Kévin Chalet
|
66f6d80298
|
Move all the assertions and log messages to OpenIddictResources
|
6 years ago |
|
Kévin Chalet
|
8feeb8698d
|
Update the entire codebase to use IStringLocalizer/ResourceManager
|
6 years ago |
|
Kévin Chalet
|
791552025f
|
Introduce new filters to avoid instantiating scoped handlers when unnecessary
|
6 years ago |
|
Kévin Chalet
|
8d600877fd
|
Decorate more server/validation handlers with OpenIddictServerHandlerType.BuiltIn
|
6 years ago |
|
Kévin Chalet
|
ed0dc56487
|
Reunify the custom and built-in handlers collections to avoid computing the collections per-request
|
6 years ago |
|
Kévin Chalet
|
77ca35a53f
|
Use private claims for the token creation/expiration dates and introduce new Data Protection authentication properties
|
6 years ago |
|
Kévin Chalet
|
414e05eed4
|
Create a DB entry for all types of tokens, rework reference tokens support and add token entry validation to the validation handler
|
6 years ago |
|
Kévin Chalet
|
fb92acbdaf
|
Replace OpenIddictApplicationManager.IsConfidentialAsync()/IsPublicAsync()/IsHybridAsync() by HasClientTypeAsync()
|
6 years ago |
|
Kévin Chalet
|
97dffed124
|
Implement complete WWW-Authenticate response header support
|
6 years ago |
IgorHrabrov
|
201daf88ac
|
Refactor the OpenIddict primitives extensions class
|
6 years ago |
|
Kévin Chalet
|
0214951ffc
|
Port the revocation endpoint tests and disable GET support
|
6 years ago |
|
Kévin Chalet
|
c61f22f589
|
Port the authentication integration tests
|
6 years ago |
|
Kévin Chalet
|
d5e449d065
|
Update the token validation logic to validate JWT tokens only once, independently of their actual type
|
6 years ago |
|
Kévin Chalet
|
bef913d002
|
Replace JSON.NET by System.Text.Json, store cached requests as JWE/JWS payloads and set the typ header of JWT tokens
|
6 years ago |
|
Kévin Chalet
|
225b8ad9f5
|
Add device code flow support
|
6 years ago |
|
Kévin Chalet
|
2628b5a88a
|
Share ProcessStatusCodePagesErrorResponse/ProcessPassthroughErrorResponse/ProcessLocalErrorResponse between authentication and logout handlers
|
6 years ago |
|
Kévin Chalet
|
96a03a9d21
|
Add a ValidateClientType handler for introspection and revocation to reject requests made by public clients and containing a client secret
|
6 years ago |
Demian Marty
|
ff7d5d5610
|
Add the RequireDegradedModeDisabled filter to the OpenIddictServerHandlers.Revocation.RevokeToken handler
|
6 years ago |
|
Kévin Chalet
|
4a1d15f107
|
Introduce OpenIddictServerOptions.ResponseTypes/ResponseModes to support registering custom response types/modes
|
6 years ago |
|
Kévin Chalet
|
204b87dbea
|
Bring back OpenIddict.Validation and introduce OpenIddict.Validation.AspNetCore, OpenIddict.Validation.Owin, OpenIddict.Validation.DataProtection, OpenIddict.Validation.ServerIntegration and OpenIddict.Validation.SystemNetHttp
|
6 years ago |
|
Kévin Chalet
|
858740818e
|
Reintroduce token storage, reference tokens, non-sliding expiration, rolling tokens and token revocation support
|
6 years ago |
|
Kévin Chalet
|
b16adca7b2
|
Reintroduce the revocation endpoint
|
7 years ago |
|
Kévin Chalet
|
37e08b20d9
|
Update the authorization/logout endpoints to automatically validate id_token_hint and refactor HandleAuthenticateAsync()/AuthenticateCoreAsync()
|
7 years ago |
|
Kévin Chalet
|
94e71b530b
|
Reintroduce the introspection endpoint
|
7 years ago |
