IdentityServer 5.2.4

Bugs fixed

• better handling of when user profile is not loaded for x509cert2 usage by @brockallen in #632
• When creating token payload, ignore custom claims used for token validation (e.g. aud, iat, etc) by @brockallen in #633

Full Changelog: 5.2.3...5.2.4

IdentityServer 6.0 Preview 3

What's Changed

• Merge patch 5.2.2 by @brockallen in #317
• Switch to .NET 6 Preview by @leastprivilege in #251
• Bump SimpleExec from 7.0.0 to 8.0.0 by @adamralph in #318
• Fix obsolete warnings by @leastprivilege in #321
• Bump dessant/lock-threads from 2.0.3 to 2.1.1 by @dependabot in #324
• Update to .NET 6 Preview 6 by @leastprivilege in #329
• Update Quickstart UI to use Razor Pages by @brockallen in #263
• Update EF and ASP.NET Identity hosts with Razor Pages by @brockallen in #334
• Bump Bullseye from 3.7.0 to 3.8.0 by @dependabot in #370
• For ISV license, reduce startup license log level to trace by @brockallen in #353
• Add TableConfiguration for "Keys" table in operational EF database by @brockallen in #352
• Add unique constraints to EF tables where duplicate records not allowed by @brockallen in #355
• Add missing columns for created, updated, etc to EF entities by @brockallen in #356
• Add temporarily_unavailable error support for ConsentResponse by @brockallen in #357
• Fix inconsistency in CustomRedirectResult vs Login and ConsentPageResult by @brockallen in #358
• Updates for .NET 6 Preview 7 by @leastprivilege in #376
• disable automatic namespaces in .NET 6 by @brockallen in #377
• Bump dessant/lock-threads from 2.1.1 to 2.1.2 by @dependabot in #363
• Bump Microsoft.NET.Test.Sdk from 16.10.0 to 16.11.0 by @dependabot in #359
• use singlular targetframework tag in project files by @brockallen in #387
• [EF] Optimize client query to use a single DB round trip by @brockallen in #388
• Replace Uri.TryCreate with Uri.IsWellformedUriString by @leastprivilege in #389
• add DBContext Pooling by @stefannikolei in #260
• Revert "add DBContext Pooling" by @brockallen in #401
• [EF] Change DbContext constructors to support pooling by @brockallen in #403
• Ignore EF warning about split vs non-split queries by @brockallen in #406
• Encode persisted grant handles to avoid collation issues by @brockallen in #404
• add test for v5 persisted grant handle format by @brockallen in #407
• Suppress EF warning about split query behavior by @brockallen in #409
• Enhancements to front channel logout iframes by @brockallen in #410
• Updates for .NET 6 RC1 by @leastprivilege in #412
• add razor dynamic compilation by @brockallen in #413
• Fix bug when storing session id in refresh token by @brockallen in #416
• Change the cache key separator to use more redis friendly value by @brockallen in #420
• Fix bug in cache removal for DistributedCacheAuthorizationParametersMessageStore by @brockallen in #419
• Remove custom serialization handling for AuthenticationProperties by @brockallen in #418
• rename internal static field to match conventions by @brockallen in #424
• Add cancellation token support at boundaries by @brockallen in #405
• Reduce usage of HttpContext extension methods by @brockallen in #414
• Add IdentityProvider validator by @brockallen in #415
• Add finer grained IdentityServerBuilderExtensions for registering cookie authentication services by @brockallen in #423
• Change lifetime of nested options in DI to be more multi-tenant friendly by @brockallen in #425
• Bump dessant/lock-threads from 2.1.2 to 3 by @dependabot in #435
• Add feature to the default cache to prevent concurrent reloading of the cache by @brockallen in #421
• Change cache design for resource store cache by @brockallen in #431
• add simple perf test host app by @brockallen in #436
• Updates for .NET6 RC2 by @leastprivilege in #463
• Dependency cleanup to allow for runtime provided System.Text.Json by @buvinghausen in #466
• add SaveChangesAsync for backwards compat with prior version by @brockallen in #476
• Bump Microsoft.NET.Test.Sdk from 16.11.0 to 17.0.0 by @dependabot in #487
• Update checkout action by @leastprivilege in #497
• fix Bullseye and SimpleExec refs by @adamralph in #502
• Add CIBA support by @brockallen in #498
• Update to .NET 6 RTM by @leastprivilege in #504
• Bump actions/checkout from 2 to 2.4.0 by @dependabot in #494
• update XML comments by @brockallen in #508
• Improvement to OidcProvider by @brockallen in #507
• Update clients to NET6 by @leastprivilege in #509
• Bump Microsoft.SourceLink.GitHub from 1.0.0 to 1.1.0 by @dependabot in #510
• fix creation time to be utc (not local time) by @brockallen in #511

New Contributors

• @adamralph made their first contribution in #318
• @buvinghausen made their first contribution in #466

Full Changelog: 5.2.2...6.0.0-preview.3

IdentityServer 6.0 Preview 2

As part of this release we had 24 issues closed.

bugs

• #419 Fix bug in cache removal for DistributedCacheAuthorizationParametersMessageStore
• #416 Fix bug when storing session id in refresh token
• #358 Fix inconsistency in CustomRedirectResult vs Login and ConsentPageResult

enhancements

• #431 Change cache design for resource store cache
• #425 Change lifetime of nested options in DI to be more multi-tenant friendly
• #423 Add finer grained IdentityServerBuilderExtensions for registering cookie authentication services
• #421 Add feature to the default cache to prevent concurrent reloading of the cache
• #420 Change the cache key separator to use more redis friendly value
• #415 Add IdentityProvider validator
• #414 Reduce usage of HttpContext extension methods
• #410 Enhancements to front channel logout iframes
• #405 Add cancellation token support at boundaries
• #404 Encode persisted grant handles to avoid collation issues
• #403 [EF] Change DbContext constructors to support pooling
• #389 Replace Uri.TryCreate with Uri.IsWellformedUriString
• #388 [EF] Optimize client query to use a single DB round trip
• #357 Add temporarily_unavailable error support for ConsentResponse
• #263 Update Quickstart UI to use Razor Pages

schema changes

• #356 Add missing columns for created, updated, etc to EF entities
• #355 Add unique constraints to EF tables where duplicate records not allowed
• #352 Add TableConfiguration for "Keys" table in operational EF database

internals

• #418 Remove custom serialization handling for AuthenticationProperties
• #409 Suppress EF warning about split query behavior
• #353 For ISV license, reduce startup license log level to trace

IdentityServer 5.2.3

Patch for bug where the SID was not stored correctly.

IdentityServer 5.2.2

As part of this release we had 3 issues closed.

bugs

• #316 Add physical token endpoint to audience list for private key JWTs
• #315 add cache key prefix to avoid cache collisions in the two api resource caches
• #271 Relax GetOrigin to allow non-http/s URIs

IdentityServer 5.2.1

As part of this release we had 3 issues closed.

bugs

• #256 Add missing GetAllSchemeNames to the IIdentityProviderStore
• #243 relax constraint on handler type when configuring the external provider

internal

• #254 minor cleanup for dynamic providers

IdentityServer 5.2

As part of this release we had 15 issues closed.

bugs

• #235 delay filesystem access until needed for automatic key management
• #220 Always allow explicit error responses from authorize request
• #200 move consent message store loading to after request validation
• #194 use SetClient rather than setting Client property directly in end session validator

enhancements

• #209 Allow full host name to be included in OidcReturnUrlParser's IsValidReturnUrl
• #197 add support for user tenant check in authorize interaction response generator against acr tenant value
• #193 Prefer explicitly registered signing keys over automatic key management keys
• #192 Open up DefaultCache for derived implementations
• #188 Support for dynamic OIDC authentication schemes

internals

• #236 log issuers and client ids when license validation fails
• #223 Allow identity providers table to store additional data
• #167 Set license defaults for business and enterprise ISV editions

IdentityServer 5.2 Preview 2

As part of this release we had 14 issues closed.

bugs

• #220 Always allow explicit error responses from authorize request
• #200 move consent message store loading to after request validation
• #194 use SetClient rather than setting Client property directly in end session validator

enhancements

• #209 Allow full host name to be included in OidcReturnUrlParser's IsValidReturnUrl
• #197 add support for user tenant check in authorize interaction response generator against acr tenant value
• #193 Prefer explicitly registered signing keys over automatic key management keys
• #192 Open up DefaultCache for derived implementations
• #188 Support for dynamic OIDC authentication schemes
• #164 Open up DefaultCache for derived implementations

internals

• #223 Allow identity providers table to store additional data
• #167 Set license defaults for business and enterprise ISV editions

IdentityServer 5.2.0 Preview 1

As part of this release we had 12 issues closed.

bugs

• #200 move consent message store loading to after request validation
• #194 use SetClient rather than setting Client property directly in end session validator

enhancements

• #209 Allow full host name to be included in OidcReturnUrlParser's IsValidReturnUrl
• #197 add support for user tenant check in authorize interaction response generator against acr tenant value
• #193 Prefer explicitly registered signing keys over automatic key management keys
• #192 Open up DefaultCache for derived implementations
• #188 Support for dynamic OIDC authentication schemes
• #164 Open up DefaultCache for derived implementations

internal

• #167 Set license defaults for business and enterprise ISV editions

IdentityServer 5.1.1

As part of this release we had 1 issue closed.

bug

• #201 move consent message store loading to after request validation