* feat: add auth prompt config option
* feat: add pkce oauth flow
When the oauth flow is initialized with a `code_verifier` the state cookie is optional and on hanko_token exchange the client must also send the `code_verifier` in addition to the `hanko_token`.
* fix: fix runtime errors & tests
* add sign in with facebook
* feat: add facebook provider to factory function
* feat: add facebook config defaults
* feat: use newest facebook api version
* feat: make facebook provider consistent with other providers
* feat: add check for email
We cannot assume a user always has a valid email.
Even though it is not the used "me" endpoint, see:
https://developers.facebook.com/docs/graph-api/reference/user/
* docs: elaborate comment
* fix: fix third party tests
* feat: add facebook icon
* feat: add appsecret_proof to requests w. access token
* refactor: build userinfo url programmatically
* feat: map all available name claims
---------
Co-authored-by: Prathamesh <psvagare@gmail.com>
This pull request introduces the new Flowpilot system along with several new features and various improvements. The key enhancements include configurable authorization, registration, and profile flows, as well as the ability to enable and disable user identifiers (e.g., email addresses and usernames) and login methods.
---------
Co-authored-by: Frederic Jahn <frederic.jahn@hanko.io>
Co-authored-by: Lennart Fleischmann <lennart.fleischmann@hanko.io>
Co-authored-by: lfleischmann <67686424+lfleischmann@users.noreply.github.com>
Co-authored-by: merlindru <hello@merlindru.com>
Introduce a per provider configuration option that allows users to
define whether automatic linking of accounts on sign-up/sign-in is enabled
or disabled.
