Update dependency @auth/core to ^0.28.0

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
@auth/core (source)	^0.18.0 -> ^0.28.0

---

Release Notes

nextauthjs/next-auth (@​auth/core)

v0.28.0

Compare Source

Features

• customizable authorize() error (#​9871)

Bugfixes

• docs: webex provider jsdoc (#​10126) (5081a62)

Other

• docs: fix typo in types.ts (#​10053) (e9f387f)
• tests: reenable unit tests in CI and cleanup docker test setups (#​10190) (5136ca4)
• add new example app for nextjs and Docker (#​10118)
• high-level tests (#​10017)

v0.27.0

Compare Source

Features

• providers: add webex oauth (#​9653) (8be77d3)
• support Cloudflare Pages (#​9895)

Bugfixes

• providers: missing profile.id field in OIDC providers (#​10008) (744043b)
• bump @​simplewebauth/server@​9.0.2 (#​9980)
• put email helpers into own files to avoid nodemailer import (#​9964)

Other

• update playwright setup with poms (#​10012)
• fix E2E @playwright/test tests (#​9944)

v0.26.3

Compare Source

Bugfixes

• ts: correctly type Auth overload (8cbf38c)
• remove unnecessary /signout appending to signout form action URL (#​9901)
• mismatched account.providerAccountId (#​9932)

v0.26.2

Compare Source

Bugfixes

• fix .js imports
• use correct script src for @simplewebauthn/browser

v0.26.1

Compare Source

Bugfixes

• don't break on Edge runtime when WebAuthn isn't used (#​9919)

v0.26.0

Compare Source

Features

• Passkey / WebAuthn provider (experimental) (#​8808)

Other

• swap sass css-nesting for css standard nesting postcss plugin (#​9887)

v0.25.1

Compare Source

Bugfixes

• properly extend NodemailerConfig by EmailConfig (#​9890)

Other

• core: export isAuthAction (#​9896) (bb741d9)
• re-introduce E2E, add basic login/logout tests (#​9881)

v0.25.0

Compare Source

Features

• add getEnvDefaults and createActionURL to @auth/core for use in client libs (#​9817)

Bugfixes

• allow Facebook authorization config to be merged (#​9866)
• filter client error response, error on missing host (#​9837)
• allow string return signIn callback (#​9829)

v0.24.0

Compare Source

Features

• support secret rotation (#​9804)

Other

• add badge & tweak config
• add test coverage (#​9805)
• replace jest with vitest (#​9818)
• global vite/vitest, move express (#​9806)

v0.23.0

Compare Source

Features

• @​auth/core: add Ory Hydra provider (#​7755) (1483efb)
• @​auth/core: support new username system in Discord (#​8114) (96908df)
• @​auth/core: nodemailer (prev Email), Resend, SendGrid (#​9753) (8f0226b)
• @​auth/core: expose full session in session callback (#​9712) (ab49b3d)

Bugfixes

• @​auth/core: Add email to VK provider (#​9705) (5214131)
• @​auth/core: include new BattleNet OAuth endpoints (#​6697) (0ff0566)
• @​auth/core: drop confusing links/wording from core (b3c7a6c)
• @​auth/core: always use a generated id for User.id (#​9793) (80c8695)
• @​auth/core: show user and token in session callback (#​9756) (62f24f5)
• @​auth/core: use match instead of split when parsing action (#​9746) (fc358df)
• @​auth/core: correct typo in yandex documentation (#​9734) (b89a0a8)

Other

• ts: fix build (d85269d)
• fix build
• bump vite and clean lock file (#​9720)
• update JWT enc (#​9788)

v0.22.0

Compare Source

Features

• @​auth/core: add basePath option (#​9686) (963086b)

v0.21.0

Compare Source

Features

• @​auth/core: support self-hosted github (#​9271) (05bf014)

Bugfixes

• @​auth/core: bad intersection caused type to be 'never' (#​9477) (bdb4019)
• @​auth/core: add state as default check to Okta (#​9648) (e45492a)
• @​auth/core: Github provider tests (#​9619) (0ddb8cc)

v0.20.0

Compare Source

Features

• @​auth/core: add experimental flag in options (#​9178) (76d8f27)

v0.19.1

Compare Source

Bugfixes

• @​auth/core: typo in errors.ts (#​9523) (2693b74)
• @​auth/core: update kakao.md - clarify callbackUrl format (#​9502) (a14fe18)
• @​auth/core: 42 changed their way to return images (#​9472) (7e17781)
• @​auth/core: typo in well-known url in azure-ad (#​9288) (a7034c5)

Other

• core: add some tests for callback action (#​9353) (0c11823)
• bump Prettier to v3 (#​9464)

v0.19.0

Compare Source

Features

• @​auth/core: deep-merge cookies options (#​9386) (17c4426)
• @​auth/core: add default user id generation (#​9380) (87b037f)

Bugfixes

• @​auth/core: document all Adapter method (5254ff7)
• @​auth/core: correct default cookie name in getToken (#​9382) (362e6ce)

v0.18.6

Compare Source

Bugfixes

• @​auth/core: correct resource links (10f3762)

Other

• bump dependencies
• add utils package (#​9378)

v0.18.5

Compare Source

Bugfixes

• @​auth/core: correctly type CookiesOptions (#​9358) (677ddf8)
• @​auth/core: broken link (#​9318) (a1bd309)
• @​auth/core: Bad intersection caused type to be 'never' (#​9348) (faabc14)

Other

• test: core test setup (#​9238) (5c2b0b6)
• improve tests for session action (#​9336)

v0.18.4

Compare Source

Bugfixes

• @​auth/core: add partitioned cookie option (5d5220e)
• @​auth/core: better logging of errors (d93901c)
• @​auth/core: document all Auth.js errors (83dc317)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.