v0.33.0

Changelog

Features

• d90e42a: feat(admin): show full name beside username in client authorizations (#197) (@appleboy)
• 37a410c: feat(templates): display username with full name across admin views (#232) (@appleboy)
• 6d772b7: feat(audit): record and display actor full name in audit logs (#233) (@appleboy)

Bug fixes

• 710499e: fix(swagger): let Swagger UI follow the request origin (#199) (@appleboy)
• 90ea97e: fix(oauth): make device code and refresh token single-use (#203) (@appleboy)
• c9880ed: fix(oauth): re-check user identity on code redemption (#204) (@appleboy)

Refactor

• c50c520: refactor: simplify code across packages for clarity (#196) (@appleboy)
• aa5c455: refactor: simplify handlers and user service (#200) (@appleboy)

Documentation updates

• 2e9516b: docs(oauth): surface and document GitLab login support (#195) (@appleboy)

Others

• 1cda90f: style(admin): widen client authorizations content area (@appleboy)
• ad2ae26: feat(oauth)!: default STRICT_REDIRECT_URIS to true (#198) (@appleboy)
• 5690f9d: fix(oauth)!: prevent device scope escalation and MS account takeover (#201) (@appleboy)
• 1fc6059: fix(oauth)!: authenticate and authorize clients on refresh grant (#202) (@appleboy)