chore(deps): update svhd/logto docker tag to v1.20.0

[renovate]

This PR contains the following updates:

Package	Update	Change
svhd/logto	minor	1.19.0 -> 1.20.0

---

Release Notes

logto-io/logto (svhd/logto)

v1.20.0

Compare Source

Arabic translation and RTL support

• #​6422 Added new Arabic language translation to both Console and Experience UI (credit @​zaaakher).
• Improved UI layout and details to better support RTL languages.

Personal access token (PAT)

Personal access tokens (PATs) provide a secure way for users to grant access tokens without using their credentials and interactive sign-in.

You can create a PAT by going to the user's detail page in Console or using the Management API POST /users/:userId/personal-access-tokens.

Refer to documentation for more details.

Support additional first-screen options

In addition to sign-in and register, we now enabled more options that allowing developers to customize the initial screen presented to users. These new first-screen options are:

• identifier:sign_in: Only display specific identifier-based sign-in methods to users.
• identifier:register: Only display specific identifier-based registration methods to users.
• reset_password: Allow users to directly access the password reset page.
• single_sign_on: Allow users to directly access the single sign-on (SSO) page.

Refer to documentation for more details.

New connectors

• #​6227 Added Kook connector (credit @​Misaka-L).
• #​6514 Added Patreon connector (credit @​devtekve).
• #​6529 Added GitLab connector (credit @​devtekve).

Improvements

• #​6400 Supported login_hint as additional sign-in parameter.
• #​6445 Implemented well-known swagger endpoints.
• #​6451 Splitted translate command from @logto/cli to make the CLI small and simple.
• #​6451 Added a dedicated @logto/translate package to translate i18n phrases in Console and Experience.
• #​6523 Supported entering name while creating a user in Console.
• #​6525 Added new query parameter parse_error and explicitly set it to false to return raw OIDC error message only.
• #​6532 Added denyAccess() api to custom JWT context in order to conditionally block user token request.
• #​6534 Supported nested attribute profile mapping in OAuth connector (credit @​devtekve).
• #​6543 Added hasPassword property to /users Management API response.
• #​6544 Added user password information in user details. Admin can easily check if a user has set password or not, and can then perform set/reset action accordingly.
• #​6567 Added new management API to check password against current password policy settings.

Fixes

• #​6425 Prevented potential error caused by cached identifiers across Experience pages.
• #​6441 Fixed the issue that blocked users from creating Custom JWT.
• #​6481 Fixed wecom connector platform. Use Universal instead of null.
• #​6536 Set lang attribute correctly to <html> in Console, preventing unexpected browser translator prompt.
• #​6560 Allowed linking new social identity to an existing user account when registration is disabled.
• #​6576 Prevented user registration and profile fulfillment with SSO-only email domains.

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.