TL;DR - This release includes a variety of bug fixes, new features, and breaking changes. Please take care.

New Features

TypeScript support

This library now includes a d.ts file by default - no @types package needed.

Promise & Async/Await style APIs

Previous versions of the API were callback only. For every API that was callback based, there is also a Promise or Async/Await style variant. For example:

/**
 * You can use an errback style API
 **/
auth.getApplicationDefault(function(err, client) {
  if (err) {
    console.log('Authentication failed because of ', err);
    return;
  }
  // make request...
});
/**
 * Or if you're using Babel, TypeScript, or Node.js 8+ you can use async/await
 /
try {
const client = await auth.getApplicationDefault();
// make request...
} catch (err) {
console.log('Authentication failed because of ', err);
}
/**
 * Or, you can just use promises
 /
auth.getApplicationDefault()
.then(client => {
// make request
})
.catch(err => {
console.log('Authentication failed because of ', err);
});

Ability to set maxExpiry when verifying tokens

The OAuth2Client.verifyIdToken method now accepts an optional maxExpiry field:

const result = await client.verifyIdToken({
  idToken: <id Token>, 
  audience: <audience>, 
  maxExpiry: <max expiry>
});

Support for code_verifier and code_challenge with OAuth2

The OAuth2Client.generateAuthUrl method has been extended to support the code_challenge_method and code_challenge fields. There is also a convenience method to generate a verifier:

// Generate a code_verifier and code_challenge
const codes = oAuth2Client.generateCodeVerifier();
// Generate the url that will be used for the consent dialog.
const authorizeUrl = oAuth2Client.generateAuthUrl({
access_type: 'offline',
scope: 'https://www.googleapis.com/auth/plus.me',
code_challenge_method: 'S256',
code_challenge: codes.codeChallenge
});

Breaking changes

There have been multiple API breaking changes with this release. Please test your code accordingly after upgrading.

Default exports

The exports on the google-auth-library have changed. The default export of the library was previously a reference to the GoogleAuth type, which was instantiated as a starting point for all consumers. Now, the module has no default export, but exports several other types common used.

// OLD CODE
var GoogleAuth = require('google-auth-library');
var auth = new GoogleAuth();
var jwtClient = new auth.JWT();
var oAuth2Client = new auth.OAuth2();
...
// NEW CODE
const gal = require('google-auth-library');
const auth = new gal.GoogleAuth();
const jwtClient = new gal.JWT();
const oAuth2Client = new gal.OAuth2Client();
...
// if you're using Node 6+, you might find this convenient:
const {GoogleAuth, JWT, OAuth2Client} = require('google-auth-library');

If you're using es6 imports via TypeScript or Babel, you can use es6 style as well:

import {GoogleAuth, OAuth2Client} from 'google-auth-library';
const auth = new GoogleAuth();
...

Synchronous methods

Several public methods were switched from asynchronous to synchronous APIs. In all cases, the APIs were not doing anything asynchronous - they were just providing errors in callback form. This has been changed.

// OLD CODE
var auth = new GoogleAuth();
auth.fromJSON(input, function (err, client) {
  if (err) {
    console.error('Error acquiring client: ' + err);
  }
  // make request with client ...
});
// NEW CODE
const auth = new GoogleAuth();
const client = auth.fromJSON(input);
// make request with client ...

This change was made with the following methods:

• GoogleAuth.fromJSON
• GoogleAuth.fromAPIKey
• JWTAccess. getRequestMetadata
• JWTAccess.fromJSON
• JWTClient.fromJSON
• JWTClient.fromAPIKey
• UserRefreshClient.fromJSON

Request -> Axios

The underlying transport used for HTTP requests was changed from request to axios. This will result in a number of breaking changes.

Any calls to the client.request(opts) method will both accept different parameters, and have different return types. For the options passed to these methods, they are changing from a request options object to an axios request options object.

In addition to the properties on the opts object changing, the signature of the callback is changing as well. The previous version of the library would return objects with a callback that reversed request's default order: function (err, body, response). The signature of that callback has simply been changed to function (err, response), where the body of the response is available by looking at response.data.

// OLD CODE
oAuth2Client.request({
  uri: 'https://www.googleapis.com/plus/v1/people?query=pizza'
}, function (err, body, res) {
  console.log('The body of the response was ' + body);
});
// NEW CODE (using callbacks)
oAuth2Client.request({
// note that we're using url instead of uri here, per the Axios request config. 
url: 'https://www.googleapis.com/plus/v1/people?query=pizza'
}, function (err, res) {
// The body isn't returned as part of the callback, and is available from res.data
console.log(</span>The body of the response was <span class="pl-s1"><span class="pl-pse">${</span><span class="pl-smi">res</span>.<span class="pl-c1">data</span><span class="pl-pse">}</span></span><span class="pl-pds">);
});
// NEW CODE (using async/await)
const res = await oAuth2Client.request({
url:  'https://www.googleapis.com/plus/v1/people?query=pizza'
});
console.log(</span>The body of the response was <span class="pl-s1"><span class="pl-pse">${</span><span class="pl-smi">res</span>.<span class="pl-c1">data</span><span class="pl-pse">}</span></span><span class="pl-pds">);

In addition to these changes - the request and axios libraries handle errors differently. request treats any completed request, even if it returns a non 2xx response code, as a success. The err parameter will be null or undefined. axios treats any non 2xx response as an error. Code which may have previous not worked, but also not thrown errors - may now start throwing errors.

Parameter change for verifyIdToken

The parameters to the verifyIdToken method of OAuth2Client have been changed. The function now accepts a single options object, and an optional callback. A function that used to look like this:

oAuth2Client.verifyIdToken(idToken, audience, callback);

Would now be rewritten as this:

oAuth2Client.verifyIdToken({
  idToken: idToken,
  audience: audience
}, callback);

The new version differs by 35 commits.

• b6324ce 1.0.0
• 10b4d5d feat: generate reference docs (#237)
• 0bc61e3 chore: cleanup samples and readme (#240)
• b8a47ca chore(package): update @types/node to version 9.3.0 (#238)
• bc5ddd6 chore: accept options objects in constructors (#230)
• f388b8c chore(package): regen package-lock after merge
• 811293a fix: cache promise instead of ProjectId (#216)
• c2af227 chore: apply code style rules to javascript (#233)
• a2fc08c fix: improve typing around tokens and add sample (#219)
• c717429 chore: license check as posttest (#232)
• d248a00 chore: update deps (#229)
• 83ed61c feat: add support for code_verifier in getToken (#218)
• 92d5fc2 chore: docs and samples for refresh token, update uris (#215)
• bb9a74b feat: allow passing maxExpiry to verifyIdToken (#223)
• a9ab95e docs: document proxy behavior and verify with a test (#221)

There are 35 commits in total.

See the full diff

There is a collection of frequently asked questions. If those don’t help, you can always ask the humans behind Greenkeeper.

This release includes a few new features, and a few bug fixes.

New Features

f9950b0 feat: cache JWT tokens in JWTAccess (#254)
7e9a390 feat: Add ability to refresh token automatically before expiration. (#242)
014ce0b feat: export static GoogleAuth (#249)

Fixes

c3ce4f1 fix: Fix samples/jwt.js link in README (#253)
64fb34d fix: update usage of OAuth2Client.verifyIdToken in example (#243)
771bc6c fix: use npm link to run samples (#245)

The new version differs by 12 commits.

• 3d9e26a chore: release v1.1.0 (#261)
• f9950b0 feat: cache JWT tokens in JWTAccess (#254)
• 36fb7ae chore(package): update js-green-licenses to version 0.4.0 (#256)
• 06f1292 chore(package): update mocha to version 5.0.0 (#258)
• 7f4562f chore: move to CircleCI and fix codecov (#257)
• 0983b08 chore: Delete the changelog in favor of GitHub release notes (#250)
• c3ce4f1 fix: Fix samples/jwt.js link in README (#253)
• 7e9a390 feat: Add ability to refresh token automatically before expiration. (#242)
• 64fb34d fix: update usage of OAuth2Client.verifyIdToken in example (#243)
• 014ce0b feat: export static GoogleAuth (#249)
• 5094b2f chore(package): update js-green-licenses to version 0.3.1 (#247)
• 771bc6c fix: use npm link to run samples (#245)

See the full diff

The new version differs by 8 commits.

• 5ab6be3 chore: bump to 1.2.0 (#271)
• 0803242 feat: add IAP and additional claims support (#268)
• 730d4b7 fix: Update GCE metadata token endpoint (#269)
• 7d89b2c chore: add example of puppeteer (#265)
• 29c6963 chore: update to latest version of gtoken (#266)
• a570126 feat: Add given_name and family_name to TokenPayload interface (#260)
• 17a56a6 fix: update links in readme (#262)
• c654a00 chore: remove tests from coverage (#263)

See the full diff

The new version differs by 4 commits.

• a21d244 chore: release 1.2.1 (#277)
• 6d6756e Revert "fix: Update GCE metadata token endpoint (#269)" (#276)
• c797422 chore: improve env var mocking (#273)
• b6db93a chore: remove closure jsdoc types (#272)

See the full diff

The new version differs by 10 commits.

• 7b85668 chore: release 1.3.0 (#294)
• 64a1bd0 feat: add auto auth features (#281)
• 4d0c49d chore(package): update gcp-metadata to version 0.6.0 (#288)
• 60c5a1e chore: upgrade to TypeScript 2.7 (#289)
• 80c439a chore: upgrade all the things (#292)
• 5699b90 fix: cache GCE credentials (#286)
• 12feb2c test: improve coverage (#287)
• 7a951e0 fix: retry connections to gce metadata server (#284)
• 78d6813 fix: do not retry if a post with readable stream (#279)
• 3c9efe5 chore: use gcp-metadata (#278)

See the full diff

The new version differs by 2 commits.

• 0ea5ee0 chore: release 1.3.1 (#297)
• 3533dd9 fix: move gcp-metadata to deps (#296)

See the full diff

This release contains minor test improvements and bug fixes. Enjoy!

b41381d fix: ensure GCF can read metadata requests (#324)
48f962c chore: update deps (#317)
879864a chore(package): update js-green-licenses to version 0.5.0 (#314)
13a6761 fix: increase test timeout (#316)
e43c73e chore: improve tests (#308)
7f7666f chore: fix typo in comment (#304)
1848552 chore: use sinon to mock in some cases (#303)
faf494a test: flatten tests (#301)
34bb07f docs: add newline in readme
a0169e7 docs: add instructions for oauth2 and installed apps (#300)

The new version differs by 11 commits.

• 9fc4c80 chore: release 1.3.2 (#325)
• b41381d fix: ensure GCF can read metadata requests (#324)
• 48f962c chore: update deps (#317)
• 879864a chore(package): update js-green-licenses to version 0.5.0 (#314)
• 13a6761 fix: increase test timeout (#316)
• e43c73e chore: improve tests (#308)
• 7f7666f chore: fix typo in comment (#304)
• 1848552 chore: use sinon to mock in some cases (#303)
• faf494a test: flatten tests (#301)
• 34bb07f docs: add newline in readme
• a0169e7 docs: add instructions for oauth2 and installed apps (#300)

See the full diff

It's that special time again! Bug fixes, new features, updated packages, this release has it all.

New features

2570751 feat: emit an event when new tokens are obtained (#341)
3b057e7 feat: add auth.request method (#346)
200de99 feat: export additional types (#345)
e835c05 feat: allow passing options to auth.getClient (#344)
f1ad9da feat: add getTokenInfo method (#337)
df75b73 feat: add JWT.getCredentials method (#323)

Bug fixes

f75f2a2 fix: pin axios to nodejs (#342)
4807764 fix: cache refreshToken promises (#339)
c30f822 fix: use id_token for IAP requests (#328)
5d5a1e7 fix: don't duplicate user-agent (#322)

Keepin' the lights on

375faea test: add missing scope checks (#343)
93ad6d5 chore(package): update @types/mocha to version 5.0.0 (#333)
a39267e chore(package): update sinon to version 5.0.0 (#332)
6589956 chore: setup nightly builds workflow (#329)

Enjoy that fresh hot auth y'all 🚀🐢

The new version differs by 15 commits.

• 11a0896 chore: release 1.4.0 (#347)
• 2570751 feat: emit an event when new tokens are obtained (#341)
• 3b057e7 feat: add auth.request method (#346)
• 200de99 feat: export additional types (#345)
• e835c05 feat: allow passing options to auth.getClient (#344)
• 375faea test: add missing scope checks (#343)
• f75f2a2 fix: pin axios to nodejs (#342)
• 4807764 fix: cache refreshToken promises (#339)
• f1ad9da feat: add getTokenInfo method (#337)
• 93ad6d5 chore(package): update @types/mocha to version 5.0.0 (#333)
• a39267e chore(package): update sinon to version 5.0.0 (#332)
• c30f822 fix: use id_token for IAP requests (#328)
• 6589956 chore: setup nightly builds workflow (#329)
• df75b73 feat: add JWT.getCredentials method (#323)
• 5d5a1e7 fix: don't duplicate user-agent (#322)

See the full diff

In this release:

• The redirect_uri and client_id used in the subsequent call to getToken() (and passed to the code exchange endpoint) can now be overridden.
• The order in which credentials and keyFilename fields in GoogleAuthOptions are read is now swapped if both are present (it will be in the order [credentials, keyFilename]).

Commits

1f92e9c fix: read credentials field before keyFilename (#361)
35ed34b chore: update dependencies (#358)
4e2c298 chore(package): update @types/node to version 10.0.3 (#357)
dd63531 chore(package): update sinon to version 5.0.1 (#356)
9328fa6 chore: add nodejs 10 to test matrix (#353)
8a2b53b fix: add generic type to request (#354)
e40a5ef test: fix possible EXDEV in fs.rename (#350)
d3e1b15 feat: Allow overrides to getToken that are used with corresponding generateAuthUrl (#349)

The new version differs by 9 commits.

• ffb378d chore: release 1.5.0 (#362)
• 1f92e9c fix: read credentials field before keyFilename (#361)
• 35ed34b chore: update dependencies (#358)
• 4e2c298 chore(package): update @types/node to version 10.0.3 (#357)
• dd63531 chore(package): update sinon to version 5.0.1 (#356)
• 9328fa6 chore: add nodejs 10 to test matrix (#353)
• 8a2b53b fix: add generic type to request (#354)
• e40a5ef test: fix possible EXDEV in fs.rename (#350)
• d3e1b15 feat: Allow overrides to getToken that are used with corresponding generateAuthUrl (#349)

See the full diff

Greetings folks! This minor release has a few new features! Most of these have been added to help support the migration away from google-auto-auth. Enjoy 🎉

Features

8294685 feat: enable custom service account with compute client (#378)
2472be0 feat: add sign method to JWT (#375)
c085f14 feat: add a getProjectId method for google-auto-auth compat (#374)

Fixes

23fe447 fix: limit situations where we retry (#373)
1477db8 chore: fix lint task in circle config (#377)
3f54935 docs: consistent header sizing, small grammar changes (#366)

Keepin the lights on

6e88edd chore: upgrade all the dependencies (#372)
8cdd31a chore(package): update nyc to version 12.0.2 (#376)
b4d62a0 chore(package): update @types/sinon to version 5.0.0 (#367)

The new version differs by 10 commits.

• 711109d chore: release 1.6.0 (#380)
• 23fe447 fix: limit situations where we retry (#373)
• 8294685 feat: enable custom service account with compute client (#378)
• 2472be0 feat: add sign method to JWT (#375)
• 1477db8 chore: fix lint task in circle config (#377)
• c085f14 feat: add a getProjectId method for google-auto-auth compat (#374)
• 6e88edd chore: upgrade all the dependencies (#372)
• 8cdd31a chore(package): update nyc to version 12.0.2 (#376)
• b4d62a0 chore(package): update @types/sinon to version 5.0.0 (#367)
• 3f54935 docs: consistent header sizing, small grammar changes (#366)

See the full diff

This release includes a fix for the issue where --esModuleInterop was required for the TypeScript compiler to pass.

5a0a9b3 fix: do not use synthetic imports for nodejs core (#382)

The new version differs by 2 commits.

• 9923d3f chore: release 1.6.1 (#383)
• 5a0a9b3 fix: do not use synthetic imports for nodejs core (#382)

See the full diff

Well hello 2.0 🎉 This release has multiple breaking changes. It also has a lot of bug fixes.

Breaking Changes

Support for node.js 4.x and 9.x has been dropped

These versions of node.js are no longer supported.

The getRequestMetadata method has been deprecated

The getRequestMetadata method has been deprecated on the IAM, OAuth2, JWT, and JWTAccess classes. The getRequestHeaders method should be used instead. The methods have a subtle difference: the getRequestMetadata method returns an object with a headers property, which contains the authorization header. The getRequestHeaders method simply returns the headers.

Old code

const client = await auth.getClient();
const res = await client.getRequestMetadata();
const headers = res.headers;

New code

const client = await auth.getClient();
const headers = await client.getRequestHeaders();

The createScopedRequired method has been deprecated

The createScopedRequired method has been deprecated on multiple classes. The createScopedRequired and createScoped methods on the JWT class were largely in place to help inform clients when scopes were required in an application default credential scenario. Instead of checking if scopes are required after creating the client, instead scopes should just be passed either into the GoogleAuth.getClient method, or directly into the JWT constructor.

Old code

auth.getApplicationDefault(function(err, authClient) {
   if (err) {
     return callback(err);
   }
  if (authClient.createScopedRequired && authClient.createScopedRequired()) {
    authClient = authClient.createScoped([
      'https://www.googleapis.com/auth/cloud-platform'
    ]);
  }
  callback(null, authClient);
});

New code

const client = await auth.getClient({
  scopes: ['https://www.googleapis.com/auth/cloud-platform']
});

The refreshAccessToken method has been deprecated

The OAuth2.refreshAccessToken method has been deprecated. The getAccessToken, getRequestMetadata, and request methods will all refresh the token if needed automatically. There is no need to ever manually refresh the token.

As always, if you run into any problems... please let us know!

Features

• Set private_key_id in JWT access token header like other google auth libraries. (#450)

Bug Fixes

• fix: support HTTPS proxies (#405)
• fix: export missing interfaces (#437)
• fix: Use new auth URIs (#434)
• docs: Fix broken link (#423)
• fix: surface file read streams (#413)
• fix: prevent unhandled rejections by avoid .catch (#404)
• fix: use gcp-metadata for compute credentials (#409)
• Add Code of Conduct
• fix: Warn when using user credentials from the Cloud SDK (#399)
• fix: use Buffer.from instead of new Buffer (#400)
• fix: Fix link format in README.md (#385)

Breaking changes

• chore: deprecate getRequestMetadata (#414)
• fix: deprecate the createScopedRequired methods (#410)
• fix: drop support for node.js 4.x and 9.x (#417)
• fix: deprecate the refreshAccessToken methods (#411)
• fix: deprecate the getDefaultProjectId method (#402)
• fix: drop support for node.js 4 (#401)

Build / Test changes

• Run synth to make build tools consistent (#455)
• Add a package.json for samples and cleanup README (#454)
• chore(deps): update dependency typedoc to ^0.12.0 (#453)
• chore: move examples => samples + synth (#448)
• chore(deps): update dependency nyc to v13 (#452)
• chore(deps): update dependency pify to v4 (#447)
• chore(deps): update dependency assert-rejects to v1 (#446)
• chore: ignore package-lock.json (#445)
• chore: update renovate config (#442)
• chore(deps): lock file maintenance (#443)
• chore: remove greenkeeper badge (#440)
• test: throw on deprecation
• chore: add intelli-espower-loader for running tests (#430)
• chore(deps): update dependency typescript to v3 (#432)
• chore(deps): lock file maintenance (#431)
• test: use strictEqual in tests (#425)
• chore(deps): lock file maintenance (#428)
• chore: Configure Renovate (#424)
• chore: Update gts to the latest version 🚀 (#422)
• chore: update gcp-metadata for isAvailable fix (#420)
• refactor: use assert.reject in the tests (#415)
• refactor: cleanup types for certificates (#412)
• test: run tests with hard-rejection (#397)
• cleanup: straighten nested try-catch (#394)
• test: getDefaultProjectId should prefer config (#388)
• chore(package): Update gts to the latest version 🚀 (#387)
• chore(package): update sinon to version 6.0.0 (#386)

The new version differs by 50 commits.

• 17a9d5f fix CircleCI install config
• dbe05e8 Fix sample and system tests
• 55885a3 Fix sample and system tests
• b9a809c Fix sample and system tests
• 6e3bc6e Release v2.0.0 (#456)
• 5377684 fix: support HTTPS proxies (#405)
• 3ba8c45 Run synth to make build tools consistent (#455)
• 909fa75 Add a package.json for samples and cleanup README (#454)
• dc1265f chore(deps): update dependency typedoc to ^0.12.0 (#453)
• 0ad3630 chore: move examples => samples + synth (#448)
• edcafbc Set private_key_id in JWT access token header like other google auth libraries. (#450)
• 7e21777 chore(deps): update dependency nyc to v13 (#452)
• bad4321 chore(deps): update dependency pify to v4 (#447)
• 552a4a2 chore(deps): update dependency assert-rejects to v1 (#446)
• 9cdfb6f chore: ignore package-lock.json (#445)

There are 50 commits in total.

See the full diff

Implementation Changes

• fix: verifyIdToken will never return null (#488)
• Update the url to application default credentials (#470)
• Update omitted parameter 'hd' (#467)

Dependencies

• chore(deps): update dependency nock to v10 (#501)
• chore(deps): update dependency sinon to v7 (#502)
• chore(deps): update dependency typescript to v3.1.3 (#503)
• chore(deps): update dependency gh-pages to v2 (#499)
• chore(deps): update dependency typedoc to ^0.13.0 (#497)

Documentation

• docs: Remove code format from Application Default Credentials (#483)
• docs: replace google/ with googleapis/ in URIs (#472)
• Fix typo in readme (#469)
• Update samples and docs for 2.0 (#459)

Internal / Testing Changes

• chore: update issue templates (#509)
• chore: remove old issue template (#507)
• build: run tests on node11 (#506)
• chore(build): drop hard rejection and update gts in the kitchen test (#504)
• chores(build): do not collect sponge.xml from windows builds (#500)
• chores(build): run codecov on continuous builds (#495)
• chore: update new issue template (#494)
• build: fix codecov uploading on Kokoro (#490)
• test: move kitchen sink tests to system-test (#489)
• Update kokoro config (#482)
• fix: export additional typescript types (#479)
• Don't publish sourcemaps (#478)
• test: remove appveyor config (#477)
• Enable prefer-const in the eslint config (#473)
• Enable no-var in eslint (#471)
• Update CI config (#468)
• Retry npm install in CI (#465)
• Update Kokoro config (#462)

The new version differs by 31 commits.

• 859e38c Release v2.0.1 (#514)
• ed894d9 chore: update issue templates (#509)
• 25c6e5a chore: remove old issue template (#507)
• 7911c72 build: run tests on node11 (#506)
• 1807578 chore(build): drop hard rejection and update gts in the kitchen test (#504)
• 3de5b4e chore(deps): update dependency nock to v10 (#501)
• 694b74a chore(deps): update dependency sinon to v7 (#502)
• 0816fc5 chore(deps): update dependency typescript to v3.1.3 (#503)
• 435f6d8 chores(build): do not collect sponge.xml from windows builds (#500)
• b305344 chore(deps): update dependency gh-pages to v2 (#499)
• fc4ceb2 chore(deps): update dependency typedoc to ^0.13.0 (#497)
• bc11f01 chores(build): run codecov on continuous builds (#495)
• 231853f chore: update new issue template (#494)
• 76a28e8 build: fix codecov uploading on Kokoro (#490)
• b4ea57f fix: verifyIdToken will never return null (#488)

There are 31 commits in total.

See the full diff

12-16-2018 10:48 PST

Fixes

• fix(types): export GCPEnv type (#569)
• fix: use post for token revocation (#524)

Dependencies

• fix(deps): update dependency lru-cache to v5 (#541)

Documentation

• docs: add ref docs again (#553)
• docs: clean up the readme (#554)

Internal / Testing Changes

• chore(deps): update dependency @types/sinon to v7 (#568)
• refactor: use execa for install tests, run eslint on samples (#559)
• chore(build): inject yoshi automation key (#566)
• chore: update nyc and eslint configs (#565)
• chore: fix publish.sh permission +x (#563)
• fix(build): fix Kokoro release script (#562)
• build: add Kokoro configs for autorelease (#561)
• chore: always nyc report before calling codecov (#557)
• chore: nyc ignore build/test by default (#556)
• chore(build): update the prettier and renovate config (#552)
• chore: update license file (#551)
• fix(build): fix system key decryption (#547)
• chore(deps): update dependency typescript to ~3.2.0 (#546)
• chore(deps): unpin sinon (#544)
• refactor: drop non-required modules (#542)
• chore: add synth.metadata (#537)
• fix: Pin @types/sinon to last compatible version (#538)
• chore(deps): update dependency gts to ^0.9.0 (#531)
• chore: update eslintignore config (#530)
• chore: drop contributors from multiple places (#528)
• chore: use latest npm on Windows (#527)
• chore: update CircleCI config (#523)
• chore: include build in eslintignore (#516)

The new version differs by 29 commits.

• 05e7adc Release v2.0.2 (#573)
• 9950ab4 fix(types): export GCPEnv type (#569)
• 196a99a chore(deps): update dependency @types/sinon to v7 (#568)
• 502f43e refactor: use execa for install tests, run eslint on samples (#559)
• 81e2565 chore(build): inject yoshi automation key (#566)
• 7e0d8b6 chore: update nyc and eslint configs (#565)
• 66825d5 chore: fix publish.sh permission +x (#563)
• 6b623ab fix(build): fix Kokoro release script (#562)
• d90be81 build: add Kokoro configs for autorelease (#561)
• b300bb4 chore: always nyc report before calling codecov (#557)
• 847509f chore: nyc ignore build/test by default (#556)
• 74d879a docs: add ref docs again (#553)
• 241ad2d docs: clean up the readme (#554)
• 41e5146 chore(build): update the prettier and renovate config (#552)
• 634ba78 chore: update license file (#551)

There are 29 commits in total.

See the full diff

01-16-2019 10:00 PST

Welcome to 3.0 🎉 This release has it all. New features, bug fixes, breaking changes, performance improvements - something for everyone! The biggest addition to this release is support for the browser via Webpack.

This release has breaking changes. This release has a few breaking changes. These changes are unlikely to affect most clients.

BREAKING: Migration from axios to gaxios

The 2.0 version of this library used the axios library for making HTTP requests. In the 3.0 release, this has been replaced by a mostly API compatible library gaxios. The new request library natively supports proxies, and comes with a smaller dependency chain. While this is mostly an implementation detail, the request method was directly exposed via the GoogleAuth.request and OAuth2Client.request methods. The gaxios library aims to provide an API compatible implementation of axios, but that can never be 100% promised. If you run into bugs or differences that cause issues - please do let us know.

BREAKING: generateCodeVerifier is now generateCodeVerifierAsync

The OAuth2Client.generateCodeVerifier method has been replaced by the OAuth2Client.generateCodeVerifierAsync method. It has changed from a synchronous method to an asynchronous method to support async browser crypto APIs required for Webpack support.

BREAKING: generateCodeVerifier is now generateCodeVerifierAsync

The OAuth2Client.verifySignedJwtWithCerts method has been replaced by the OAuth2Client.verifySignedJwtWithCerts method. It has changed from a synchronous method to an asynchronous method to support async browser crypto APIs required for Webpack support.

New Features

• feat: make it webpackable (#371)

Bug Fixes

• fix: accept lowercase env vars (#578)

Dependencies

• chore(deps): update gtoken (#592)
• fix(deps): upgrade to gcp-metadata v0.9.3 (#586)

Documentation

• docs: update bug report link (#585)
• docs: clarify access and refresh token docs (#577)

Internal / Testing Changes

• refactor(deps): use gaxios for HTTP requests instead of axios (#593)
• fix: some browser fixes (#590)
• chore(deps): update dependency ts-loader to v5 (#588)
• chore(deps): update dependency karma to v3 (#587)
• build: check broken links in generated docs (#579)
• chore(deps): drop unused dep on typedoc (#583)
• build: add browser test running on Kokoro (#584)
• test: improve samples and add tests (#576)

The new version differs by 15 commits.

• d129a76 Release google-auth-library v3.0.0 (#594)
• 1c014d8 refactor(deps): use gaxios for HTTP requests instead of axios (#593)
• 06da209 chore(deps): update gtoken (#592)
• d3fb55e fix: some browser fixes (#590)
• e8d82ca chore(deps): update dependency ts-loader to v5 (#588)
• b1b7917 chore(deps): update dependency karma to v3 (#587)
• d4d31be fix(deps): upgrade to gcp-metadata v0.9.3 (#586)
• d84af7d build: check broken links in generated docs (#579)
• cf3aedc feat: make it webpackable (#371)
• 48db9eb docs: update bug report link (#585)
• ae94be3 chore(deps): drop unused dep on typedoc (#583)
• 8803dd3 build: add browser test running on Kokoro (#584)
• 7c498a1 test: improve samples and add tests (#576)
• 16b776f docs: clarify access and refresh token docs (#577)
• 9a9d0cf fix: accept lowercase env vars (#578)

See the full diff

01-16-2019 21:04 PST

Bug Fixes

• fix(deps): upgrade to the latest gaxios (#596)

The new version differs by 3 commits.

• dea459c Release v3.0.1 (#597)
• 91f8729 fix(deps): update dependency google-auth-library to v3 (#598)
• 661b7f4 fix(deps): upgrade to the latest gaxios (#596)

See the full diff

02-08-2019 08:29 PST

Bug fixes

• fix: use key file when fetching project id (#618)
• fix: Throw error if there is no refresh token despite the necessity of refreshing (#605)

New Features

• feat: allow passing constructor options to getClient (#611)

Documentation

• docs: update contributing path in README (#621)
• chore: move CONTRIBUTING.md to root (#619)
• docs: add lint/fix example to contributing guide (#615)
• docs: use the People API for samples (#609)

Internal / Testing Changes

• chore(deps): update dependency typescript to ~3.3.0 (#612)
• chore(deps): update dependency eslint-config-prettier to v4 (#604)
• build: ignore googleapis.com in doc link check (#602)
• chore(deps): update dependency karma to v4 (#603)

The new version differs by 12 commits.

• c9ca1a4 Release v3.1.0 (#623)
• d273752 fix: use key file when fetching project id (#618)
• 9edf374 docs: update contributing path in README (#621)
• cad90f0 chore: move CONTRIBUTING.md to root (#619)
• 9dc5536 docs: add lint/fix example to contributing guide (#615)
• 8101ad8 chore(deps): update dependency typescript to ~3.3.0 (#612)
• 9d97aeb feat: allow passing constructor options to getClient (#611)
• a4618f9 docs: use the People API for samples (#609)
• a61dddf Throw error if there is no refresh token despite the necessity of refreshing (#605)
• e660246 chore(deps): update dependency eslint-config-prettier to v4 (#604)
• 5d8a60a build: ignore googleapis.com in doc link check (#602)
• 58db34c chore(deps): update dependency karma to v4 (#603)

See the full diff

03-18-2019 08:32 PDT

Bug Fixes

• fix: Avoid loading fast-text-encoding if not in browser environment (#627)

Dependencies

• fix(deps): update dependency gcp-metadata to v1 (#632)

Documentation

• docs: update links in contrib guide (#630)

Internal / Testing Changes

• build: use per-repo publish token (#641)
• build: Add docuploader credentials to node publish jobs (#639)
• build: use node10 to run samples-test, system-test etc (#638)
• build: update release configuration
• chore(deps): update dependency @types/lru-cache to v5 (#635)
• chore(deps): update dependency mocha to v6
• chore: fix lint (#631)
• build: use linkinator for docs test (#628)
• chore(deps): update dependency @types/tmp to ^0.0.34 (#629)
• build: create docs test npm scripts (#625)
• build: test using @grpc/grpc-js in CI (#624)

The new version differs by 15 commits.

• 59af030 Release google-auth-library v3.1.1 (#644)
• 3382506 build: use per-repo publish token (#641)
• 3a86a15 build: Add docuploader credentials to node publish jobs (#639)
• c27cb95 build: use node10 to run samples-test, system-test etc (#638)
• 23563e6 build: update release configuration
• 6f0328c chore(deps): update dependency @types/lru-cache to v5 (#635)
• f63599b chore(deps): update dependency mocha to v6
• 52323fa fix(deps): update dependency gcp-metadata to v1 (#632)
• 147b9fc chore: fix lint (#631)
• b3b1bda build: use linkinator for docs test (#628)
• 724accf docs: update links in contrib guide (#630)
• 657f83f fix: Avoid loading fast-text-encoding if not in browser environment (#627)
• b78f164 chore(deps): update dependency @types/tmp to ^0.0.34 (#629)
• aded4f5 build: create docs test npm scripts (#625)
• 699778c build: test using @grpc/grpc-js in CI (#624)

See the full diff

03-22-2019 15:38 PDT

Implementation Changes

• fix: getCredential(): load credentials with getClient() (#648)

Internal / Testing Changes

• chore: publish to npm using wombat (#645)

The new version differs by 3 commits.

• daab404 Release v3.1.2 (#649)
• 5cad41a fix: getCredential(): load credentials with getClient() (#648)
• ce4f99c chore: publish to npm using wombat (#645)

See the full diff

Bug Fixes

• deps: update dependency arrify to v2 (#684) (1757ee2)
• deps: update dependency gaxios to v2 (#681) (770ad2f)
• deps: update dependency gcp-metadata to v2 (#701) (be20528)
• deps: update dependency gtoken to v3 (#702) (2c538e5)
• re-throw original exception and preserve message in compute client (#668) (dffd1cc)
• surface original stack trace and message with errors (#651) (8fb65eb)
• throw on missing refresh token in all cases (#670) (0a02946)
• throw when adc cannot acquire a projectId (#658) (ba48164)
• deps: update dependency semver to v6 (#655) (ec56c88)

Build System

• upgrade engines field to >=8.10.0 (#686) (377d5c6)

Features

• support scopes on compute credentials (#642) (1811b7f)

BREAKING CHANGES

• upgrade engines field to >=8.10.0 (#686)

The new version differs by 39 commits.

• c4b2feb chore: release 4.0.0 (#703)
• 4490495 chore: remove bonus dependencies (#690)
• 2c538e5 fix(deps): update dependency gtoken to v3 (#702)
• be20528 fix(deps): update dependency gcp-metadata to v2 (#701)
• abc6882 chore(deps): update dependency ts-loader to v6 (#698)
• df8f94b build: allow Node 10 on presubmit to push to codecov (#697)
• 412fb24 build: allow Node 10 to push to codecov (#696)
• 60d132c [CHANGE ME] Re-generated to pick up changes in the API or client library generator. (#699)
• 988f2a8 test: make tests work on Windows and in GCE (#693)
• 4790552 build: patch Windows container, fixing Node 10 (#695)
• 85aedea [CHANGE ME] Re-generated to pick up changes in the API or client library generator. (#692)
• 37bb8c7 chore(deps): update dependency gts to v1 (#679)
• 3b97cf4 chore(deps): update dependency null-loader to v1 (#675)
• 1757ee2 fix(deps): update dependency arrify to v2 (#684)
• 5a4ecf6 chore: do not run CI on grpc-js (#687)

There are 39 commits in total.

See the full diff