1.4

As part of this release we had 9 issues closed.

bug

• #932 Fix typo in the X-Frame-Options directive.

new feature

• #953 New Events Design

enhancements

• #985 Add XML code comments
• #957 Add option to persists temp key
• #934 Improve PKCE logging messages
• #907 Add IdentityServerBuilder extensions for client and resources stores
• #887 Pass LoginUrl/LogoutUrl from IdentityServerOptions to auth cookie
• #738 Log the tokens generated for debugging purposes
• #540 Finish off eventing programming model

1.3.1

We needed to revert removing the NET452 build target because of a bug in the crypto libraries in .NET.

#902

1.3

As part of this release we had 4 issues closed.

bug

• #896 GetAllUserConsentsAsync not returning all consents

enhancements

• #901 Remove NET452 Target
• #886 Use response generator pattern for discovery endpoint
• #850 csproj all the things

1.2.1

As part of this release we had 2 issues closed.

bugs

• #875 Login page does not hide external IdPs with empty Caption
• #815 User denying consent isn't an "error"

1.2

As part of this release we had 6 issues closed.

bugs

• #825 Validate scoped services
• #774 Invalid log message in TokenRequestValidator

enhancements

• #832 Make certain access token creation parameters dynamic
• #827 Improve logging when grant validation error occurs.
• #802 Add external cookie middleware when default signin scheme is used

1.1.1

As part of this release we had 3 issues closed.

bugs

• #782 Default ctor of GrantValidationResult throws
• #781 Refresh requests should not return identity tokens if no identity scopes were requested

enhancement

• #772 allow JsonWebKeys that contain an asymmetric key

1.1

As part of this release we had 5 issues closed.

bugs

• #759 The 'scope' property returned by the introspection endpoint is not properly formatted
• #697 Rename ScopeStoreExpiration
• #695 Add POST support to Authorize endpoint

enhancements

• #704 Add logging message when "size optimization" condition is met
• #694 Return id_token on refresh token request (see #690)

1.0.2

As part of this release we had 3 issues closed.

bugs

• #691 Always invoke profile service even if no claims requested
• #681 Only load resources on discovery endpoint when needed

enhancement

• #692 Update to latest MS.IdentityModel

1.0.1

As part of this release we had 5 issues closed.

bugs

• #650 Exception in IIS when using windows authentication
• #646 Typo in log message in EndpointRouter.cs
• #645 Correct use of IHttpContextAccessor

enhancements

• #660 Consider more defensive handling for deserailization of JSON in persisted grants.
• #659 Relax form-action CSP on authorize response

1.0.0

As part of this release we had 22 issues closed.

bug

• #586 PersistedGrantStore should implement expiration logic

enhancements

• #624 Consider expose PersistentGrantSerializer as interface
• #623 Use ReadFormAsync instead Form on HttpRequest
• #619 Consider DateTimeHelper to be public as well as its UtcNowFunc
• #618 Add overload to AddSigningCredential that allows adding by thumbprint
• #615 Make sure all extensibility interfaces are public
• #614 Consider moving handle generation into stores
• #613 Get rid of .Default namespace
• #612 Introduce handle generation service
• #606 Remove eventing for 1.0
• #600 Research extension custom grant validation result without sub
• #595 Remove InMemoryUser from Core and move to Quickstart UI
• #587 If claims are filtered (e.g. protocol claims) - emit a log entry
• #585 Add constants for token types
• #580 Add at_hash to id_token from token endpoint
• #578 make ResourceExtensions public
• #571 Provide easy way to create an access token
• #570 Add Windows authentication support
• #569 Cleanup UI
• #542 Update to ASP.NET 1.1
• #528 allow claims to be configured to always be included in id_token
• #523 Check amr in RO flow