supertokens
diff --git a/‎CHANGELOG.md‎
Lines changed: 10 additions & 4 deletions b/‎CHANGELOG.md‎
Lines changed: 10 additions & 4 deletions
diff --git a/‎add-ts-no-check.js‎
Lines changed: 1 addition & 0 deletions b/‎add-ts-no-check.js‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎lib/build/recipe/multitenancy/allowedDomainsClaim.js‎
Lines changed: 1 addition & 1 deletion b/‎lib/build/recipe/multitenancy/allowedDomainsClaim.js‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎lib/build/recipe/oauth2provider/constants.js‎
Lines changed: 1 addition & 10 deletions b/‎lib/build/recipe/oauth2provider/constants.js‎
Lines changed: 1 addition & 10 deletions
diff --git a/‎lib/build/recipe/session/constants.js‎
Lines changed: 1 addition & 15 deletions b/‎lib/build/recipe/session/constants.js‎
Lines changed: 1 addition & 15 deletions
diff --git a/‎lib/build/recipe/userroles/permissionClaim.js‎
Lines changed: 0 additions & 1 deletion b/‎lib/build/recipe/userroles/permissionClaim.js‎
Lines changed: 0 additions & 1 deletion
diff --git a/‎lib/build/recipe/userroles/userRoleClaim.js‎
Lines changed: 0 additions & 1 deletion b/‎lib/build/recipe/userroles/userRoleClaim.js‎
Lines changed: 0 additions & 1 deletion
diff --git a/‎lib/ts/core/versions/5.3/schema.d.ts‎
Lines changed: 0 additions & 7 deletions b/‎lib/ts/core/versions/5.3/schema.d.ts‎
Lines changed: 0 additions & 7 deletions
diff --git a/‎lib/ts/recipe/multitenancy/allowedDomainsClaim.ts‎
Lines changed: 1 addition & 1 deletion b/‎lib/ts/recipe/multitenancy/allowedDomainsClaim.ts‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎lib/ts/recipe/userroles/permissionClaim.ts‎
Lines changed: 0 additions & 1 deletion b/‎lib/ts/recipe/userroles/permissionClaim.ts‎
Lines changed: 0 additions & 1 deletion
@@ -9,13 +9,19 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 -   Added register credential endpoint for the WebAuthn recipe
 
-## [23.0.0] - 2025-06-27
+## [23.0.0] - 2025-07-21
+
+### Breaking changes
 
 -   The `getConsentRequest`, `acceptConsentRequest`, `rejectConsentRequest`, `acceptLoginRequest`, `rejectLoginRequest` and `introspectToken` can now possibly return an `ErrorOAuth2`.
 -   The `/oauth/introspect` can now possibly return an `ErrorAuth2`.
--   The `User` class now has a `fromApi` function to normalize the user object returned from the API.
+-   Removed default defaultMaxAge from all built-in claims/validators. You can optionally set them when adding the validators. This should help with unexpected API calls during session verification.
+
+### Refactors
+
 -   Refactors querier to use dynamic request body and response body types inference.
 -   Refactor internal network calls made with querier to use the new dynamic types.
+-   The `User` class now has a `fromApi` function to normalize the user object returned from the API.
 -   Added experimental support for plugins. Please note that the experimental nature of this feature means that we might break the interface in non-major version updates.
 
 ## [22.1.1] - 2025-06-20
@@ -972,7 +978,7 @@ Session.init({
                             input.userId,
                             input.recipeUserId,
                             input.tenantId,
-                            input.userContext,
+                            input.userContext
                         )),
                     };
 
@@ -1000,7 +1006,7 @@ Session.init({
                             input.recipeUserId,
                             input.tenantId,
                             input.accessTokenPayload,
-                            input.userContext,
+                            input.userContext
                         )),
                     };
 
 
@@ -12,6 +12,7 @@ glob(__dirname + "/lib/**/*.d.ts", (err, files) => {
                 newContents += `\n${line}`;
             }
         }
+        newContents = newContents.replaceAll("\n// @ts-nocheck", "");
         writeFileSync(file, newContents);
     }
 });
@@ -1,11 +1,4 @@
 // @ts-nocheck
-// @ts-nocheck
-// @ts-nocheck
-// @ts-nocheck
-// @ts-nocheck
-// @ts-nocheck
-// @ts-nocheck
-// @ts-nocheck
 /**
  * This file was auto-generated by openapi-typescript.
  * Do not make direct changes to the file.
 
@@ -16,7 +16,7 @@ export class AllowedDomainsClaimClass extends PrimitiveArrayClaim<string> {
                 }
                 return await recipe.getAllowedDomainsForTenantId(tenantId, userContext);
             },
-            defaultMaxAgeInSeconds: 3600,
+            defaultMaxAgeInSeconds: undefined,
         });
     }
 }
 
@@ -34,7 +34,6 @@ export class PermissionClaimClass extends PrimitiveArrayClaim<string> {
 
                 return Array.from(userPermissions);
             },
-            defaultMaxAgeInSeconds: 300,
         });
     }
 }
Original file line number	Diff line number	Diff line change
`@@ -12,6 +12,7 @@ glob(__dirname + "/lib/*/.d.ts", (err, files) => {`
`12`	`12`	newContents += `\n${line}`;
`13`	`13`	`}`
`14`	`14`	`}`
	`15`	`+ newContents = newContents.replaceAll("\n// @ts-nocheck", "");`
`15`	`16`	`writeFileSync(file, newContents);`
`16`	`17`	`}`
`17`	`18`	`});`
Original file line number	Diff line number	Diff line change
`@@ -16,7 +16,7 @@ export class AllowedDomainsClaimClass extends PrimitiveArrayClaim<string> {`
`16`	`16`	`}`
`17`	`17`	`return await recipe.getAllowedDomainsForTenantId(tenantId, userContext);`
`18`	`18`	`},`
`19`		`- defaultMaxAgeInSeconds: 3600,`
	`19`	`+ defaultMaxAgeInSeconds: undefined,`
`20`	`20`	`});`
`21`	`21`	`}`
`22`	`22`	`}`
Original file line number	Diff line number	Diff line change
`@@ -34,7 +34,6 @@ export class PermissionClaimClass extends PrimitiveArrayClaim<string> {`
`34`	`34`
`35`	`35`	`return Array.from(userPermissions);`
`36`	`36`	`},`
`37`		`- defaultMaxAgeInSeconds: 300,`
`38`	`37`	`});`
`39`	`38`	`}`
`40`	`39`	`}`