cbSecurity_onInvalidAuthorizationinterception point declaration. Previously, the typo would prevent ColdBox from allowing the correctly-typed interception point from ever triggering an interception listener.
userValidator()method has been changed to
roleValidator(), but the error message was forgotten! So the developer is told they need a
userValidator()method... because the
userValidatormethod is no longer supported. :/
isLoggedIn()method now makes sure that a jwt is in place and valid, before determining if you are logged in or not.
mysql8in preparation for latest updates
rulesdefault to empty array