v0.1.0

Released: 2026-04-25 Tag: v0.1.0 Type: Initial stable release

What’s Included

This is the first stable release of common-fwk.

New Capabilities

• config — Typed, panic-free config model with constructors, validation, and email normalization.
• config/viper — File/env config loading adapter (Viper backend).
• security/jwt — JWT validation with issuer/audience/method policy and injected time source.
• security/keys — Static and RSA key resolver contracts.
• security/claims — Typed claims model with OIDC field mapping and private claims map.
• http/gin — Gin auth middleware with Bearer/cookie token extraction and 401 standardized errors.
• errors — Exported auth error code constants (CodeTokenMissing, CodeTokenInvalid).
• app — Instance-scoped bootstrap boundary (UseConfig, UseServer, UseServerSecurity, Run).

Migration Impact

Consumers should replace local pkg abstractions with common-fwk imports. See Migration Guide: auth-provider-ms for detailed steps.

Known Limitations

• No RS256 keypair mode (added in v0.4.0).
• No app read-only accessors (added in v0.5.0).
• No health/readiness presets (added in v0.6.0).
• No logger registry (added in v0.7.0).
• No provider-specific Google OAuth implementation.
• No app-global singleton model (by design).