Flexible authentication solution for Rails with Warden
Critical or Security advisories for 4.2.1
This version doesn't have any advisory. Want to report one?
Changelog for 4.2.1
Devise::Mailer#resourceare now protected methods instead of public.
- bug fixes
- Attempt to reset password without the password field in the request now results in a
:blankvalidation error. Before this change, Devise would accept the reset password request and log the user in, without validating/changing the password. (by @victor-am)
- Confirmation links now expire based on UTC time, working properly when using different timezones. (by @jjuliano)
- Notify the original email when it is changed with a new
Devise.send_email_changed_notificationsetting. When using
reconfirmable, the notification will be sent right away instead of when the unconfirmed email is confirmed. (original change by @ethirajsrinivasan)
Dependencies for 4.2.1
|< 5.1, >= 4.1.0||
My projects using devise
|You should be logged in to see which of your projects use devise.|