Released: Feb 21, 2025

Updates in v3.8.0

Features

• Added the ability to increase some of the default token timeouts. These may be changed through configuration.

Fixes

• Fixed: Support logout with a new id_token_hint after a refresh.

Released: Jan 10, 2025

Updates in v3.7.0

Features

• Target .NET 9.0, as well as .NET 8.0 and .NET 6.0.
• Added .NET 9 example projects.

Released: Jul 23, 2024

Updates in v3.6.0

Features

• Support clearing the session state by client ID.
• Include the logout request in the IOpenIDStatus.
• Support multiple claims of the same type.
• Add the ClientConfiguration.RedirectUrisAreRegex to specify whether redirect URIs are regular expressions.
• Add IClaimFactory to support customization of the claims returned in the ID token and by the UserInfo endpoint.
• Replace IOpenIDProvider.SendAuthnErrorResponseAsync(Exception) with IOpenIDProvider.ToErrorCode.
• Include the optional correlationID...

Released: Mar 4, 2024

Updates in v3.5.0

Features

• Targets .NET 8.0 as well as.NET 6.0.
• Includes .NET 8 example projects.
• Exposes the ClaimConverter JSON serialization/deserialization class for Claim objects to assist with refresh token implementations.

Released: Nov 8, 2023

Updates in v3.4.0

Features

• Added support for GetKeysAsync to return Elliptic Curve keys.
• Now checks the metadata claims_parameter_supported before processing any explicitly requested claims.
• For improved compatibility no longer include an empty key_ops array or other information outside the specification with the JWKs returned by GetKeysAsync.

Fixes

• Fixed a bug where the UserInfo endpoint was not returning all claims, just the explicitly requested claims.

Released: Sep 7, 2023

Updates in v3.3.0

Features

• The default response mode is set to query if the response type is missing, invalid or unsupported.
• Added IClientSecretVerifier to support custom client secret verification including the use of hashed secrets.
• For private_key_jwt and client_secret_jwt client authentication, the audience should be validated against the applicable endpoint URL rather than the issuer URL.

Released: May 19, 2023

Updates in v3.2.0

Features

• Added support for specifying RedirectUris in the configuration as regular expressions to handle randomly generated port numbers and other scenarios.
• Added support for token introspection.
• Included the x5t and x5c properties in the returned JWKs.

Fixes

• Fixed issue with private_key_jwt and client_secret_jwt client authentication.
• Fixed issue with redirect URIs that include query string parameters.

Released: Mar 15, 2023

Updates in v3.1.0

Features

• Add ITokenValidationDelegates.IssuerSigningKeyResolver for use when verifying the HMAC signature of JWT bearer tokens.
• Used a typed HTTP client to provide tailored configuration of client certificates etc.
• Support for .NET 6.0, target .NET 7.0.

Released: Jan 11, 2023

Updates in v3.0.0

Features

• Added support for JWT (JSON Web Token) access tokens.
• Added support for refresh tokens.
• Added support for client_credentials grant type.
• Added support for password grant type.
• Uses IOptionsMonitor rather than IOptionsSnapshot as more performant.
• When verifying signatures, don’t use expired certificates.
• When generating signatures, use a non-expired certificate if available.
• Added the AddConfigurationResolver convenience method.

Fixes

• Fixed issue converting relative to absolute URLs.

Released: Aug 25, 2022

Updates in v2.0.0

Features

• Includes updates related to OpenID conformance testing.
• GetUserInfoAsync no longer takes a delegate argument. Claims are provided by SendAuthnResponseAsync instead.
• GetStatusAsync and RevokeRefreshTokenAsync methods were added to the interface.