1f6d309833
Add CIMD (Client ID Metadata Document) support (Phases 1-4)
Implement draft-ietf-oauth-client-id-metadata-document-00 support,
allowing OAuth clients to use an HTTPS URL as their client_id with
the server fetching a JSON metadata document from that URL.
- Add EnableClientIdMetadataDocumentSupport option and related config
- Create OpenIddict.Server.SystemNetHttp project for HTTP outbound
metadata document fetching (following Client.SystemNetHttp patterns)
- Modify handler pipeline: ValidateClientId sets CIMD flag when
FindByClientIdAsync returns null and client_id is a valid HTTPS URL
- Add CIMD bypasses to authentication, sign-in, and token generation
handlers that look up pre-registered applications
- Validate redirect_uri against fetched metadata document
- Advertise client_id_metadata_document_supported in discovery
- Update sandbox demonstrator with CIMD support and test endpoint
4 months ago
b0709b3528
Replace Polyfill by Meziantou.Polyfill and bring back internal OperatingSystem polyfills
5 months ago
721fba7e6b
Use the new SHA256/SHA384/SHA512.HashData() polyfills
5 months ago
e8c7f5a222
Use the polyfilled generic Enum.IsDefined() on .NET Framework and manually replace missed ArgumentNullException.ThrowIfNull() guards
5 months ago
9797f86194
Replace PolySharp by the Polyfill source package and adopt ArgumentNullException.ThrowIfNull()/ArgumentException.ThrowIfNullOrEmpty()
5 months ago
739b7b7b04
Update OpenIddict*Manager.UpdateAsync() to remove the cached entry before updating the entity
7 months ago
a0f39b4b5c
Polyfill ValueTask.CompletedTask and ValueTask<TResult>.CompletedTask
7 months ago
13f352af6d
Bump the .NET SDK to 10.0.100-rc.2.25502.107 and add .NET 10 TFMs
7 months ago
2445813f8c
Add Figma to the list of supported providers
7 months ago
bc61b9927b
Bump the .NET SDK and dependencies
9 months ago
f5d6a18764
Add new AddGrantTypePermissions()/RemoveGrantTypePermissions() APIs in OpenIddictApplicationDescriptor
9 months ago
9385b24ff8
Add HeyBoxChat to the list of supported providers
9 months ago
0cb4713bbd
Bump Katana to 4.2.3 and use the new IAppBuilder.GetDefaultCookieManager() extension
10 months ago
f3464a2253
Update the GitHub web provider to support Proof Key for Code Exchange
11 months ago
4153387a76
Add NetSuite to the list of supported providers
11 months ago
d67512adb1
Normalize the issuer assigned to the Contentful provider
11 months ago
fc8a73821b
Optimize the token revocation process in the Entity Framework 6.x/Entity Framework Core stores
11 months ago
7267fa03b6
Introduce new methods in OpenIddictApplicationDescriptor to make working with permissions and settings easier
11 months ago
dc04b1706c
Fix the OpenIddict server Data Protection integration to use a correct token type hints lookup
11 months ago
e3b32065ea
Update the ID0479 message to use the correct letter case for the Stripe account types
12 months ago
a72febd75c
Generate access types and durations constants for the Aliba, Google, Huawei, MusicBrainz, Reddit and Zoho providers
12 months ago
ea09c7f2fb
Update the console sandbox to use the Google integration
12 months ago
3bf631bafc
Bump the .NET SDK and packages
12 months ago
714bbe5a54
Add Bungie.net to the list of supported providers
12 months ago
3a7d09ecff
Update the Apple integration to force using the generic "JWT" type for client assertions
12 months ago
55cd0e94a8
Update all the token type validation delegates to assume that tokens that don't have a "typ" header are generic JSON Web Tokens
12 months ago
91a68c161a
Implement client authentication support for the PAR endpoint
12 months ago
d95b32221c
Stop using the token endpoint URI as the client assertion audience and use the new "client-authentication+jwt" JSON Web Token type
12 months ago
78ba0a3dec
Implement built-in audiences and resources indicators validation
12 months ago
8c94cb7c13
Implement OAuth 2.0 Token Exchange support
12 months ago
c887672c4a
Support using Process.Start() on macOS and reintroduce the runtime checks preventing the portable version of OpenIddict.Client.SystemIntegration from being used on Android, iOS and Mac Catalyst
1 year ago
b33dad15f3
Implement new audience and presenter validation logic as part of the ValidateToken event
1 year ago
36424f84b3
Improve the WWW-Authenticate parsing logic
1 year ago
efdf8ce19b
Move the token binding methods constants to a private nested class exposing URI-style values
1 year ago
20abfe0b2c
Update the OWIN client host to resolve the default cookie manager from the application builder when available
1 year ago
ec7612dd9c
Fix invalid resource identifiers
1 year ago
996ffeec37
Remove the runtime checks that prevent the generic version of OpenIddict.Client.SystemIntegration from being used on Android/iOS/macOS/Mac Catalyst
1 year ago
0048dc4b73
Change the maximum length of the OpenIddictEntityFrameworkToken/OpenIddictEntityFrameworkCoreToken.Type column from 50 to 150
1 year ago
07553cd4f2
Update the Discord provider to use /users/@me instead of /oauth2/@me
1 year ago
99e4ca1404
Update the provider generator to support generating string constants
1 year ago
84a9142de4
Update the Zoho provider to support the new United Kingdom region
1 year ago
0c58cba515
Add Genesys to the list of supported providers
1 year ago
b90d888f84
Update the Alibaba/Battle.net/Cognito/Lark/Zoho providers to throw an exception when an invalid/unsupported region is specified
1 year ago
bcfe2f05d3
Update OpenIddictParameter to return empty immutable arrays instead of uninitialized instances
1 year ago
9638ae410c
Special-case JsonValue instances that wrap a JsonElement object
1 year ago
ff57da7ec0
Add AddClaim(s)/SetClaim(s) extensions accepting JsonNode instances
1 year ago
94a2d642d6
Add Contentful to the list of supported providers
1 year ago
f8553a9ee7
Update the MapNonStandardResponseParameters userinfo handler to avoid using OpenIddictParameter.GetNamedParameters()
1 year ago
2fc7908f93
Attach event identifiers to all the log messages
1 year ago
27f612d195
Fix the OpenIddictClientModels records to only use init setters
1 year ago
Thor Arne Johansen
Kévin Chalet
Ge
Antony Petras
Maciej Jakubiak
Mike Alhayek
Jerrie Pelser