v1.2.0-beta

💥 BREAKING CHANGES

• due to 16b501e - removed 'updatedAt' from incoming and outgoing payments responses from OP (PR #3429 by @oana-lolea):
  • This change removes updatedAt from incoming and outgoing payments in Open Payments and the backend Admin API GraphQL schema. This means you will need to remove updatedAt field from mutations and queries that resolve incoming and outgoing payments when making requests to the backend Admin API.
  • Grant request for outgoing payments limits (Open Payments API) can take in debitAmount XOR receiveAmount (instead of allowing both)

✨ New Features

• f5b325f - localenv: add histogram for outgoing payment completion time (PR #3438 by @njlie)
• 7d8079f - backend: return minSendAmount in quote responses (PR #3411 by @cozminu)
  • Now, we are returning objects in the resource server responses, instead of just text. In addition, for some quoting errors, we return a minSendAmount to specify the minimum amount the sender needs to add in the quote for it to succeed. For example, POST /quotes in Open Payments for an amount that cannot be satifsfied would return an error object like this:

{
  "error": {
    "code": "400",
    "description": "non-positive receive amount",
    "details": {
      "minSendAmount": {
        "value": "112",
        "assetCode": "USD",
        "assetScale": 2
      }
    }
  }
}

• 6bcf7c7 - add starlight-fullview-mode plugin (PR #3431 by @huijing)
• 9510f99 - bruno: add grant cancellation request (PR #3458 by @BlairCurrey)

🐛 Bug Fixes

• 33e54d5 - backend: update minSendAmount in local and ILP payments (PR #3480 by @mkurapov)

🔧 Chores

• a5077c5 - upgrade graphql (PR #3445 by @BlairCurrey)
• 16b501e - removed 'updatedAt' from incoming and outgoing payments responses from OP (PR #3429 by @oana-lolea)

🔧 Supported versions

• Supports Open Payments NodeJS clients >= 7.0.0
• TigerBeetle: Oldest upgradable replica version: 0.16.25

v1.1.2-beta

✨ New Features

• 8783194 - backend: improved redirect url for wallet address (PR #3425 by @cozminu)

🐛 Bug Fixes

• 6488c55 - backend: local payments - allow multiple outgoing payments pay into single incoming (PR #3428 by @mkurapov)

v1.1.1-beta

✨ New Features

• 4905027 - backend: rework fixed send fee calculation (PR #3376 by @cozminu)

🔧 Chores

• bc5bbae - bump dependencies to latest versions (PR #3387 by @huijing)

Supported versions

• TigerBeetle: Oldest upgradable replica version: 0.16.25
• Open Payments Node SDK: 6.x.x

v1.1.0-beta

✨ New Features

• 1cd0790 - backend: better errors during token introspection in RS (PR #3346 by @cozminu)
  • For Open Payments clients, we now differentiate between "Inactive Token" vs "Insufficient Grant" errors when making a request to the resource server. For the former, an Open Payments client will simply need to rotate the token, for the latter, a new grant must be requested with the correct permissions for the resource.
• 3d40648 - auth: use gnap error middleware on idp api (PR #3094 by @njlie)
  • Now, errors from the IDP server return properly formatted objects, similar to the errors thrown in the AS
• 5c7f1fa - auth: handle expired interactions gracefully during finish (PR #3340 by @njlie)
  • Improved IDP error handling: redirect back to the client when possible, providing better error descriptions in redirect URL, particularly during expired interactions
• ce17e0f - backend: redirect to webpage when querying payment pointer in browser (PR #3298 by @cozminu)
  • Now, integrators can set WALLET_ADDRESS_REDIRECT_HTML_PAGE env flag which will allow doing a 302 redirect to a webpage for a wallet address query, if the accept header of the incoming request istext/html(typically from a browser)
• 36107b1 - backend: unique keys per wallet address (PR #2863 by @sabineschaller, @oana-lolea)
• ee45d61 - docs: added basic site tracking using Umami (PR #3157 by @JoblersTune)
• 636a1ca - backend: check grant receiver to match quote receiver (PR #3248 by @cozminu)
• 308ed37 - backend: Check quote expiry in outgoing payment worker (#3141) (PR #3173 by @CollinsMunene)
• 286f146 - backend: bump tb from 0.15.4 to 0.16.29 (PR #3323 by @koekiebox)
• 7d197f3 - webhook: provide grant id in outgoing payment events (PR #3335 by @dragosp1011)
• ba7cac7 - backend: directly use resource server URL to generate URLs for OP (PR #3341 by @cozminu)
• f57695b - backend,mase: admin api healthcheck (PR #3199 by @BlairCurrey)
• cbd3a0c - backend: deadlocks (PR #3320 by @BlairCurrey)

🐛 Bug Fixes

• 0b4cac3 - backend: await signature verification (PR #3175 by @mkurapov)
  • Signature verification for backend API was fixed. If you have API_SECRET set in the environment variables for securing the backend Admin API, and you are not signing the GraphQL requests, you will being seeing a 401 Unauthorized error. Please start signing your Admin API requests, or remove API_SECRET environment variable until you are able to sign requests.
• 7f1a822 - mock-ase: process is undefined error in client (PR #3275 by @cozminu)
• a338e5d - backend: allow admin api to query all receivers and move checks (PR #3314 by @cozminu)

🔧 Chores

• 115a0e4 - performance: add signature header to fix 401 (PR #3237 by @BlairCurrey)
• 641d23b - performance create receiver 401 with multiple vus (PR #3300 by @BlairCurrey)
• 8944114 - deps: update dependency isbot to ^5.1.18 (PR #3081 by @renovate[bot])
• 4a4fbd0 - deps: update dependency axios to v1.7.9 (PR #3080 by @renovate[bot])
• 44cc122 - deps: update dependency class-variance-authority to ^0.7.1 (PR #3194 by @renovate[bot])
• d4070a6 - deps: update dependency mermaid to ^11.4.1 (PR #3188 by @renovate[bot])
• 643c46b - deps: update dependency objection to ^3.1.5 (PR #3189 by @renovate[bot])
• 3207094 - deps: update dependency koa to ^2.15.3 (PR #3186 by @renovate[bot])
• 05297a2 - deps: update dependency astro to v4.16.18 [security] (PR #3185 by @renovate[bot])
• 9ea13b0 - deps: update dependency yaml to ^2.7.0 (PR #3195 by @renovate[bot])
• 7c3f117 - deps: update graphql-tools monorepo (PR #3207 by @renovate[bot])
• 034740d - deps: update dependency isbot to ^5.1.21 (PR #3203 by @renovate[bot])
• 1274d49 - deps: update dependency koa to v2.15.4 [security] (PR #3297 by @renovate[bot])
• 7f6c28b - deps: update dependency @interledger/openapi to v2.0.2 (PR #3193 by @renovate[bot])
• ea10375 - deps: update dependency isbot to ^5.1.22 (PR #3287 by @renovate[bot])
• 5c370d6 - deps: update dependency starlight-links-validator to ^0.14.3 (PR #3288 by @renovate[bot])
• 076e8d3 - deps: update dependency isbot to ^5.1.23 (PR #3313 by @renovate[bot])
• f2ace04 - deps: update dependency dotenv to ^16.4.7 (PR #3155 by @renovate[bot])
• 07e8c7c - deps: update dependency tailwindcss to ^3.4.17 (PR #3089 by @renovate[bot])
• ade2318 - deps: update dependency nock to ^13.5.6 (PR #3181 by @renovate[bot])
• 0ffc609 - deps: update dependency nock to v14.0.0-beta.19 (PR #3184 by @renovate[bot])
• 1834683 - deps: update dependency postcss to ^8.4.49 (PR #3192 by @renovate[bot])
• d542ffd - deps: update dependency @tailwindcss/forms to ^0.5.10 (PR #3205 by @renovate[bot])
• 6a9ca67 - deps: update dependency eslint-plugin-jsx-a11y to ^6.10.2 (PR #3210 by @renovate[bot])
• b51b77e - deps: update dependency @types/lodash to ^4.17.14 (PR #3200 by @renovate[bot])
• 08cc777 - deps: update dependency node-mocks-http to ^1.16.2 (PR #3212 by @renovate[bot])
• f14a8c5 - deps: update dependency go to v1.23.5 (PR #3211 by @renovate[bot])
• 8fdb6e7 - deps: update dependency cross-fetch to ^4.1.0 (PR #3208 by @renovate[bot])
• 5296b95 - deps: update dependency npm-run-all2 to ^6.2.6 (PR #3216 by @renovate[bot])
• 79cca16 - deps: update dependency postcss to ^8.5.1 (PR #3217 by @renovate[bot])
• 836cff2 - deps: update dependency testcontainers to ^10.16.0 *(PR #3218 by @r...

v1.0.1-beta

🔧 Chores

• cc9ef41 - ci: create manifest list in release action (PR #3168 by @mkurapov)

Compatibility

• Open Payments client: 6.x.x
• TigerBeetle: 0.15.4

v1.0.0-beta

✨ New Features

• aa77aea - localenv: add performance metrics (PR #2999 by @BlairCurrey)
• eae95ad - backend: add local payment (PR #2857 by @BlairCurrey)
• 8c1390d - auth: return GNAP 404 error if token cannot be rotated (PR #3101 by @golobitch)
• 98e165a - backend: caching on asset and wallet address including other enhancements (PR #3041 by @koekiebox)
• 8c8a9b9 - backend: use cache when fetching outgoing payment in worker (PR #3142 by @mkurapov)

🐛 Bug Fixes

• 29dc6c6 - deps: update dependency mermaid to v10.9.3 [security] (PR #3059 by @renovate[bot])
• dbbcd9c - deps: update dependency astro to v4.16.1 [security] (PR #3060 by @renovate[bot])
• 1b24e27 - deps: update dependency axios to v1.7.4 [security] (PR #3061 by @renovate[bot])
• 8651fe5 - Admin UI error Auth redirect (PR #3047 by @DarianM)
• dcc0cf8 - deps: update dependency @headlessui/react to ^1.7.19 (PR #3079 by @renovate[bot])
• a02aafa - fixed error where no assets were found when opening create peer page (PR #3095 by @oana-lolea)
• e065312 - backend: update packet expiry error handling (PR #3135 by @sanducb)
• 5c21c94 - backend: inverted rate (PR #3165 by @BlairCurrey)

🔧 Chores

• a7417e6 - update renovate.json file (PR #3058 by @mkurapov)
• 509f9ca - deps: update dependency yaml to ^2.6.0 (PR #2947 by @renovate[bot])
• 60dc11a - deps: update dependency @interledger/open-payments to v6.13.2 (PR #3031 by @renovate[bot])
• a84ad3d - deps: update apollo graphql packages (PR #2924 by @renovate[bot])
• 179d859 - deps: update dependency @swc/jest to ^0.2.37 (PR #3063 by @renovate[bot])
• 42891b9 - deps: update dependency @tailwindcss/forms to ^0.5.9 (PR #3064 by @renovate[bot])
• c7af670 - deps: update dependency @types/lodash to ^4.17.13 (PR #3066 by @renovate[bot])
• d9d9878 - deps: update dependency eslint to ^8.57.1 (PR #3068 by @renovate[bot])
• fcba95e - deps: update dependency nock to v14.0.0-beta.15 (PR #3070 by @renovate[bot])
• fc856ba - deps: update dependency @types/jest to ^29.5.14 (PR #3065 by @renovate[bot])
• 2c479ee - deps: update dependency autoprefixer to ^10.4.20 (PR #3067 by @renovate[bot])
• 47669db - deps: update dependency nock to ^13.5.5 (PR #3069 by @renovate[bot])
• cd3d893 - deps: update dependency postcss to ^8.4.47 (PR #3072 by @renovate[bot])
• dc6fcf2 - token invalid throw 401 instead of return public incoming payment (PR #3062 by @DarianM)
• d30deeb - update frontend environment variables (PR #3030 by @oana-lolea)
• b912bff - Fix mock ASE seeding script (PR #3050 by @oana-lolea)
• 43d8498 - ci: use fallback registry for trivy db fetch (commit by @mkurapov)
• b3c7fa7 - fix vulnerabilities (PR #3087 by @mkurapov)
• 5ede3e0 - routine dependency bumps (PR #3099 by @JoblersTune)
• ad9ca7c - removed Glossary page's overview section (PR #3136 by @JoblersTune)
• 5de6208 - update accountingTransfer limit to 20 (PR #3115 by @oana-lolea)
• 497d160 - Added state and expiry date to accounting transfer (PR #3131 by @oana-lolea)
• 4e68d7f - deps: update pnpm to v8.15.9 (PR #3078 by @renovate[bot])
• d72fe7b - re-enable Prettier for docs (PR #3147 by @JoblersTune)
• 6ef0a06 - backend: fix incrementCounterWithTransactionAmount function (PR #3146 by @mkurapov)
• 61a4028 - add override for cross-spawn vulnerability (PR #3154 by @mkurapov)

Compatibility

• Open Payments clients: 6.x.x
• TigerBeetle: 0.15.4

v1.0.0-alpha.20

What's Changed

Breaking Changes

None

General Changes

• docs: rafiki admin auth optional by @brad-dow in #3016
• docs: add custom styles for wider tables by @huijing in #3007
• docs: update graphql descriptions backend by @brad-dow in #3013
• docs: adding information about wallet address URLs being case-insensitive by @brad-dow in #3019
• docs: added missing responses to id-provider requests by @oana-lolea in #3024
• feat(backend): make payment retry attempts configurable via env by @dead8309 in #3028
• docs: update graphql descriptions auth by @brad-dow in #3010
• docs: updating table styles by @brad-dow in #3038
• fix: add border to overflow tables by @huijing in #3040
• docs: added new backend environment variable by @brad-dow in #3039
• chore(auth): fix generated types by @mkurapov in #3045
• chore(backend): dont wait 30s when completing/expiring incoming payment by @mkurapov in #3043
  • Payments that complete when their incoming amount is reached will automatically complete and the incoming_payment.completed webhook will fire without needing to wait 30s

New Contributors

• @dead8309 made their first contribution in #3028

Full Changelog: v1.0.0-alpha.19...v1.0.0-alpha.20

Compatibility

• Open Payments clients: 6.x.x
• TigerBeetle: 0.15.4

v1.0.0-alpha.19

What's Changed

General Changes

• docs: fixes #2962 by @melissahenderson in #3000
• feat(docs): add header links by @BlairCurrey in #2882
• docs: remove unused pages by @brad-dow in #3006
• feat: Allow configurable cookie SameSite header by @lengyel-arpad85 in #3001
• refactor(backend): add NoopTelemetryServiceImpl to make tel optional by @BlairCurrey in #2991

Full Changelog: v1.0.0-alpha.18...v1.0.0-alpha.19

v1.0.0-alpha.18

What's Changed

Breaking Changes

• fix(backend): make the rafiki wallet url case insensitive by @s100tist in #2833
  Wallet address creation via createWalletAddress mutation (as well as the getting of the wallet address through Admin API & Open Payments) now treats the URL as case insensitive, e.g. you cannot create https://rafiki.money/AccOunt and https://rafiki.money/account as separate wallet addresses. Please handle this appropriately, if you have multiple wallet addresses with the same underlying URL, merge them/delete them as necessary in your system.

General Changes

• feat(workflow): add to docs project if issue is labelled with docs by @mkurapov in #2913
• chore(workflow): fix add to project action version by @mkurapov in #2914
• feat(backend): update Incoming Payment mutation by @dianaOneOut36 in #2923
• chore: documentation workflow updates by @mkurapov in #2956
• docs: structure and content update by @JoblersTune in #2875
• fix(frontend): concatenate correctly base url and path when creating a wallet address by @oana-lolea in #2960
• chore: bump seed timeout by @BlairCurrey in #2911
• docs: fixes #2964 and #2946 by @melissahenderson in #2977
• docs: added spec for 'incomingPaymentCreated' and schema for 'amount' in webhooks.yaml by @oana-lolea in #2978
• chore: disable prettier in docs package for markdown table readability by @JoblersTune in #2996

New Contributors

• @oana-lolea made their first contribution in #2960
• @s100tist made their first contribution in #2833

Full Changelog: v1.0.0-alpha.17...v1.0.0-alpha.18

v1.0.0-alpha.17

What's Changed

Hotfix

• fix: always pass in identifier into token introspection by @mkurapov in #2907

General Changes

• feat(backend): add trace to outgoing payment lifecycle by @njlie in #2884

Full Changelog: v1.0.0-alpha.16...v1.0.0-alpha.17