v0.5.0

• Phase out python 3.7 (technically might still work, but not tested)
• Minor changes according to Pydantic v2

v0.4.0

• Solve issue when malicious token contains header without "kid" (handle specific exception instead of generic catch-all).
• Solve some newer mypy (1.1.1) issues.

v0.3.2

Update to MIT license in setup.py (pypi metadata)

v0.3.1

• Change to MIT license
• Drop support for Python 3.6 (more than 1 year since end of life)

v0.3.0-fix-pypi

0.3.0.1

Fix pypi publish

v0.3.0

No breaking changes from v0.2.1 (theoretically).
But there are quite a few improvements at once hence the jump for minor version.

• Fix misleading error message when using token from another tenant (or just signed with a rotated / invalidated key) #19
• Remove dependency on requests (still required for tests, but the single normal use call is now serviced by urllib).
• Instantiate fastapi_auth0 logger instead of using the root logger so that log level can be customized for this module.
• Various internal improvements (cleaner code, removed unnecessary parts, typed dict for jwks, using BaseSettings for env variables).
• Add docstrings and logging of authentication failure reasons when auto_error = False.
• Add py.typed file so mypy recognizes the package to have type hints.

v0.2.1

• Fixed bug with auto_error=False on #12

v0.2.0

• Fix bug when audience has url illegal characters (#8)
• Use AUTH0_RULE_NAMESPACE env variable instead of hardcoded default (#6)
• Rename Auth0UnauthenticatedError -> Auth0UnauthenticatedException to keep consistency with base class HTTPException

v0.1.6

• Enable custom user model for parsing access token
• Improved error messages

v0.1.5

Publish to PyPi