8c49637df3
CodeAnalysis cleanup.
2014-07-15 10:44:03 -07:00
85eea4faba
OpenIdConnect: #313 - Remove unsupported ResponseMode option.
2014-07-15 10:43:43 -07:00
a3878c697a
Make CookieAuthenticationMiddleware public.
2014-07-15 10:36:17 -07:00
833fac59e2
Security: #305 - Add RefreshOnIssuerKeyNotFound option, enabled by default.
2014-07-15 10:25:23 -07:00
693edfa8a4
Security: #283 - Allow cookie RedirectUri to be overriden from challenge properties.
2014-07-14 16:02:25 -07:00
9225eeb98c
Servers: #297 - Support new owin.RequestId key.
2014-07-14 14:24:54 -07:00
1e21af1c16
Fix for Issue 304
...
Null ref in OIDC when 'cookie nonce' is not found.
https://katanaproject.codeplex.com/workitem/304
2014-07-14 14:17:46 -07:00
26ed214cae
Build: Increment version to rc3.
2014-07-11 10:07:41 -07:00
516b30e89d
Build: Update IdentityModel dependencies to RC2.
2014-07-10 09:59:10 -07:00
1a82cd734d
Increment build number to v3.0.0-RC2.
2014-07-02 13:36:12 -07:00
7c985219e6
Cookies: Suppress CodeAnalysis issue for build.
2014-07-02 10:22:30 -07:00
0295fb90c1
Update dependencies to RC1.
2014-07-01 18:09:34 -07:00
cd84146461
Update dependencies.
2014-07-01 12:11:54 -07:00
b3e1586dbc
Secure nonce.
2014-06-30 23:17:47 -07:00
a88d6473b2
Build: Update version to rc1.
2014-06-19 10:27:00 -07:00
8877d2d166
Security: Prevent JwtFormat.TokenHandler from being null.
2014-06-17 16:32:17 -07:00
ba21a668b8
Fix WsFed sign-out URL. Fix JwtFormat TokenHandler.
2014-06-17 15:02:00 -07:00
0fd5be9541
Security: #229 - Rework redirect notifications (again).
2014-06-17 12:18:02 -07:00
c43af29f54
shade file fix
2014-06-17 11:30:04 -07:00
e5acb4afd4
update IdentityModel nugets.
...
Add OpenIdConnectSessionProperties to AuthenticationProperties.
2014-06-17 11:03:44 -07:00
26db71c79f
missing else.
2014-06-16 21:12:22 -07:00
59889201ec
only write if bc != null
2014-06-16 20:53:23 -07:00
87f2be297e
serialize bootstrapcontext
2014-06-16 20:16:00 -07:00
dde95335d6
Updated tests to new IM package.
2014-06-16 14:14:18 -07:00
649907ada4
Updated package for IM
2014-06-16 13:57:11 -07:00
a52d817675
Support for controlling OIDC validation parameters.
2014-06-16 13:47:46 -07:00
e9c272fa8d
ErrorPage.css now uses cursor: pointer on tabs
2014-06-16 10:06:33 -07:00
5a03011302
Fixed http-only jquery reference in error view
...
Changes the jquery script reference in ErrorView.cshtml to use
"//ajax.asp..." rather than "http://ajax.asp ...".
This allows the error page to also be used on https endpoints without
attempting to load unsecure content on a secure connection.
2014-06-16 10:06:31 -07:00
2c42288b2d
Updated for new IdentityModel nugets. Moved OpenIdConnectProtocolValidation to IdentityModel.
...
Conflicts:
src/Microsoft.Owin.Security.OpenIdConnect/OpenidConnectAuthenticationHandler.cs
2014-06-16 09:48:31 -07:00
617da19238
Update IdentityModel dependencies.
2014-06-10 14:02:02 -07:00
3f50c4c0d3
Extend OAuthAuthorizeEndpointContext
2014-06-07 16:08:42 +02:00
a0c7557f1f
Security: Update IdentityModel dependencies.
2014-06-06 14:24:51 -07:00
042daa0e80
OAuth: #279 - Add missing return after sending error response.
2014-06-05 14:56:40 -07:00
41a1597579
Stylecop cleanup.
2014-06-05 14:29:18 -07:00
d9ed49eb5c
+ support for response_mode=form_post and
...
new Hook in OAuthAuthorizationServerProvider: OnAuthorizationEndpointResponse
2014-06-05 14:19:18 -07:00
d0fbf8fc45
Security: #211 - Request configuration refresh for some exception types.
2014-06-05 11:08:46 -07:00
83dec6b737
Security: Clean up doc comments, code analysis, naming, constants,
2014-06-04 10:34:34 -07:00
4b82ea38cf
Security: #277 - Clean up Cookies event coments and usage.
2014-06-03 15:09:56 -07:00
4932c2f1d6
OAuth: #271 - Don't throw for bad data in TryGetBasicCredentials.
2014-06-02 10:29:20 -07:00
cd4109dee6
OAuth: #270 - Fix typo in error redirect.
2014-05-30 09:19:34 -07:00
09f4fcb259
Google: Suppress OpenID obsolete warnings.
2014-05-29 10:45:39 -07:00
a2087fe7f9
Security: #229 - Rework redirect notifications. Default notifications.
2014-05-28 15:20:07 -07:00
f607eba627
Revert "SystemWeb: #263 - Hook Asp.Net 4.5.2 OnSendingHeaders"
...
This reverts commit 933e2815c7
2014-05-27 15:44:53 -07:00
9b93846ac6
Security: #211 - Metadata refresh featue.
2014-05-27 15:44:09 -07:00
45a9f7b328
Restore JwtFormat IIssuerSecurityTokenProvider lazy usage so refreshing providers work.
2014-05-27 14:43:18 -07:00
a2b95f0876
Security: #258 - Handle tokens with missing expiration.
2014-05-23 15:13:19 -07:00
28f0f3e84d
Facebook: #190 - Send appsecret_proof parameter.
2014-05-22 17:15:05 -07:00
dd843d5623
Security: #258 - Make session lifetimes use token lifetimes by default.
2014-05-22 08:10:30 -07:00
b2b4f15fae
Coordinating changes with new S.IM renames and new functionality.
2014-05-21 15:42:40 -07:00
933e2815c7
SystemWeb: #263 - Hook Asp.Net 4.5.2 OnSendingHeaders
2014-05-20 11:57:19 -07:00
Chris Ross
Brent Schmaltz
Benjamin Fox
Pinpoint
manfredsteyer