IdentityServer 新版本发表

Released: Jun 16, 2026

v8.0.2 中的更新

修补程序

  • Fixed a license validation exception when using AddConfigurationStore without a license that includes the Dynamic Identity Providers feature. The EF configuration store registers an IIdentityProviderStore implementation, which incorrectly triggered a license check for Dynamic Identity Providers even when the feature was not in use.

Released: Jun 2, 2026

v8.0.0 中的更新

特性

  • SAML 2.0 Identity Provider
    • IdentityServer can now act as a full SAML 2.0 Identity Provider, allowing enterprise and legacy applications that require SAML to authenticate against your server alongside OpenID Connect clients. It supports:
      • SP-initiated SSO via HTTP-Redirect and HTTP-POST bindings.
      • Single Logout (SLO) with front-channel notifications.
      • Per-SP assertion signing.
      • NameID format support.
      • AuthnContext class mapping, per-SP claim mappings.
      • Metadata endpoint.
    • Your existing login UI...

Released: Mar 13, 2026

v7.4.7 中的更新

特性

  • Updated Duende.IdentityModel dependency to 8.0.1.

Released: Feb 12, 2026

v7.4.6 中的更新

修补程序

  • Made ServerSideSessionCleanupHost.StopAsync idempotent (prevent exceptions if it is called multiple times).
  • Do not escape '+' character in x5c of jwks.

Released: Jan 22, 2026

v7.4.5 中的更新

修补程序

  • Fixed a regression where the '+' character was not treated as a space in query params.

Released: Dec 30, 2025

v7.4.4 中的更新

修补程序

  • Fixed an issue where specific service registration scenarios would fail due to constructor ambiguity.

Released: Dec 9, 2025

v7.4.3 中的更新

修补程序

  • Fixed an issue where claims were duplicated.

Released: Dec 4, 2025

v7.4.2 中的更新

修补程序

  • Fixed IdentityServerLicenseValidator log formatting issue.

Released: Dec 3, 2025

v7.4.1 中的更新

修补程序

  • Fixed incorrect CSP hash constants in check session endpoint.

Released: Dec 2, 2025

v7.4.0 中的更新

特性

  • Set HTTP activity name on routing - Set the DisplayName of the activity associated with the incoming HttpRequest when IdentityServer routes are matched. This makes the IdentityServer route names appear in OTel traces.
  • Skip front-channel logout iframe when unnecessary - Enabled the UI to skip rendering the front channel logout iframe when it is not needed.
  • Callback Option for Path Detection in Dynamic Providers - Added a new option for Dynamic Providers to increase flexibility when routing to...