openiddict-core

Commit Graph

Author	SHA1	Message	Date
Kévin Chalet	6dce31567c	Update ValidateIdentityModelToken and ValidateDataProtectionToken to immediately return an error when the token can be read but is invalid	6 years ago
Kévin Chalet	dad788a936	Support the long application/at+jwt and application/jwt forms	6 years ago
Kévin Chalet	beb6b3e92b	Make authorization codes reference tokens by default, split UseReferenceTokens into two settings and allow the Data Protection to fall back to JWT for specific token types	6 years ago
Kévin Chalet	ed0dc56487	Reunify the custom and built-in handlers collections to avoid computing the collections per-request	6 years ago
Kévin Chalet	fb406560c6	Normalize multiple public scope claims to a single spare-separated claim	6 years ago
Kévin Chalet	bbeb29726f	Avoid overriding the issuer/signing keys/decryption keys set in the token validation parameters	6 years ago
Kévin Chalet	77ca35a53f	Use private claims for the token creation/expiration dates and introduce new Data Protection authentication properties	6 years ago
Kévin Chalet	949d5e39d4	Fix an issue with the status code pages middleware integration and tweak the ASP.NET Core hosts to use AuthenticateResult.NoResult()	6 years ago
Kévin Chalet	2ac5b4b884	Update the validation OWIN integration to support active authentication and rework how errors are returned for API requests	6 years ago
Kévin Chalet	f81f8fc7dd	Introduce introspection support and revamp the events model used by the validation handler	6 years ago
Kévin Chalet	be23e18023	Leverage IdentityModel's new TypeValidator mechanism to allow validating JWT tokens issued by OpenIddict 1.x/2.x	6 years ago
Kévin Chalet	414e05eed4	Create a DB entry for all types of tokens, rework reference tokens support and add token entry validation to the validation handler	6 years ago
Kévin Chalet	700dc69c2e	Update the userinfo endpoint/validation handler to return a 401 error when the access token is missing	6 years ago
Kévin Chalet	8b097321c3	Update the ValidatePrincipal handler to ensure the token type of the claims principal matches the expected type	6 years ago
Kévin Chalet	ac5f302b01	Add MapInternalClaims and handle multiple public "scope" claims for backward compatibility	6 years ago
Kévin Chalet	560a44514b	Automatically add a client_id claim to access tokens and use "JWT" instead of "jwt" for the identity tokens' typ header	6 years ago
Kévin Chalet	97dffed124	Implement complete WWW-Authenticate response header support	6 years ago
Kévin Chalet	a8f9e53f9d	Relax the relative URLs constraints and fix the Uri construction logic to correctly compute absolute URLs	6 years ago
Kévin Chalet	e4b2150f23	Enforce JWT access token encryption by default	6 years ago
IgorHrabrov	201daf88ac	Refactor the OpenIddict primitives extensions class	6 years ago
Kévin Chalet	76a432e045	Port the challenge integration tests	6 years ago
Kévin Chalet	3cbe3936bd	Port the sign-out integration tests and add validation to prevent sign-out from being triggered from unsupported endpoints	6 years ago
Kévin Chalet	831a5b988a	Port the sign-in integration tests	6 years ago
Kévin Chalet	6a3afb52c4	Make the supported code_challenge_methods configurable via advanced options and disable plain by default	6 years ago
Kévin Chalet	a25907cd52	Automatically map the scope/azp access token claims to their OpenIddict private claims equivalents	6 years ago
Kévin Chalet	c61f22f589	Port the authentication integration tests	6 years ago
Kévin Chalet	eb35cbefb7	Port the token endpoint integration tests	6 years ago
Kévin Chalet	a6e5cc827b	Remove OpenIddictServerJsonWebTokenHandler and OpenIddictValidationJsonWebTokenHandler	6 years ago
Kévin Chalet	d5e449d065	Update the token validation logic to validate JWT tokens only once, independently of their actual type	6 years ago
Kévin Chalet	bef913d002	Replace JSON.NET by System.Text.Json, store cached requests as JWE/JWS payloads and set the typ header of JWT tokens	7 years ago
Kévin Chalet	ac96bbcf09	Update the OpenIddict extensions to use ImmutableArray instead of ImmutableHashSet	7 years ago
Kévin Chalet	225b8ad9f5	Add device code flow support	7 years ago
Kévin Chalet	b80244cf92	Reintroduce token generation/validation log traces	7 years ago
Kévin Chalet	5627188737	Expose the token validation parameters used by OpenIddict.Server and rework existing handlers	7 years ago
Kévin Chalet	443e94a3b5	Use IdentityModel 5.5.1-preview instead of 6.2.0-preview	7 years ago
Kévin Chalet	204b87dbea	Bring back OpenIddict.Validation and introduce OpenIddict.Validation.AspNetCore, OpenIddict.Validation.Owin, OpenIddict.Validation.DataProtection, OpenIddict.Validation.ServerIntegration and OpenIddict.Validation.SystemNetHttp	7 years ago
Kévin Chalet	858740818e	Reintroduce token storage, reference tokens, non-sliding expiration, rolling tokens and token revocation support	7 years ago
Kévin Chalet	9262d5aa3e	Bring back automatic authorization validation and ad-hoc authorization creation	7 years ago
Kévin Chalet	f8280ddf6b	Set the access token audiences using the resources stored in the principal	7 years ago
Kévin Chalet	b16adca7b2	Reintroduce the revocation endpoint	7 years ago
Kévin Chalet	37e08b20d9	Update the authorization/logout endpoints to automatically validate id_token_hint and refactor HandleAuthenticateAsync()/AuthenticateCoreAsync()	7 years ago
Kévin Chalet	cb7133699d	Add RSA Probabilistic Signature Scheme (PS256/PS384/PS512) support and fix the algorithm names used for id_token_signing_alg_values_supported	7 years ago
Kévin Chalet	94e71b530b	Reintroduce the introspection endpoint	7 years ago
Kévin Chalet	2e45becc5a	Bring back userinfo support	7 years ago
Kévin Chalet	9d2446764b	Replace Task by ValueTask in OpenIddict.Server/OpenIddict.Server.AspNetCore/OpenIddict.Server.Owin	7 years ago
Kévin Chalet	8546ca47af	Bring back logout/end session endpoint support	7 years ago
Kévin Chalet	9ee38c0efb	Introduce the first experimental OpenIddict 3.0 bits and move the build infrastructure to Arcade	7 years ago

1 2 3

145 Commits (c6fd5ad6874646b48b5210e12c21ba3bfe926ce8)