OpenID Connect/OAuth2 server framework for OWIN/Katana and ASP.NET Core
Most important changes:
context.HandleResponse()
from the SerializeAuthorizationCode
, SerializeAccessToken
, SerializeIdentityToken
and SerializeRefreshToken
events no longer throws an exception if the authentication ticket is not explicitly set (c734c6f).token_type_hint
that doesn't match the actual token type (c561a34).Expires
HTTP header is now returned by the non-interactive ASOS endpoints (5af1d44).OpenIdConnectConstants
(0980fb8)
(461ecd4).Most important changes:
MatchEndpointContext.Options
property that had been accidentally removed in 1.0.0 has been reintroduced in 1.0.1
(f17d9a4).JwtSecurityTokenHandler.CreateToken()
/WriteToken()
has been updated to use
JwtSecurityTokenHandler.CreateEncodedJwt()
to ensure JWT tokens are not signed twice
(a499f11).