1

• debian: Debian package was missing setcap call on post installation, which results into mlockall failure on mairu agent.

0.5.0

• mairu login uses $MAIRU_LOCAL_PORT environment variable for a port number when listening to callback. Takes precedence over a server configuration. #22

0.4.0

• Support OAuth 2.0 Authorization Code Grant without client secret; It's safe because we always use PKCE, and expects your authorization server to enforce PKCE. #20
• .oauth.code_grant server configuration gains use_localhost flag, which forces redirect_uri to be http://localhost:.../oauth2callback instead of http://127.0.0.1:.../oauth2callback. This is required for some authorization servers, e.g. Microsoft + Mairu as a public client. #20
• mairu list-sessions command now indicates sessions with an OAuth refresh token. #21
• mairu list-sessions command now shows expiry in a local time by default. It also gains --utc to revert to the previous behaviour which shows expiry in UTC. #21

0.3.1

• AWS SSO: fix failure on device code flow. This requires re-registration of OAuth 2.0 dynamic client (which is performed automatically).

0.3.0

• agent: Ensure runtime_dir (to create a socket) is only writable by owner (0700) #19

Breaking changes

• Agent socket location is changed to state_dir ~/.local/state/mairu/run on platforms without XDG_RUNTIME_DIR (e.g. macOS)

0.2.0

0.2.0

• Fix crash on macOS #14
• Support generic OAuth 2.0 Device Authorization Grant (RFC 8628) #15
• Support generic token refresh using refresh_token grant type #16
• AWS SSO: Support OAuth 2.0 Authorization Code Grant #17 #18

Full Changelog: v0.1.0...v0.2.0

0.1.0

Initial release