v3.9.0 (retail-react-app@6.0.0 and commerce-sdk-react@3.2.0)

New Features

• Passwordless Login
• Social Logins
• Password Reset
• Do Not Track
• Node 22 support for v3 projects
• Stores can be selected via store locator
• Redirects with http status other than 302
• Cookies are now allowed on SLAS calls
• Sessions on other browsers are cleared on password change

@salesforce/commerce-sdk-react@3.2.0

• Allow cookies for ShopperLogin API #2190
• Fix refresh token TTL warning from firing when override is not provided #2114
• Readme updates for private clients #2212
• Update CacheUpdateMatrix for mergeBasket mutation #2138
• Clear auth state if session has been invalidated by a password change #2092
• DNT interface improvement #2203
• Support Node 22 #2218
• Add authorizeIDP, loginIDPUser, authorizePasswordless, getPasswordLessAccessToken, getPasswordResetToken, and resetPassword wrapper functions to support Social Login, Passwordless Login, and Password Reset #2079

@salesforce/pwa-kit-create-app@3.9.0

• Update default.js and ssr.js template to support new passwordless, social, and reset password flows. #2263
• Support Node 22 #2218
• Update default.js template to include new login configurations #2079
• Handle import error when ssr.js imports from template retail react app #2270

@salesforce/pwa-kit-dev@3.9.0

• Support Node 22 #2218
• Set minimum target node version #2241

@salesforce/pwa-kit-react-sdk@3.9.0

• Fix the performance logging util to not round duration. #2199
• Add RedirectWithStatus component, allowing finer grained control of rediriects and their status code #2173
• Support Node 22 #2218

@salesforce/pwa-kit-runtime@3.9.0

• Fix stale service worker file that could cause requests to still use old Content-Security-Policy #2191
• Support Node 22 #2218
• Support Social Login, Passwordless Login, and Password Reset: update the default value for applySLASPrivateClientToEndpoints option #2250]

@salesforce/retail-react-app@6.0.0

• DNT Consent Banner: #2203]
• Support Node 22 #2218
• Implemented opt-in Social & Passwordless Login features and fixed the Reset Password flow which now leverages SLAS APIs #2079
• Allow store to be selectable in StoreLocator #2187
• Replace transfer basket call with merge basket on checkout #2138

Bug Fixes

• [BUG] Fixed GET /shopper-context API calls being made without the usid #2206
• Update test data references to 2024, and unify to 01/2040 #2196
• Fixed failing checkout tests #2195
• [BUG] Fixed "getCheckboxProps is not a function" when rendering checkout page in generated app. #2140
• [BUG] Fix images being fetced multiple times on Safari #2223

Accessibility Improvements

• [a11y] Fix LinkList component to follow a11y practise #2098