Hoppscotch v2024.3.0: Access Control, Variable Scopes and more..

Hoppscotch simplifies testing your APIs with our user-friendly API testing client, helping you deliver software more rapidly. Give Hoppscotch Cloud Web a try — no login needed.

The Hoppscotch team has been working tirelessly for the past two months! Our first major release of the year, Hoppscotch v2024.3.0, is designed to provide you with improved and advanced features for testing your APIs and managing your team.

OAuth 2.0 - Grant Types 🔐

OAuth 2.0 is an industry-standard authorization protocol. It allows third-party applications to gain limited access to a web service on behalf of a user, without exposing the user's credentials.

In OAuth 2.0, grant types are methods that a client application can use to obtain an access token. With the introduction of Grant Types in Hoppscotch, you can now set the grant type as any of the following options:

1. Authorization Code
2. Authorization Code using PKCE
3. Client Credentials
4. Password Credentials
5. Implicit

Variables 💫

In this release, we've reconsidered our approach to variables in Hoppscotch and are introducing variable scopes.

Variable Scopes

Hoppscotch provides different variable scopes, allowing you to use various scopes for different contexts.

1. Global Variables: These can be accessed throughout Hoppscotch and have the broadest scope of all variables.
2. Environment Variables: These allow your variables to be scoped to a specific environment. Environment variables are useful when you have the same set of variables for two environments, such as production and staging.
3. Request Variables: These are scoped to an individual request. Request variables are useful when you want to use variables in your URL path or when you want to embed a URL variable.

Secret Variables

We've also introduced secret variables in our point release last month. A secret variable allows users to specify secrets and reference the values as variables. The values of secret variables in any workspace will never be synced to the server or shared with any workspace members. Read more here.

Search Your Collections Using Spotlight 🔎

Now you can search your team and personal collection using Spotlight! Just use command + K.

Access Controls & New Login Providers on Self-Hosted Enterprise 🏦

Hoppscotch enterprise gets some extra attention! You can now set up access controls on Hoppscotch enterprise.

1. Site protection: This allows only logged-in users to use Hoppscotch.
2. Domain whitelisting: This makes it easy to approve all users within your organization to access Hoppscotch.

We're also adding a few new providers to give you more options:

1. OIDC-based single sign-on: This allows you to configure any OIDC provider you want with Hoppscotch.
2. GitHub Enterprise auth: This enables you to use GitHub Enterprise OAuth for your organization.

We need you help to constantly improve Hoppscotch so that we can make it easier for you to build better software! Write to us at hello@hoppscotch.io or head over to our GitHub repository if you have any feedback about Hoppscotch 💚!