Changelog
This page tracks customer-visible changes to the Podium GraphQL API and developer portal. Internal package changelogs and repository release notes are kept in the Podium knowledge base, not in the public developer docs.
M5 Developer API Preview
Section titled “M5 Developer API Preview”Released: April 2026
- Self-serve organisation setup in the developer portal.
- API-key generation, reveal-once handling, revocation, and rotation from the organisation admin view.
- Standard, Editorial, and Internal API key tiers with schema filtering per caller tier.
- Public developer docs under
/docs/, including authentication guidance, copyable examples, and a live query runner. - Browser-tab key handoff from the portal reveal dialog to the authenticated app playground. The key is scoped to tab
sessionStorageand is not put in the URL.
Changed
Section titled “Changed”- API calls now require either a valid
x-api-keyor an authenticated Better Auth session. Anonymous GraphQL requests fail withUNAUTHENTICATED. - Podium SSO is handled server-side through Better Auth and Cognito OIDC. Browser-facing Cognito configuration is no longer required in the portal UI.
- The standalone docs playground now redirects to the authenticated app playground so there is one primary live query surface.
Known Limits
Section titled “Known Limits”- External customer organisations start on the Standard Card tier by default. Higher tiers require Podium approval.
- The docs live-query runner stores pasted keys in browser
sessionStorage, scoped to the current tab session. - If a browser blocks the docs tab during local development, copy the key manually and paste it into the docs key console.
Breaking changes to the public GraphQL schema will be documented here with migration guidance before production rollout.