Kévin Chalet
|
0a8b416311
|
Remove the .NET Core 2.1 TFMs
|
4 years ago |
|
Kévin Chalet
|
23fd89e9eb
|
Add .NET 6.0 TFMs and bump the .NET SDK/packages to 6.0
|
5 years ago |
|
Kévin Chalet
|
deee5e5b92
|
Update the code base to use implicit global usings
|
5 years ago |
|
Kévin Chalet
|
148a987a23
|
Update the code base to use file-scoped namespaces
|
5 years ago |
|
Kévin Chalet
|
cda55862bc
|
Update HandleLogoutRequestContext to allow attaching custom sign-out parameters
|
5 years ago |
|
Kévin Chalet
|
e0c748f046
|
Introduce a simpler way to return additional parameters from the Handle*Request events that trigger a sign-in response
|
5 years ago |
|
Kévin Chalet
|
87c99d6bc7
|
Validate the expiration date of a token before validating its database entry
|
5 years ago |
|
Kévin Chalet
|
81273ec362
|
Decouple the token validation/generation event handlers from the request processing logic
|
5 years ago |
|
Kévin Chalet
|
f465efda19
|
Always require that the oi_tkn_typ claim be present if all token types are considered valid
|
5 years ago |
|
Kévin Chalet
|
8004a82c1d
|
Revamp the token authentication/generation mechanism and introduce new events
|
5 years ago |
|
Kévin Chalet
|
488c068f8b
|
Fix the ASP.NET Core/OWIN InferEndpointType handler to correctly compare absolute URLs
|
5 years ago |
|
Kévin Chalet
|
371afd2303
|
Update the ASP.NET Core/OWIN server/validation hosts to populate AuthenticationProperties.IssuedUtc/ExpiresUtc
|
5 years ago |
|
Kévin Chalet
|
970ce43ca7
|
Allow authorization requests that don't specify response_type=code when PKCE is enforced
|
5 years ago |
|
Kévin Chalet
|
d122c5dfb0
|
Rework the development signing/encryption certificates unit tests
|
5 years ago |
|
Kévin Chalet
|
bc64aa72e2
|
Rework the development signing/encryption certificates unit tests
|
5 years ago |
|
Kévin Chalet
|
44eda14ff1
|
Bump the .NET SDK, the .NET packages and the third-party dependencies
|
5 years ago |
|
Kévin Chalet
|
6cf1f72844
|
Add log messages to inform users when application claims are not included in introspection responses
|
5 years ago |
|
Kévin Chalet
|
dfc57bff56
|
Add an error_uri to all the errors returned by OpenIddict
|
5 years ago |
|
Kévin Chalet
|
b6766e480e
|
Remove the parameter-less HasAudience()/HasPresenter()/HasResource()/HasScope() extensions
|
5 years ago |
|
Kévin Chalet
|
fdfb2498b0
|
Add integration tests to ensure device/user codes are returned as part of sign-in operations triggered from the device endpoint
|
5 years ago |
|
Kévin Chalet
|
22ff1fc02e
|
Block device requests sent by clients that were not granted the device code grant permission and add integration tests for the device and verification endpoints
|
5 years ago |
|
Kévin Chalet
|
b19fdffea4
|
React to nullable annotations changes in .NET 5.0 and update OpenIddictParameter.ToString() to use the invariant culture
|
5 years ago |
Chris Thompson
|
568f13baab
|
Port OpenIddictServerExtensionsTests to OpenIddict 3.0
|
6 years ago |
|
Kévin Chalet
|
de1b3b4477
|
Remove localized error descriptions support
|
5 years ago |
|
Kévin Chalet
|
bff6ed027b
|
Add .NET 5.0 TFMs and bump the .NET SDK to 5.0.100
|
6 years ago |
|
Kévin Chalet
|
c44a633567
|
Update OpenIddictMessage to ignore parameters with empty names
|
5 years ago |
Noah Stahl
|
c27cac977e
|
Add encryption key size validation
|
5 years ago |
|
Kévin Chalet
|
127e68c6d1
|
Stop adding a jti claim by default
|
5 years ago |
|
Kévin Chalet
|
a6dd8cf031
|
Revamp refresh tokens
|
5 years ago |
|
Kévin Chalet
|
5293257e6e
|
Add a new option allowing to make PKCE mandatory
|
5 years ago |
|
Kévin Chalet
|
84facf0895
|
Introduce response type permissions, remove hybrid clients support and bring back none flow support
|
6 years ago |
|
Kévin Chalet
|
76f1c2638a
|
Bump Quartz.NET to 3.2.1
|
6 years ago |
|
Kévin Chalet
|
49b30b1b97
|
Use ECCurve.Oid.Value when comparing EC curves
|
6 years ago |
Johann
|
ff0958ea67
|
Enable nullable reference types support in the unit/integration tests projects
|
6 years ago |
|
Kévin Chalet
|
921ad7f779
|
Rename Enable*EndpointCaching to Enable*RequestCaching
|
6 years ago |
|
Kévin Chalet
|
31ae617c66
|
Bump Quartz.NET, leverage its new Microsoft.Extensions.Options support and mark the OpenIddict.Quartz package as shipping
|
6 years ago |
|
Kévin Chalet
|
923c53f672
|
Make the Quartz.NET integration an OpenIddict.Core extension
|
6 years ago |
|
Kévin Chalet
|
1e87e917a6
|
Use static OpenIddict.Abstractions.OpenIddictConstants where appropriate
|
6 years ago |
|
Kévin Chalet
|
254be824c9
|
Introduce new properties in ProcessSignInContext to allow for more control over the token creation process
|
6 years ago |
|
Kévin Chalet
|
29f88f4b43
|
Change the resource identifiers naming scheme
|
6 years ago |
|
Kévin Chalet
|
0b629b3dbd
|
Replace JsonSerializer.Serialize() by Utf8JsonWriter and JsonSerializer.Deserialize() by JsonDocument
|
6 years ago |
|
Kévin Chalet
|
3841f32f17
|
Update the entire codebase to use is null/is not null
|
6 years ago |
|
Kévin Chalet
|
f54ba7f6dd
|
Allow built-in scope validation to be partially executed when the degraded mode is enabled
|
6 years ago |
|
Kévin Chalet
|
f84a10270e
|
Revamp the authorizations/tokens pruning mechanism
|
6 years ago |
|
Kévin Chalet
|
51bd3c5d72
|
Introduce OpenIddict.Server.Quartz
|
6 years ago |
|
Kévin Chalet
|
22f5632afe
|
Remove authorization code/identity token introspection/revocation support
|
6 years ago |
|
Kévin Chalet
|
f1c09dc454
|
Update the Set*EndpointUris methods to block relative paths starting with ~
|
6 years ago |
|
Kévin Chalet
|
8085ca176b
|
Translate all the error messages into French and remove the duplicate .resx entries
|
6 years ago |
|
Kévin Chalet
|
4e309929b5
|
Don't revoke the authorization when detecting an authorization code/refresh token replay
|
6 years ago |
|
Kévin Chalet
|
5f164309cd
|
Automatically disable the incompatible options when enabling the degraded mode
|
6 years ago |
