openiddict-core

Commit Graph

Author	SHA1	Message	Date
Kévin Chalet	31abb05f4d	Introduce timestamp properties and update the Entity Framework stores to avoid swalling DbUpdateConcurrencyException	9 years ago
Kévin Chalet	cf3e649b0f	Add automatic revocation of old tokens when redeeming refresh tokens with rolling tokens enabled	9 years ago
Kévin Chalet	38e69a7034	Reword the error messages returned by the OpenIddict endpoints	9 years ago
Kévin Chalet	013c480fec	Update the exception thrown by OpenIddictModelBinder and include the token identifier in the log messages when possible	9 years ago
Kévin Chalet	f95a17acae	Introduce a new hybrid client type and prevent confidential clients from retrieving an identity token from the authorization endpoint	9 years ago
Kévin Chalet	eb6588576e	Introduce a new rolling tokens option and disable it by default	9 years ago
Kévin Chalet	3280e09c1d	Introduce built-in reference tokens support and automatic compromised tokens revocation	9 years ago
Kévin Chalet	5e7a5c103b	Port OpenIddict to the new ASP.NET Core 2.0 authentication stack	9 years ago
Kévin Chalet	0ac6071afd	React to API changes in aspnet-contrib/AspNet.Security.OpenIdConnect.Server `db9900175b`	9 years ago
Kévin Chalet	214c429fc4	Optimization: reject grant_type=authorization_code requests that don't specify a redirect_uri directly from ValidateTokenRequest	9 years ago
Kévin Chalet	e36a80bc14	Adhere to the ASP.NET team coding style guidelines	9 years ago
Kévin Chalet	ea08d4d894	Relax the default signing credentials policy to allow using OpenIddict in degraded mode	9 years ago
Kévin Chalet	7c65c83a04	Introduce new IOpenIddictApplicationStore/OpenIddictApplicationManager APIs	9 years ago
Kévin Chalet	1478905dc9	Introduce a new DisableTokenRevocation option	9 years ago
Kévin Chalet	69e83a5019	Align the authorization code handling with refresh tokens	9 years ago
Kévin Chalet	bb1d2e07be	Remove OpenIddictDbContext and revamp OpenIddict/OpenIddict.Core	9 years ago
Kévin Chalet	39fd5763a9	Update OpenIddictProvider to make refresh token requests pass-through	9 years ago
Kévin Chalet	cc79326fb4	React to API/namespace changes in aspnet-contrib/AspNet.Security.OpenIdConnect.Server `146759e15e` `7f0760bbc7`	9 years ago
Kévin Chalet	d8fadc0f99	Decouple OpenIddict from ASP.NET Core Identity	10 years ago
Kévin Chalet	6c7ff09f01	Remove the email/profile scopes checks	10 years ago
Kévin Chalet	673caa409d	Introduce OpenIddictBuilder.RequireClientIdentification()	10 years ago
Kévin Chalet	12af8067f8	Remove the internal CanSignInAsync/IsLockedOutAsync checks	10 years ago
Kévin Chalet	aa6a82e85e	Update OpenIddictProvider to allow using custom grant types	10 years ago
Kévin Chalet	94f1189592	Remove OpenIddictMiddleware and the parameterless OpenIddictBuilder.EnableAuthorizationEndpoint() overloads	10 years ago
Kévin Chalet	1db3779ab3	Allow handling grant_type=password and grant_type=client_credentials requests in user code and introduce OpenIddictMiddleware	10 years ago
Kévin Chalet	5fe563d80d	Introduce new OpenIddictOptions extensions	10 years ago
Kévin Chalet	76d9b62571	Reject authorization requests that specify code_challenge_method=plain or use an inappropriate response type	10 years ago
Kévin Chalet	05a69e3131	Introduce a list of supported grant types	10 years ago
Kévin Chalet	c1d1d426d2	Update OpenIddictProvider.ValidateRevocationRequest to skip request validation when client authentication cannot be enforced	10 years ago
Kévin Chalet	81a836a447	Reject grant_type=client_credentials requests with an OpenIddict-specific message when the client credentials are missing	10 years ago
Kévin Chalet	9f27be57ec	Update OpenIddictProvider.ValidateTokenRequest to skip request validation when client authentication cannot be enforced	10 years ago
Kévin Chalet	154fa490b7	Implement automatic authorization code revocation	10 years ago
Kévin Chalet	dced1cd8fe	Migrate to the .NET Core/ASP.NET Core RTM packages	10 years ago
XperiAndri	4a3b84ddb5	Introduce OpenIddictApplication.ClientId to separate the public client identifier from the internal primary key	10 years ago
Kévin Chalet	e4019e8a1d	Implement ValidateUserinfoRequest and GrantAuthorizationCode to reject invalid tokens more gracefully	10 years ago
Massimiliano Donini	758e1266af	Introduce new log messages in OpenIddictProvider and throw exceptions when appropriate	10 years ago
Kévin Chalet	1bde9c2cf5	Introduce OpenIddictUserManager and add OpenIddictToken/OpenIddictUser/OpenIddictApplication relationships support	10 years ago
Kévin Chalet	5abedfb75d	Reject grant_type=client_credentials requests specifying scope=offline_access	10 years ago
Kévin Chalet	d0dce5b33a	Refactor OpenIddict/OpenIddict.Core, introduce new entities and add built-in refresh token revocation	10 years ago
Kévin Chalet	5c09b2ef8e	Fix OpenIddictManager.CreateIdentityAsync to avoid storing null email addresses as claims	10 years ago
Kévin Chalet	d02b8289da	Implement additional checks in OpenIddictProvider.GrantResourceOwnerCredentials	10 years ago
Kévin Chalet	5899533ae7	Introduce OpenIddictConfiguration/OpenIddictServices, decouple OpenIddictStore from UserStore and add new extensions	10 years ago
Kévin Chalet	8f5295b4bd	Migrate to ASP.NET Core/.NET CLI	10 years ago
Kévin Chalet	622871fb21	Update GrantRefreshToken to support live claims update even if the underlying store doesn't support security stamps	10 years ago
Kévin Chalet	0c45f2fd2e	React to API changes in aspnet-contrib/AspNet.Security.OpenIdConnect.Server `e40483abdd`	10 years ago
Kévin Chalet	bf5b44981b	Support live update of refresh tokens	10 years ago
Kévin Chalet	d7cb3bd3a9	React to API changes in aspnet-contrib/AspNet.Security.OpenIdConnect.Server `0fecdbe58f`	10 years ago

23 Commits (9f0a04ee95d45175efe9250fee70e7b231db8bfa)