2.1.0

Added Kreait\Firebase\JWT\SessionCookieVerifier that works similarly as the existing ID Token verifier.
You can find its documentation in the README.

2.0.1

Fixed failing ID token verification when the nbf claim is not present.

2.0.0

After updating, please refer to the Migration Documentation.

• Removed Firebase\Auth namespace
• Ensured compatibility with PHP 8.1 by adding it to the test matrix.
• Dropped support for lcobucci/jwt <4.1
• Dropped support for guzzlehttp/guzzle <7.0
• Dropped direct support for psr/simple-cache

1.16.1

Update lcobucci/jwt version constraint to ^3.4.6|^4.0.4|^4.1.5 to prevent misuse of the LocalFileReference key.

More info: GHSA-7322-jrq4-x5hf

1.16.0

• Un-deprecated Firebase\Auth\Token\Domain\Generator, Firebase\Auth\Token\Domain\Verifier and \Firebase\Auth\Token\Domain\KeyStore
• Dropped support for unsupported PHP versions. Starting with this release, supported versions are PHP ^7.4 and PHP ^8.0.
• Allowed usage of psr/cache ^2.0|^3.0

1.15.0

• Use fallback cache duration (defaults to 1 hour) when fetching public keys from Google and the response doesn't contain cache headers.
• Add additional URL to fetch Google's public keys.

1.14.0

• Drop the V3 suffix from handlers using lcobucci/jwt
• Limit support to PHP 8.0.*

1.13.0

Added support for PHP 8.0

1.12.0

• Added Tenant Awareness
• Fixed usage of deprecated functionality from lcobucci/jwt

1.11.0

• Updated dev-dependency on symfony/cache to address CVE-2019-10912
• The default branch of the GitHub repository has been renamed from master to main - if you're using dev-master as a version constraint in your composer.json, please update it to dev-main.
• This library can now be used with PHP 8.