3.1.0 / 2019-04-09

Include a TypeScript definition file
deps: [email protected]
- Use crypto.timingSafeEqual when available
deps: [email protected]
- perf: remove only trailing =

3.0.6 / 2017-03-14

Remove base64-url dependency

3.0.5 / 2017-03-07

deps: [email protected]
- Remove base64-url dependency

3.0.4 / 2016-11-13

deps: [email protected]
deps: [email protected]
- deps: [email protected]

3.0.3 / 2016-05-26

deps: [email protected]

3.0.2 / 2016-05-22

Use tsscmp module for timing-safe token verification
deps: [email protected]
deps: [email protected]
- deps: [email protected]

3.0.1 / 2016-01-28

deps: [email protected]
deps: [email protected]
- Use random-bytes for byte source

3.0.0 / 2015-05-09

Remove tokenize export
Remove tokenize option
Return a prototype-based object rather than functions
- This means the resulting functions need to be called as methods
Throw when missing secret to tokens.create()
deps: uid-safe@~2.0.0
- Use global Promise when returning a promise

2.0.7 / 2015-05-03

Fix compatibility with crypto.DEFAULT_ENCODING global changes

2.0.6 / 2015-02-13

deps: [email protected]
deps: uid-safe@~1.1.0
- Use crypto.randomBytes, if available
- deps: [email protected]

2.0.5 / 2015-01-31

deps: [email protected]
deps: uid-safe@~1.0.3
- Fix error branch that would throw
- deps: [email protected]

2.0.4 / 2015-01-08

deps: uid-safe@~1.0.2
- Remove dependency on mz

2.0.3 / 2014-12-30

Slight speed improvement for verify
deps: [email protected]
deps: rndm@~1.1.0

2.0.2 / 2014-11-09

deps: [email protected]

2.0.1 / 2014-08-22

Rename module to csrf

2.0.0 / 2014-06-18

Use uid-safe module
Use base64-url module
Remove sync .secret() -- use .secretSync() instead

1.0.4 / 2014-06-11

Make sure CSRF tokens are URL safe