CHANGELOG.md

Change Log

9.2.1 (2024-11-26)

Enhancements

1. Improved Backward Compatibility:

   • The deprecated getSessionOnEdge function now triggers a warning instead of throwing an error, ensuring smoother upgrades for users.

2. Seamless Token Refresh in Middleware:

   • Fixed an issue where refreshed tokens were not forwarded to SSR components after middleware processing. Updated cookies are now correctly synchronized, ensuring consistent session handling across the application.

These changes enhance user experience during upgrades and improve session consistency for applications with short token expiration times.

Change Log

9.2.0 (2024-11-25)

• FR-18699 - Removed entitlements automatic 30 seconds refresh mechanism
• FR-18138 - Added logic to improve login box and admin portal stability and resiliency
• FR-18646 - Fixed missing permissions with wildcard on custom roles
• FR-18341 - Fixed Google Chrome Translate feature causes a crash
• FR-16902 - Fixed login box scroll on mobile browsers

NextJS Wrapper 9.2.0:

• FR-17280 - Fixed NextJS v15 build issue

9.1.1 (2024-11-12)

• FR-18594 - Fixed blinking bug On IP and domain page
• FR-18499 - Fixed otc page blink
• FR-18005 - Fixed search api tokens with null descriptions
• FR-18499 - Fixed activate with code and password
• FR-18582 - Fixed loader size and wrong massage
• FR-18561 - Fixed get ip metadata when app name is provided
• FR-17091 - Fixed long name in groups and roles
• FR-18529 - Fixed empty roles field bug when appName is provided
• FR-18516 - Fixed redundant function
• FR-18476 - Added url for beforeRequestInterceptor function
• FR-18476 - Added request interceptor
• FR-18472 - Fixed Google one tap login stuck after unmounting login/signup unmounted
• FR-18436 - Fixed activate account with empty redirect bug
• FR-17943 - Added code pages
• FR-18427 - Added Support for triggering MFA after native passkeys / iOS apple login
• FR-18211 - Fixed email overlapping roles field

NextJS Wrapper 9.1.1:

• FR-17280 - fix next js 15 build & update example app project middleware
• FR-18495 - refresh the token when it has expired
• FR-18442 - Remove cookies when landing on oauth/callback to support after hosted login activate account succeeded
• FR-18442 - Fix Nextjs session store injection and support SSG pages
• Fix session abandoned when accessing not found page
• Export FronteggAppRouterAsync to be imported by '@frontegg/nextjs/app'

9.0.5 (2024-10-31)

• FR-18476 - Added url for beforeRequestInterceptor function

• FR-18476 - Added request interceptor

• FR-18472 - Fixed Google one tap login stuck after unmounting login/signup unmounted

• FR-18436 - Fixed activate account with empty redirect bug

• FR-17943 - Added code pages

• FR-18427 - Added Support for triggering MFA after native passkeys / iOS apple login

• FR-18211 - Fixed email overlapping roles field

• FR-18356 - Fixed validations localization override type

NextJS Wrapper 9.0.5:

• FR-18442 - Remove cookies when landing on oauth/callback to support after hosted login activate account succeeded
• FR-18442 - Fix Nextjs session store injection and support SSG pages
• Fix session abandoned when accessing not found page
• Export FronteggAppRouterAsync to be imported by '@frontegg/nextjs/app'
• Add Support for NextJS 15

9.0.4 (2024-10-22)

• FR-18356 - Fixed validations localization override type

Change Log

9.0.3 (2024-10-10)

FR-18217 - Fixed impersonation on embedded FR-18167 - Fixed back to login on magic link FR-8030 - Fixed website dialog cancel button typeography FR-17760 - Fixed empty lastSeen column on expanded user info FR-17762 - Fixed tree component using mui/x-tree-view FR-17517 - Fixed login direct action race condition FR-17649 - Fixed autofill sms code iOS SDK FR-17650 - Fixed auto capitalize email input in login page FR-17443 - Fixed infinite loader when using direct login action FR-17626 - Fixed clientId on request authorize for multi-apps FR-17182 - Fixed copy invite user link in hosted admin portal

Change Log

9.0.2 (2024-8-28)

• FR-17626 - Fix clientId on request authorize for multi-apps
• FR-17182 - Fix copy invite user link in hosted admin portal

Change Log

9.0.1 (2024-8-18)

• FR-17169 - Added support in send unlock account email

Change Log

9.0.0 (2024-8-14)

🚀 Major Changes

• Store Management:
  Replaced the existing Redux store with Valtio. This change significantly reduces the bundle size, removes the boilerplate code associated with generator functions, and enables actions to be async/await. The new approach provides better stack traces and allows actions to be awaited directly, eliminating the need for callback functions.

🔧 Upgrades

• TypeScript:
  Upgraded TypeScript from version v3.9.7 to v5.5.4. This update ensures compatibility with the latest TypeScript features and improves overall type-checking and developer experience.

• Testing Framework:
  Upgraded Jest to version v29. This upgrade includes performance improvements, new features, and bug fixes, ensuring more reliable and faster tests.

• UI Dependencies:
  Upgraded Material UI, Emotion, and Stylis to their latest versions, enhancing UI component performance, styling flexibility, and overall user experience.

• Node.js:
  Upgraded Node.js from version 16 to 18.18, ensuring compatibility with the latest features and security updates.

🛠 Enhancements

• Refactor:
  Refactored code to use nested imports in Material UI, which helps reduce bundle size.

• Dependencies:
  Incremented various dependencies, Node.js, and TypeScript to align with the latest standards and ensure better performance and security.

• New Feature:
  Added a "Resend Invitation Email" action to the users table on the "All Accounts" page, improving user management capabilities.

⚠️ Breaking Changes

• Permissions & Privacy Page:
  Removed permissions from the privacy page. The user privacy page will now be displayed for all users in the admin portal.

8.0.26 (2024-7-18)

• FR-17009 - Add the option to disable/enable users from users table

8.0.25 (2024-7-9)

• FR-16737 - Allow terms and conditions checkbox on sign up form being optional

8.0.24 (2024-7-4)

• FR-16881 - Fixed hosted login redirect url when using basename
• FR-16812 - Fixed dark theme disabled input palette
• FR-16704 - Fixed password meter unsuspended async component

8.0.23 (2024-6-30)

FR-15484 - Fix update tenant state after account settings change FR-16613 - Add automatic sub-account access in MSP

8.0.22 (2024-6-13)

8.0.21 (2024-6-5)

• FR-16466 - Support next-js impersonation

• FR-16513 - Show client id on all tokens in API tokens table

NextJS Wrapper 8.0.21:

• FR-101010 - Update CODEOWNERS

8.0.20 (2024-5-28)

• FR-16341 - Support hiding columns in admin portal users table

8.0.19 (2024-5-27)

• FR-16463 - Removed domain restrictions validation when invite user from All Accounts page
• FR-16421 - Fixed error handling in edit phone number dialog

Change Log

8.0.18 (2024-4-21)

• FR-15737 - Added an option for accounts to open sub-account management for their sub-accounts
• FR-15603 - Added support for embedded SCIM guides

Change Log

8.0.17 (2024-4-2)

• FR-15863 - Changed chip list design in admin portal
• FR-15367 - Fixed user logo upload for SCIM users
• FR-15111 - Fixed impersonation embedded redirection

NextJS Wrapper 8.0.17:

• FR-15792 - Add support for disable refresh token on every initial props
• FR-15792 - Filter empty cookies array from the new cookies
• FR-14384 - Added entitlements for NextJS

Change Log

8.0.16 (2024-3-31)

• FR-15233 - Fixed autocomplete popper
• FR-13828 - Added option to specify prompt consent from loginDirectAction
• FR-15315 - Added sort for role selections in Admin Portal

NextJS Wrapper 8.0.16:

• FR-15792 - Fixed duplicated set-cookie header
• FR-14384 - Added entitlements feature

8.0.15 (2024-3-3)

• FR-15270 - Added new roles page to the Admin Portal
• FR-15395 - Fixed tab tenant not cleared after logout

Change Log

8.0.14 (2024-2-29)

NextJS Wrapper 8.0.14:

• FR-15305 - Fixed changed fields sent on edit group to support SCIM group update
• FR-15219 - Fixed missing row actions in users table when using MSP
• FR-15126 - Fixed MSP invite user dialog
• FR-15100 - Fixed Apple custom SSO scopes

8.0.13 (2024-2-23)

NextJS Wrapper 8.0.13:

• FR-15208 - Remove middleware from default export to prevent include backend code in frontend components
• FR-15157 - Create sample repo with quick deployment flow in readme

Change Log

8.0.12 (2024-2-1)

NextJS Wrapper 8.0.12:

• FR-15071 - Rewrite cookies on failure requests to support Microsoft SSO activation process
• FR-13875 - Added support for logout hosted login in middleware
• FR-14458 - Fixed error on middleware request since NextJs V14.0.2

Change Log

8.0.11 (2024-1-24)

NextJS Wrapper 8.0.11:

• FR-13875 - Support idle-session, logout hosted login in middleware
• FR-14458 - Fixed error on middleware request since NextJs V14.0.2
• FR-14800 - remove app url end char if is /

8.0.10 (2023-12-31)

• FR-14578 - Fixed custom login without tenant alias

• FR-14638 - Missing exp on user interface

• FR-14560 - added temporary users feature

• FR-14644 - Fixed enroll authenticator app missing error message when code is wrong

• FR-14219 - Step up - Embedded flow

• FR-14324 - Fix direct login custom social login

• FR-10692 - Remove the ability to select a full category on webhooks page

NextJS Wrapper 8.0.10:

• FR-14679 - remove-redundant-env-config-types-from-app-provider

Change Log

8.0.9 (2023-12-17)

• FR-10692 - Remove the ability to select a full category on webhooks page
• FR-14287 - Fix grammar of 1-day expiry of API tokens
• FR-14308 - Fixed alignment issue with icon in custom social login button

NextJS Wrapper 8.0.9:

• FR-14438 - disable sending body in the middleware if request method is 'GET'

Change Log

8.0.8 (2023-11-29)

• FR-13527 - Added a11y support for admin portal pages: SSO, security, profile, personal tokens, users, groups, provisioning, audit logs, API tokens, webhooks, and account details.

Change Log

8.0.7 (2023-11-20)

FR-14201 - Fixed login with SMS resend code action FR-13913 - Let tenants and users set an expiry on client credentials API tokens FR-14099 - Fix load custom login routes only when necessary FR-13605 - Support adding a phone number field to the signup page and control his required state FR-13123 - Added support to provide scopes for social logins

Change Log

8.0.6 (2023-10-24)

• FR-13772 - Fixed issue on edit user roles modal - at least 1 role is required
• FR-13808 - Support Login with SMS
• FR-13786 - Support tab per tenant

Change Log

8.0.5 (2023-10-11)

• FR-13798 - Added support for login with SMS
• FR-13364 - Improved validations text for sign-in form

Change Log

8.0.4 (2023-10-4)

• FR-13364 - Improved validations text for sign in form
• FR-13737 - Changed breached password page to be shown just for block breached password policy
• FR-13665 - Enhance hasPermission with inEntitled in admin portal in case entitlements is enabled

8.0.3 (2023-10-2)

• FR-13455 - Fixed impersonation with custom login on embedded initial blank screen
• FR-13649 - Fixed testimonial quote layout for split signup mode

NextJS Wrapper 8.0.3:

• FR-13233 - Device location points out Vercel's IP instead of actual device IP

Change Log

8.0.2 (2023-9-28)

NextJS Wrapper 8.0.2:

• Revamped the security page in the Admin Portal

Note: no migration is needed to upgrade between versions 7 to 8.

Change Log

8.0.1 (2023-9-27)

• Introduction of our new security page in the admin portal replacing the current security page.
• FR-13509 - Added GTM integration

NextJS Wrapper 8.0.1:

• FR-13274 - Fixed removed cookies in the pages directory for next-js version 13.4

7.0.19 (2023-9-5)

• Releasing the new Security Center Page, which will replace the current Security Page. Currently exposed on Early Access with limited availability by a feature flag.

NextJS Wrapper 7.0.19:

• FR-13346 - Support me authorization

Change Log

7.0.18 (2023-8-28)

• FR-13142 - Support setRootAccountData action for all account feature
• FR-12321 - Added max validations to session management fields
• FR-12974 - Fixed the issue with permissions and roles granted from user groups on User context
• FR-12322 - Change redirect to SSO text
• FR-12979 - Fixed MFA options save button to be disabled if the user has no security write permission

Change Log

7.0.17 (2023-8-14)

v7.0.17

• FR-11857 - Added new support for hosted login to load user on load
• FR-12828 - Updated entitlements API response
• FR-12224 - Supported custom login for authenticated users without a tenant alias
• FR-12780 - Improved Entitlements Vanilla JS SDK

NextJS Wrapper 7.0.17:

• FR-12947 - Fixed duplicated cookie issue with switching tenant
• FR-12634 - Added support for custom login box with sub domain
• FR-12942 - Fixed build issue with middleware

Change Log

7.0.16 (2023-7-19)

• FR-12688 - Make Admin box compatible with the updated type of IUserProfile
• FR-12114 - Fix show inactive custom social login provider
• FR-12098 - Fix admin portal user status update if email verification is off
• FR-12020 - Fix blinking workspace title in admin portal vivid theme
• FR-12664 - Fix custom webpack bug by renaming redux-saga file

NextJS Wrapper 7.0.16:

• FR-12634 - Support custom login with sub-domain index 0 for app dir
• FR-12629 - Support custom login with search params and withSSRSession

Change Log

7.0.15 (2023-7-13)

• FR-12550 - Align all auth methods to get the right login response type • FR-12664 - Rename redux-saga file to prevent loop imports by webpack • FR-12098 - Updated Admin portal user status to the correct one if email verification is off • FR-12020 - Fixed blinking workspace title in admin portal vivid theme • FR-12114 - Fixed custom social login provider shouldn't be shown if not active • FR-12628 - Fixed custom login with hosted Oauth in URL • FR-12575 - Changed remember my device value to be true by default • FR-12581 - Added support for custom inline html and script • FR-12343 - Added support for SSO per tenant • FR-12488 - Backward compatible support for loadUsersV1 • FR-12164 - Added support for MSP bulk user invitation • FR-12479 - Fixed MSP warning dialog issue • FR-12408 - Redesigned Entitlements structure

NextJS Wrapper 7.0.15:

• FR-12629 - Support custom login with search params

Change Log

7.0.14 (2023-6-30)

• MSP update visibility, bugfix
• Add security login flows

7.0.13 (2023-6-28)

• FR-12277 - Extended tenants state with the active tenant to support MSP sub-accounts
• FR-12405 - MSP bug fixes
• FR-12381 - Migrated users table to load users by users V2 API

NextJS Wrapper 7.0.13:

• FR-12313 - Support tenants V3 and active tenant

Change Log

7.0.12 (2023-6-19)

• Added support to load cdn component with the new vite version
• Fix for new sso guide dark theme
• Fix for login per tenant embedded with sub domain logout route
• Create MSP all accounts main page

NextJS Wrapper 7.0.12:

• Added a support to frontegg hooks inside custom components
• Fix frontegg middleware in NextJS 13.4 versions
• Fix headers for NodeJS +v18.1

Change Log

7.0.11 (2023-6-6)

• Improve login preview for login per tenant self service to rendered inside iframe
• Added required to fields in invite user modal
• Improve error handling for login
• Added MSP - all accounts main page and state

NextJS Wrapper 7.0.11:

• Added support for null in custom component

Change Log

7.0.10 (2023-5-28)

• Fixed hosted login with hash router
• Support login per tenant self service
• Added Cyprus phone area code 2 fa screen
• Added option to upload metadata file instead of metadata url

NextJS Wrapper 7.0.10:

• Support react hooks inside custom components

Change Log

7.0.9 (2023-5-12)

• FR-11442 - Removed admin portal provisioning feature flag
• FR-11723 - Fixed refresh token when computer clock is set to a future time
• FR-11735 - Added support for customizing login per tenant in the admin portal
• FR-11442 - Removed legacy SSO tab code
• FR-11718 - Fix users' table UI issues
• FR-11113 - Fixed Frontegg logo overlapping navigation
• FR-11442 - Extract the provisioning tab to a separated page in the admin portal
• FR-11617 - Fixed a11y enter key press issue
• FR-11352 - Added support for nested table
• [Snyk] Security upgrade @azure/storage-blob from 12.11.0 to 12.13.0

NextJS Wrapper 7.0.9:

• FR-11632 - update CODEOWNERS

Change Log

7.0.8 (2023-5-4)

• FR-11581 - fix a11y login-box onEnter event for links
• FR-11353 - add new tree graph component

7.0.7 (2023-4-28)

• FR-11564 - Social login button shouldn't inherit from secondary color

7.0.6 (2023-4-27)

• Fixed passkeys issue with reCaptcha
• Removed feature flag from passkeys button
• Enable loading Frontegg helper scripts by providing query params to Frontegg external source
• Security upgrade webpack from 5.74.0 to 5.76.0

NextJS Wrapper 7.0.6:

• FR-11538 - support-next-js-serach-param-for-login-per-tenant

7.0.5 (2023-4-27)

• Fixed input hover issue on suffix icon
• A11y improvements
• Fixed Passkeys button style

7.0.4 (2023-4-23)

• Lock reduxjs/toolkit version to be compatible in Vite types plugin
• Fixed password input placeholder text in the login box
• Fixed social login buttons order
• Fix Vite js-sha256 warning
• Fixed company name error in split mode sign up
• Fixed phone number dropdown theming
• Added aria labels to buttons

NextJS Wrapper 7.0.4:

• FR-11351 - preserve-query-params-for-login-per-tenant

7.0.3 (2023-4-3)

• Added support for SCIM groups
• Updated texts across login box - grammar and terminology
• Added impersonation indicator to show impersonator that they're in an impersonation session
• Added passkeys feature
• NextJS Wrapper 7.0.3:

NextJS Wrapper 7.0.3:

• FR-11268 - Fix nextjs edge session check
• FR-11268 - build .env.test file in runtime with random values

7.0.2 (2023-3-29)

• FR-11247 - fix version branch 6.82

• FR-11065 - add passkeys mock ff

• FR-11189 - mfa authenticator app change input type

• FR-10821 - fix table color

• FR-11204 - add unit testing with jest

• FR-11139 - fix groups

• FR-11039 - fix groups dummy

• FR-11039 - ff groups

• FR-10530 - fix ff store name

• FR-11067 - error handling on profile image upload

• FR-11039 - extend users table with groups column

NextJS Wrapper 7.0.2:

• FR-11268 - Fix nextjs edge session check
• FR-11268 - build .env.test file in runtime with random values
• FE-11268 - Add support for ForceMFA after SAML login

7.0.1 (2023-3-27)

• FR-11247 - fix version branch 6.82

• FR-11065 - add passkeys mock ff

• FR-11189 - mfa authenticator app change input type

• FR-10821 - fix table color

• FR-11204 - add unit testing with jest

• FR-11139 - fix groups

• FR-11039 - fix groups dummy

• FR-11039 - ff groups

• FR-10530 - fix ff store name

• FR-11067 - error handling on profile image upload

• FR-11039 - extend users table with groups column

7.0.0 (2023-3-16)

Summary

In this release, we've introduced several breaking changes that might impact your existing code. Please review the changes outlined below and update your code accordingly to ensure compatibility with the new version.

Changes

• Folder Hierarchy: Separate files per runtime environment ( pages / edge / appDirectory)
  • @frontegg/nextjs/pages for pages architecture.
  • @frontegg/nextjs/app for appDirectory architecture.
  • @frontegg/nextjs/edge for edge runtime.
  • @frontegg/nextjs/middleware for api middleware.
• Tree-Shaking: Build package using babel.js with fully tree-shakable dist folder
• Logger: Add ability for print info logs for debugging.
• Improved Error handling: Improve api middleware error handing.
• Node.js 18 Support: Support the new Undici network handler.
• Next.js 13.2 Support: Next.js route handlers.
• Tests: Add e2e tests for the FronteggApiMiddleware.

Migrate from v6 to v7

• Migrate api middleware (tree-shakable, externalResolver, responseLimit).
• Edge middleware Migration (tree-shakable, stability)
• Pages architecture (tree-shakable, share logic code between architectures)
• AppDir architecture (tree-shakable, stability, support 13.2 routing)

Frontegg API middleware migration

If you are using FronteggProviderNoSSR you can skip this migration:

1. Rename imports to @frontegg/nextjs/middleware
2. export Next.JS config to mark as externalResolver and disable response limit.

API Middleware (before):

export { fronteggMiddleware as default } from '@frontegg/nextjs';

API Middleware (after):

import { FronteggApiMiddleware } from '@frontegg/nextjs/middleware';

export default FronteggApiMiddleware;
export const config = {
  api: {
    externalResolver: true,
    // https://nextjs.org/docs/messages/api-routes-response-size-limit
    responseLimit: false,
  },
};

Edge middleware migration

If you are using nextjs edge middleware, (Ex: middleware.ts):

1. Rename the imports to @frontegg/nextjs/edge.

2. Rename getSession to getSessionOnEdge.

3. Use redirectToLogin method instead of building login url.

   API Middleware (before):

   import { NextResponse } from 'next/server';
   import type { NextRequest } from 'next/server';
   import { getSession, shouldByPassMiddleware } from '@frontegg/nextjs/edge';
   
   export const middleware = async (request: NextRequest) => {
     const pathname = request.nextUrl.pathname;
   
     if (shouldByPassMiddleware(pathname /*, options: optional bypass configuration */)) {
       return NextResponse.next();
     }
   
     const session = await getSession(request);
     if (!session) {
       //  redirect unauthenticated user to /account/login page
       const loginUrl = `/account/login?redirectUrl=${encodeURIComponent(pathname)}`;
       return NextResponse.redirect(new URL(loginUrl, process.env['FRONTEGG_APP_URL']));
     }
   return NextResponse.next();
   };
   
   export const config = {
     matcher: '/(.*)',
   };

   API Middleware (after):

   import { NextResponse } from 'next/server';
   import type { NextRequest } from 'next/server';
   import { getSessionOnEdge, shouldByPassMiddleware, redirectToLogin } from '@frontegg/nextjs/edge';
   
   export const middleware = async (request: NextRequest) => {
     const pathname = request.nextUrl.pathname;
   
     if (shouldByPassMiddleware(pathname)) {
       return NextResponse.next();
     }
   
     const session = await getSessionOnEdge(request);
     if (!session) {
       return redirectToLogin(pathname);
     }
     return NextResponse.next();
   };
   
   export const config = {
     matcher: '/(.*)',
   };

Pages architecture migration

1. Rename imports from @frontegg/nextjs to @frontegg/nextjs/pages.

   Example (before):

   import { withFronteggApp } from '@frontegg/nextjs';

   Example (after):

   import { withFronteggApp } from '@frontegg/nextjs/pages';

2. Import and then export FronteggRouter in your pages/[...frontegg-router].tsx file:

   FronteggRouter (before):

   export {
     FronteggRouter as default,
     FronteggRouterProps as getServerSideProps,
   } from '@frontegg/nextjs';

   FronteggRouter (after):

   import { FronteggRouter, FronteggRouterProps } from '@frontegg/nextjs/pages';
   
   export const getServerSideProps = FronteggRouterProps;
   export default FronteggRouter;

3. import getServerSideProps helpers from @frontegg/nextjs/pages:

   Example Page (before):

   import { GetServerSideProps } from 'next';
   import { getSession, withSSRSession } from '@frontegg/nextjs';
   
   export default function ExamplePage({ ssrSession }) {
     return  <div> My Example Page </div>;
   }
   
   export const getServerSideProps: GetServerSideProps = async (context) => {
     const session = await getSession(context.req);
     if (session) {
       // logged user
       return { props: { } };
     }
     // unauthorized user
     return { props: { } };
   };

   Example Page (before):

   import { GetServerSideProps } from 'next';
   import { getSession, withSSRSession } from '@frontegg/nextjs/pages';
   
   export default function ExamplePage({ ssrSession }) {
     return  <div> My Example Page </div>;
   }
   
   export const getServerSideProps: GetServerSideProps = async (context) => {
     const session = await getSession(context.req);
     
     // ...
   };

App Directory architecture migration

1. Rename imports from @frontegg/nextjs/server to @frontegg/nextjs/app.

2. Move FronteggAppProvider to inside RootLayout's <body>:

   RootLayout file (before):

   import { FronteggAppProvider } from '@frontegg/nextjs/server';
   
   export default function RootLayout({ children }: { children: React.ReactNode }) {
       const authOptions = {
         // keepSessionAlive: true // Uncomment this in order to maintain the session alive
       }
       return (
         <FronteggAppProvider authOptions={authOptions} hostedLoginBox={true}>
           <html>
             <head></head>
             <body>
               {children}
             </body>
           </html>
         </FronteggAppProvider>
       );
   }

   RootLayout file (after):

   import { FronteggAppProvider } from '@frontegg/nextjs/app';
   
   export default function RootLayout({ children }: { children: React.ReactNode }) {
       const authOptions = {
         // keepSessionAlive: true // Uncomment this in order to maintain the session alive
       }
       return (
         <html>
           <head></head>
           <body>
               {/* @ts-expect-error Server Component for more details visit: https://github.com/vercel/next.js/issues/42292 */}
               <FronteggAppProvider authOptions={authOptions} hostedLoginBox={true}>
                   {children}
               </FronteggAppProvider>
           </body>
         </html>
       );
   }

3. Export FronteggAppRouter from @frontegg/nextjs/app, app/[...frontegg-router]/page.tsx file:

   FronteggAppRouter (before):

   export { FronteggAppRouter as default } from '@frontegg/nextjs/client';

   FronteggAppRouter (after):

   import { FronteggAppRouter } from '@frontegg/nextjs/app';
   
   export default FronteggAppRouter;

4. Rename getSession and getUserTokens to getAppUserSession and getAppUserTokens:

   ServerComponent Example (before):

   import { getSession, getUserTokens } from '@frontegg/nextjs/app';
   
   export const ServerSession = async () => {
     const userSession = await getSession();
     const tokens = await getUserTokens();
     return (
       <div>
         <div>user session server side: {JSON.stringify(userSession)}</div>;
         <div>user tokens server side: {JSON.stringify(tokens)}</div>
       </div>
     );
   };

   ServerComponent Example (after):

   import { getAppUserSession, getAppUserTokens } from '@frontegg/nextjs/app';
   
   export const ServerSession = async () => {
     const userSession = await getAppUserSession();
     const tokens = await getAppUserTokens();
     return (
       <div>
         <div>user session server side: {JSON.stringify(userSession)}</div>;
         <div>user tokens server side: {JSON.stringify(tokens)}</div>
       </div>
     );
   };

Further Information

If you encounter any issues or have questions, please report them on our Issues page.

6.7.20 (2023-3-16)

• Fixed use permission regex issue to accept a wild card
• User groups design fixes
• Fixed passkeys loading mode and login flow with MFA
• Update dependencies between passkeys and MFA on the privacy page
• Added support to reset Idle session timeout by post messages from the client iFrame
• Added an option to enforce redirect URLs to the same site only to avoid security issues
• Added support for customized social login providers

6.7.19 (2023-3-10)

• Fixed resend OTC with reCaptcha
• Added support to let tenants create a manage user groups in the admin portal under a FF
• Added support to login with passkeys and manage passkeys in the admin portal under a FF
• Fixed invite users issue when the vendor is not forcing roles and permissions
• Support auth strategy and social logins for login per tenants
• Refactored feature flag mechanism to be based on rest-api package
• Fixed validation for postcode in admin portal forms
• Fixed SMS code input to have input type number
• Improved auth screens form UX

6.7.18 (2023-2-21)

• Fixed Admin portal SSO provider's options to be correlated with the vendor choice
• Fixed background for table pivot column
• Fixed impersonation by removing unnecessary redirects and adding a refresh call
• Fixed style reorder bug when using @emotion/react and Frontegg Next.JS

6.7.17 (2023-2-8)

• Updated M2M tokens to reflect the vendor choice

6.7.16 (2023-2-7)

• Fixed go-to-sign-up message position in speedy login layout
• Added an input component to the library for adding members to a tenant
• Fix filtering SSO providers according to the vendor selection
• Added user groups card header component to the library
• Improved the admin portal and login box performance and bundle size

6.7.15 (2023-2-6)

NextJS Wrapper 6.7.15:

• FR-10557 - Fix logout bug, Fix errors in embedded
• FR-10557 - Improve NextJS navigation
• FR-10557 - update middleware example code, add option to check if should bypass middleware
• FR-10557 - Fix url for hosted login refresh token
• FR-10557 - Fix jose import JWK key
• FR-10557 - Fix social login embedded mode
• FR-10557 - Add playwright tests for FornteggMiddleware
• Bump http-cache-semantics from 4.1.0 to 4.1.1
• FR-10557 - Add playwright for testing + Fix cookie parsing

6.7.14 (2023-2-1)

NextJS Wrapper 6.7.14:

• FR-10557 - Create proxy single request handler instead of handler per request

6.7.13 (2023-1-31)

NextJS Wrapper 6.7.13:

• FR-10557 - Bypass session creation if bodyStr is empty

6.7.12 (2023-1-31)

• FR-10549 - fix error login with sms

• FR-10437 - select color

• FR-10518 - fix client id not show in model

• FR-10485 - Update restapi version

• FR-10017 - add email type to all email inputs

• FR-10501 - Fix mobile width of login box

• FR-10196 - Fix scroll in privacy page

• FR-10489 - update scim ui

• FR-10483 - Added the option to customize forget password button

• FR-10374 - improve values ui in split mode

• FR-10184 - add access tokens

• FR-9995 - Accept Invitation text and icon change

NextJS Wrapper 6.7.12:

• FR-10597 - Set default tenants state if not logged in
• FR-10584 - Set searchParam as optional in FronteggAppRouter
• FR-10557 - Improve FronteggMiddleware request handler

6.7.11 (2023-1-30)

• FR-10549 - fix error login with sms

• FR-10437 - select color

• FR-10518 - fix client id not show in model

• FR-10485 - Update restapi version

• FR-10017 - add email type to all email inputs

• FR-10501 - Fix mobile width of login box

• FR-10196 - Fix scroll in privacy page

• FR-10489 - update scim ui

• FR-10483 - Added the option to customize forget password button

• FR-10374 - improve values ui in split mode

• FR-10184 - add access tokens

• FR-9995 - Accept Invitation text and icon change

• FR-10261 - fix sign up position in dark theme

• FR-10369 - change mfa ff name

• FR-10330 - fixes for bulk

• FR-9816 - Fix branch selection

• FR-10112 - update admin box pipeline angular

• FR-10141 - update rest-api

• FR-9816 - fix version

NextJS Wrapper 6.7.11:

• FR-10584 - Set searchParam as optional in FronteggAppRouter
• FR-10557 - Improve FronteggMiddleware request handler
• update frontegg manually
• FR-10379 - disable refresh token by default for ssr
• FR-10141 - Added support for logout on hosted login
• FR-10342 - update readme for app directory
• Bump json5 from 1.0.1 to 1.0.2
• Update Frontegg AdminPortal to 6.58.0

6.7.10 (2023-1-16)

• Added support for built-in authenticators, security keys, and SMS as MFA methods
• Fixed sign up position in dark theme
• Added margin to login error
• Disabled silent refresh token for SSR
• Added support for logout on hosted login
• Fixed session without keepSessionAlive

6.7.9 (2022-12-20)

• Added support for next 13 - app directory and server components
• Added support for tree shaking
• Added support for getSession on edge run time
• Update iron-session to decrease bundle size

6.7.8 (2022-12-20)

• Fixed mfa input on mobile
• Enabled scim without roles
• Fixed menu component for dark theme
• Added api navigation icon
• Added tests for mfa
• Added apple social login types
• Added support for Hiding Invoices

6.7.7 (2022-12-13)

• Fixed MFA flow issues
• Added support for subscriptions billing collection
• Fixed the issue of the OTC screen submit button is disabled on mobile devices
• Added SCIM section in admin portal under FF

6.7.6 (2022-12-12)

v6.7.6

• Fixed ignoring urlPrefix issue • Added the ability to Invite a user by bulk API in the admin portal • Fixed OTC digits are not visible on mobile devices • Added MFA devices management section in the admin portal under FF • Fixed the ability to copy invite link for dynamic base URL as well • Added new abilities to MFA flows under FF • Added support for providing an external CDN to load fonts in Frontegg components • Update hide fields API according to new security tabs naming • Changed max length for secret fields to 100 characters • Added support for customizing invite user dialog fields • Fixed creating custom webhook on the Admin Portal is sent with the event ID and not with the event Key

NextJS Wrapper 6.7.6:

• Improved SSR support for withFronteggApp function

6.7.5 (2022-11-28)

v6.7.5

• Update hide fields API according to new security tabs naming
• Changed max length for secret fields to 100 characters
• Added support for customizing invite user dialog fields
• Added support for admin portal pre-defined theme options (dark, vivid, modern, and classic themes)
• Added support for customizing admin portal navigation hover color
• Fixed typo of Andorra country in countries dropdown
• Fixed select popup alignment issue
• Changed no local authentication feature to also hide the sign-up form when there is no local authentication option (use only social logins and SSO for signing up)
• Added mock for feature flags API for admin portal preview mode
• Fixed resend invitation and activate your account API calls
• Fixed creating custom webhook on the Admin Portal is sent with the event ID and not with the event Key
• Added support for customizing fields and tabs in the admin portal

NextJS Wrapper 6.7.5:

• Updated next readme to include hosted login box integration

6.7.4 (2022-11-15)

• Fixed redirect to the app after signing up without forced email verification
• Fixed admin portal dark theme
• Added the ability to customize fields and tabs in the admin portal
• Fixed cleaning up error messages on sign up page when re-visiting the page
• Fixed resizing the login box when the logo is null
• Fix the ReCaptcha timeout issue

6.7.3 (2022-11-11)

• FR-9186 - support ssr with session and refresh token

• FR-9614 - Add support for innerThemeProvider for admin portal pages and tabs

• FR-9186 - fix pipeline

AdminPortal 6.36.0:

AdminPortal 6.35.0:

AdminPortal 6.34.0:

NextJS Wrapper 6.7.3:

• FR-9544 - remove console logs
• FR-9544 - Add support for keep session a live
• FR-9187 - split cookie if exceeds length of 4096

6.7.2 (2022-10-26)

AdminPortal 6.34.0:

NextJS Wrapper 6.7.2:

• FR-9186 - Fix Changelog
• FR-9186 - Generate changelog for pre-release / releases based on AdminPortal and LoginBox changes