6e3ff403d4
[ Fixes #794 ] Exception thrown when 'Microsoft.AspNetCore.Authentication.JwtBearer' tries to log a message
2016-04-22 09:55:13 -07:00
c06cac5d30
#744 Change OIDC's default ResponseType to IdToken.
2016-04-21 14:46:40 -07:00
3db1f1e9fd
Move dependency to netstandard only
2016-04-14 15:41:40 -07:00
8023d1eb02
Add serialization.primitives for Newtonsoft.Json
2016-04-14 13:52:39 -07:00
a41c578d88
Removing imports from src projects
2016-04-08 06:49:18 -07:00
5cd236c1b0
Guard against null ref
2016-04-01 14:16:49 -07:00
4d6ad51f8a
Add fallback logging for username in AuthZ
2016-03-31 13:09:32 -07:00
16a0482238
React to HttpAbstractions namespace changes
...
- aspnet/HttpAbstractions#549 and aspnet/HttpAbstractions#592
- clean up `using`s
2016-03-30 16:15:37 -07:00
4086d70628
Add comments to AddAuthentication extension methods
2016-03-28 15:44:15 -07:00
3f596108aa
#690 OIDC & JWT event refactoring.
2016-03-25 10:08:33 -07:00
6d4a80e747
[ Fixes #532 ] Replace hard-coded logging event ids with a class of consts
2016-03-24 07:11:53 -07:00
7ec3da701c
Reacting to CoreFx package changes
2016-03-23 16:15:16 -07:00
22d133cefa
Reacting to CoreCLR package changes
2016-03-22 14:51:18 -07:00
9361960b2f
React to HttpAbstractions change: No features in `.Internal` namespace
...
- see issue aspnet/HttpAbstractions#561 and pull aspnet/HttpAbstractions#589
2016-03-18 08:35:57 -07:00
81bf1c2096
Cleanup transitive dependencies
2016-03-17 22:23:23 -07:00
1a8d5317a9
Updated Json.Net version
2016-03-14 14:50:57 -07:00
f5c1c45db2
IClaimsTransofrmer updated to take ClaimsTransformationContext instead of ClaimsPrincipal in TransformAsync method. #718
2016-03-11 14:07:56 -08:00
4bfeba2a3c
Update project.json
...
@tratcher said :shipit:
2016-03-10 15:16:54 -08:00
d78f7edfc7
Fix package metadata
...
And also a few other Core-related renames.
2016-03-09 23:14:51 -08:00
a5fcddc0a8
#704 unregister auth handlers during unwind.
2016-03-09 09:45:59 -08:00
553e036d28
Add GivenName and Surname default claims to FacebookOptions
2016-03-09 11:04:11 +00:00
9dfe4d9699
Enabled xml doc generation
2016-03-04 15:49:20 -08:00
ef6dd41384
SaveTokens in OIDC
2016-03-04 12:55:32 -08:00
8645ca0dc5
Update MicrosoftAccount to use converged auth
...
-Updated MicrosoftAccountDefaults to use app model v2 & graph API
-Updated MicrosoftAccountHelper to extract user info from the user object
returned by the graph API
-Updated MicrosoftAccountMiddlewareTests accordingly
-Added the app model v2 client credentials to SocialSample/config.json
-Configured SocialSample to use SSL
Startup.cs
- Sorted namespaces
- Dropped openid scope from Microsoft-AccessToken
project.json
- Sorted dependencies
MicrosoftAccountHelper.cs
- Removed name claim transofmation
- renamed GetName, GetFirstName & GetLastName
2016-03-04 11:52:43 -08:00
94e0088eea
Added Company, Copyright and Product attributes to AssemblyInfo
2016-03-03 17:33:22 -08:00
ace166fa31
Save tokens in auth properties instead of claims
2016-03-03 12:50:46 -08:00
cedef4dcba
Fix build break
2016-03-03 06:39:15 -08:00
fbb628298c
Remove project name from output path
...
- aspnet/Coherence-Signed#187
- remove `<RootNamespace>` settings but maintain other unique aspects e.g. `<DnxInvisibleContent ... />`
- in a few cases, standardize on VS version `14.0` and not something more specific
2016-03-02 21:20:11 -08:00
b5300ad0e4
Update doc comments
2016-03-02 13:46:47 -08:00
e3979fd3fe
Transition to netstandard.
...
- dotnet5.X => netstandard1.y (where y = x-1).
- DNXCore50 => netstandardapp1.5.
- Applied the same changes to ifdefs.
2016-03-01 13:36:53 -08:00
9bbbe535f2
#690 Enable custom OIDC authorization code redemption.
2016-02-19 15:07:25 -08:00
34bc9c52e1
#456 Unify OIDC Code/IdToken/Hybride flows.
2016-02-08 12:06:13 -08:00
bbcabc0212
Move GenerateCorrelationId and ValidateCorrelationId to RemoteAuthenticationHandler
2016-02-08 11:37:49 -08:00
bafb097e9f
Update to new CLI.
...
- Added appropriate imports/net core platform libraries.
2016-02-06 19:51:50 -08:00
c2194ea99d
Updated Json.Net versions
2016-02-05 10:21:39 -08:00
e00453af4d
Ensure scope has no duplicates
2016-02-04 09:08:03 +00:00
e737f3207e
Remove username from Facebook
...
Add default fields for Facebook
Remove default fields except name and email
Add all the core fields for Facebook
Fix location and field uniqueness
2016-02-02 11:58:08 -08:00
80dc5759cc
Async overloads for AuthZ RequireAssertion
2016-01-28 12:48:00 -08:00
a80c5e6d85
#614 Standardize the pattern for scope defaults.
2016-01-27 15:26:32 -08:00
297c72aa21
React to Logging API changes
2016-01-27 14:42:56 -08:00
00ceeb0262
Add IAuthorizationPolicyProvider support
2016-01-27 13:36:53 -08:00
9c41eb958e
React to IdentityModel breaking change.
2016-01-26 14:28:49 -08:00
a1aeb4313e
Remove unused dependency
...
- The authorization stack doesn't depend on AspNetCore at all really
2016-01-24 23:57:17 -08:00
0c6a805405
#632 Save twitters access token secret as a claim.
2016-01-24 18:45:04 -08:00
38de3d6013
#526 Change from storing expires_in to calculating expires_at.
2016-01-24 18:45:02 -08:00
a5b288897d
Update ASP.NET 5 versions for ASP.NET Core.
...
See https://github.com/aspnet/Announcements/issues/144 for more information.
2016-01-22 12:39:16 -08:00
c0d587e7c2
Rename AspNet 5 file contents.
...
See https://github.com/aspnet/Announcements/issues/144 for more information.
2016-01-22 12:35:47 -08:00
ba757d7a45
Rename AspNet 5 folders and files.
...
See https://github.com/aspnet/Announcements/issues/144 for more information.
2016-01-22 12:16:26 -08:00
de2cb12f5c
OIDC cleanup
2016-01-21 17:14:15 -08:00
2e1a8b31cd
Rename Delegate => AssertionRequirement
...
And moar sugar...
2016-01-15 14:47:33 -08:00
417ca6cbe3
Updating to new options pattern
2016-01-08 16:53:31 -08:00
990e412326
Actually fix the AssemblyInfo
2016-01-08 14:47:40 -08:00
f4aafe04e0
Replace Microsoft.Owin.Security.Cookies.Interop by Microsoft.Owin.Security.Interop
2016-01-08 13:43:43 -08:00
5bcc1bfc26
Also refresh expires/Issues when renewing cookie
2016-01-08 13:22:55 -08:00
7a23028527
Switch to AuthenticationTicket in OAuth event
2016-01-05 15:46:58 -08:00
2a939287bc
Merge pull request #636 from npnelson/dev
...
Fix Typo in a Log Message
2016-01-05 15:27:47 -08:00
3257a82367
Expose AuthenticationProperties in events
2016-01-05 14:32:31 -08:00
f195ed3bab
Allow value type resources for AuthZ
2016-01-04 13:30:40 -08:00
74961cac49
fix typo in log message HttContext.User merged...=>HttpContext.User merged
2015-12-30 16:50:42 -05:00
9bf861307c
Rework the empty or space only filtering in Roles and Schemes
2015-12-30 12:04:00 +01:00
9a5da5861b
Fix coding style and handle case where empty roles & schemes are empty
2015-12-28 23:57:42 +01:00
6850e3b3b6
Fix missing Trim in Roles and Schemes split
2015-12-28 14:47:15 +01:00
2d21b72561
Adding back middleware initialization with options instance.
2015-12-23 15:26:41 -08:00
5837ce160a
Stardardizing middleware to use ConfigureOption lambda
2015-12-22 21:34:52 -08:00
84279c07cf
OptionsModel => Options rename
2015-12-21 15:02:14 -08:00
e4df43611d
React to IdentityModel namespace changes.
2015-12-20 19:44:21 -08:00
0623f3b741
#555 Make SkipToNextMiddleware work on events.
2015-12-09 15:26:47 -08:00
4c1943b281
Reacting to verbose rename
2015-12-07 14:28:28 -08:00
f24c35f1a9
Promote SaveTokensAsClaims to RemoteAuthOptions
2015-12-07 13:37:56 -08:00
3d8886a064
#566 Update Google token endpoint.
2015-12-03 10:43:31 -08:00
92c479869b
#600 Update the Twitter AuthenticationEndpoint
2015-12-02 11:51:43 -08:00
a18181d363
#565 Update facebook APIs to v2.5.
2015-12-02 10:43:17 -08:00
b81f947042
Remove unused references
2015-12-01 10:55:47 -08:00
0db9a16c91
Use the newest build of OpenIdConnect packages cloned to AspNet feeds.
...
Fixes #576
2015-12-01 10:38:42 -08:00
4cf32eb678
#411 Handle validation failures from ValidateToken.
2015-11-30 11:56:57 -08:00
620622f260
Include error_desc/error_uri as well for OAuth
2015-11-19 15:06:20 -08:00
de107ffe61
Cookies now defaults to AutomaticAuthenticate true again
2015-11-13 11:27:39 -08:00
b05f8771ae
Removed comment
2015-11-12 15:23:30 -08:00
d6cdb4bbfe
Remove System beta tag in project.json for coreclr packages.
2015-11-12 12:24:08 -08:00
8a23efebf2
Merge branch 'release' into dev
2015-11-05 11:51:33 -08:00
bcb02a06ef
Update IdentityModel dependencies to strong named version.
2015-11-05 11:50:33 -08:00
dc6e916bd4
Cookies Forbid now includes ReturnUrl
2015-11-04 13:54:37 -08:00
238fdf24e8
Further improve error handling for OAuth providers
2015-11-03 12:37:35 -08:00
a363368dc8
Strong name everything.
2015-11-03 12:29:44 -08:00
e9d2c53ebc
React to IRequestCookieCollection changes.
2015-11-02 15:56:49 -08:00
c71c7a3810
Reacting to RequestDelegate namespace change
2015-10-30 14:14:34 -07:00
1a59b385a0
React to WebEncoders changes.
2015-10-30 11:39:39 -07:00
57a64298c0
#485 OIDC RequireHttpsMetadata
2015-10-23 15:33:48 -07:00
9c9cf3d314
React to break change in StringValues
2015-10-23 15:13:30 -07:00
204ab0b860
Fix build break
2015-10-23 14:56:17 -07:00
1d2c6ba122
Cookies no longer redirects for AJAX requests
2015-10-23 14:39:42 -07:00
35b7248734
#455 Remove RedirectUri from OIDC, use CallbackPath.
2015-10-22 14:56:15 -07:00
5566433686
Switching to generations TFMs
2015-10-22 00:35:50 -07:00
0eaec216b1
AuthZ API review changes
2015-10-21 16:45:20 -07:00
7dfac2fd78
Add assembly info for new project
2015-10-21 15:23:39 -07:00
e72a563902
Add initial Owin Security cookie interop package
2015-10-21 15:19:16 -07:00
defc9faac0
Don't call resource handlers without required resource
2015-10-21 13:18:05 -07:00
ef61b14d6a
#501 Replace OpenIdConnectTokenEndpointResponse with an OpenIdConnectMessage
2015-10-21 12:26:01 -07:00
00c81d41aa
Use fixed version of OpenIdConnect
2015-10-21 11:24:10 -07:00
2b259e8b99
Remove deprecated AddCookieAuthentication methods
2015-10-20 13:56:40 -07:00
e0464c9508
Add some basic logging to AuthZ/N
2015-10-20 13:47:59 -07:00
fd54c5af21
Add lots of missing doc comments.
...
Also did some minor renames to match extension method patterns.
2015-10-19 13:02:05 -07:00
0f78135f5d
Moving AllowAnonymous attribute from MVC
2015-10-19 11:02:20 -07:00
121e6891e7
Remove log codes from exception/log messages; don't localize logs
...
https://github.com/aspnet/Security/issues/414 and
https://github.com/aspnet/Security/issues/418
Also started putting in event ids for logs.
2015-10-17 16:50:16 -07:00
c14119b612
#263 Consume ITlsTokenBindingFeature in CookieAuthMiddleware.
2015-10-16 16:31:58 -07:00
f588677bb4
#506 Update to Rc1 IdentityModel, update ValidateUserInfoEndpointResponse.
2015-10-16 12:11:54 -07:00
3c925fc4bf
Fix package descriptions with proper casing
...
#468
2015-10-15 22:30:11 -07:00
8359038927
Address remaining PR feedback + misc cleanup
2015-10-15 16:51:12 -07:00
409b50269a
Add RemoteAuthenticationHandler base/error handling logic
2015-10-14 23:08:43 -07:00
6c529eae7a
Renaming Microsoft.Framework.* -> Microsoft.Extensions.*
2015-10-03 15:44:47 -07:00
6ed7d1f3c0
Replace NotNullAttribute with thrown exceptions
2015-09-29 09:35:27 -07:00
78cf065b88
#493 Upate to IdentityModel beta8 dependencies.
2015-09-28 18:25:13 -07:00
852f44a369
Rename JwtBearer events
2015-09-24 14:53:31 -07:00
966fa6672f
#147 Make OIDC UseTokenLifetime false by default.
2015-09-24 10:18:04 -07:00
8c1cb911f2
Refactor TicketSerializer/PropertiesSerializer and add ClaimsIdentity.Actor/Claim.Properties support
2015-09-24 10:08:22 -07:00
e091bceaa8
Caption => DisplayName
2015-09-23 15:02:03 -07:00
742b96d18c
Port SaveTokensAsClaims to the OpenID Connect middleware and automatically flow id_token_hint on logout requests
2015-09-23 14:33:30 -07:00
1ef66c9c11
Fix stuff
2015-09-22 16:48:50 -07:00
a55a372476
Add period
2015-09-22 16:21:40 -07:00
644a4002a9
Rename back to jwtBearer
2015-09-22 14:09:41 -07:00
b189475551
Split cookie events
2015-09-21 17:12:21 -07:00
fec3002fff
Renames
2015-09-21 16:32:14 -07:00
59ccbdd8ca
Fix stuff
2015-09-21 14:56:05 -07:00
081577e4f4
Remove usage IOptions from middleware ctors
2015-09-18 12:24:33 -07:00
5cc1fea400
Add CookiePolicy Middleware
2015-09-17 15:37:15 -07:00
1c0768fb71
#372 Flow mutable event state.
...
#358 Add a UserInformationReceived event.
#327 Add AuthenticationCompleted event.
#340 Split the Redirect event for Authentication and SignOut.
Rename OnAuthorizationCodeRedeemed to OnTokenResponseReceived.
Move IdTokenReceived to AuthorizationResponseReceived.
Rename IdTokenValidated to AuthenticationValidated.
2015-09-16 14:31:36 -07:00
ee2d263223
#434 Remove the nonce cache.
2015-09-15 09:13:26 -07:00
e8090a3176
Remove authentication from names, async events
2015-09-14 14:54:51 -07:00
0f06b6a09a
Adding NeutralResourcesLanguageAttribute
2015-09-10 18:31:59 -07:00
2982d743d8
#443 Remove custom certificate validators.
2015-09-10 08:41:08 -07:00
ebcad24307
#404 Verify state via independent cookie.
2015-09-09 12:16:22 -07:00
9f7a723843
#390 Make the nonce cookie expire.
2015-09-09 11:55:14 -07:00
5bc13cbd6b
UseOauth now requires an instance of options
2015-09-09 11:05:14 -07:00
76fd055d8e
Remove redundant body rewind.
2015-09-08 14:14:39 -07:00
831785fe9f
Make AddAuthorization() idempotent
...
Found this issue which looking into making AddMvc() idempotent. You'll end
up with multiple pass-through handlers registered if two components call
AddAuthorization(). This is very possible to happen if used two frameworks
in the same app.
2015-09-04 08:26:54 -07:00
d2701f4897
#58 Serialize the ClaimsIdentity.BootstrapContext.
2015-09-03 17:25:56 -07:00
dda67b9d7c
Remove unused RedirectFromIdentityProviderContext.
2015-09-03 12:39:36 -07:00
47520e126e
#47 Standardize on I*Events pattern.
2015-09-03 11:02:19 -07:00
2aba485263
Move Context objects to OIDC and JwtBearer, remove generics.
2015-09-02 17:01:25 -07:00
e4f78176f9
Regenerate Resources.Designer.cs using the standard tooling.
2015-09-02 17:01:23 -07:00
d3ad11a753
#47 Rename Notifications to Events and Contexts.
2015-09-02 17:01:21 -07:00
0f115f1fda
#307 Assume notifications are not null.
2015-09-02 17:01:18 -07:00
4b1f710c39
#415 Use a cross-platform friendly HttpClient for CoreCLR.
2015-09-02 16:25:27 -07:00
bf2b771eab
React to Options, Configure => Add, Cookie changes
...
UseCookie now has an overload which takes an instance of CookieOptions
2015-09-02 14:13:16 -07:00
bcf8a45340
#413 Rename OAuthBearer to JwtBearer.
2015-09-01 12:23:51 -07:00
561c997cb2
React to IHeaderDictionary API changes.
2015-08-31 20:29:36 -07:00
d9b3ea2a54
Add POST support for OpenID Connect authorization and logout requests
2015-09-01 03:59:50 +02:00
fa39144937
Use automatic properties, replace scope by a list and replace the validators list by a single validator
2015-09-01 01:23:41 +02:00
56315c441c
Use new HttpContext.Features API.
2015-08-31 06:46:18 -07:00
92185a1c27
React to string[] -> StringValues changes.
2015-08-28 14:16:49 -07:00
d5e27bf546
#278 Validate the message, not the JWT.
2015-08-25 13:47:11 -07:00
7213b53554
#407 OIDC - Fail if the user-info subject does not match
2015-08-25 11:26:02 -07:00
86962ab12c
#278 Additional OIDC message validation.
2015-08-22 21:17:38 -07:00
a3f0ee3330
Add a shared dataprotection test for cookies
2015-08-12 14:10:42 -07:00
3294de14f4
Add DefaultPolicy support for AuthZ
2015-08-11 17:04:36 -07:00
b883920bef
Cookies now always redirects to Login/AccessDenied Paths
2015-08-11 16:50:20 -07:00
b1013ed976
Reacting to DI changes
2015-08-11 14:07:12 -07:00
f3e03fbf26
#396 React to CoreCLR Cryptography package changes, remove transitive dependencies.
2015-08-11 10:43:02 -07:00
2a204e473b
Update CoreCLR versions
2015-08-04 10:15:32 -07:00
b85db5e8c0
Reacting to namespace changes in identitypackages - beta7 update
2015-07-30 13:11:08 -07:00
bdab4d95fd
Using QueryHelpers helps avoid issue #365 .
2015-07-28 10:13:52 -07:00
5bb5662e74
Remove sync AuthZ APIs
2015-07-20 16:36:25 -07:00
5a2499eb22
Rename ExternalAuthenticationOptions => Shared
2015-07-16 12:43:03 -07:00
73d4440a25
API review: nuke notification namespaces
2015-07-16 11:56:48 -07:00
54128e8137
Add response_mode=query support for OpenID Connect
2015-07-15 18:36:21 +02:00
ab4ba794e5
Fix cookie bugs, Authenticate => HandleAuthenticate
2015-07-14 13:22:04 -07:00
5065835a05
Remove special cookie ajax redirect behavior
2015-07-14 13:19:25 -07:00
8d7f052cf4
Adding support for signing in using "code flow"
2015-07-14 11:51:16 -07:00
c6aa9371c7
Updating protocol.extensions package version from beta5 to beta6
2015-07-08 17:26:03 -07:00
efc35302e8
Switch to shared security helper
2015-07-08 15:01:09 -07:00
57031946d0
#214 Refactor OIDC state parameters.
2015-07-08 12:21:14 -07:00
039cc18e8b
Fix typo in project.json
2015-07-01 20:41:03 -07:00
0d71421c05
Add repository information to project files
2015-07-01 20:25:17 -07:00
61bbe4cf52
Set user in OAuthContext
2015-07-01 19:01:44 -07:00
9bb8b61146
Revisit OAuthAuthenticationHandler and add a new SaveTokensAsClaims option
2015-07-01 15:03:54 -07:00
6e67b1c9b1
Delete dead file
2015-07-01 14:38:29 -07:00
5e92de8009
Tweak SecurityHelper for MVC usage
2015-07-01 12:36:37 -07:00
b9f152ebb1
Cookie fixes
2015-07-01 11:55:06 -07:00
d7ce42dacc
Handle null in ticket serializer
2015-06-30 12:08:20 -07:00
78cf7f99ff
Fix base path issue with OAuthHandler
2015-06-29 10:43:43 -07:00
102f113e2b
Replace INonceCache by IDistributedCache
2015-06-27 01:08:27 +02:00
6ae37717e8
Delete super dead code
2015-06-25 19:47:11 -07:00
19d026268b
Move Correlation stuff to OAuthHandler
2015-06-25 19:40:34 -07:00
1ae4c24a5f
PR fixes
2015-06-25 19:27:06 -07:00
3a8ea672ea
AuthN and AuthZ API changes (Async, Challenge)
2015-06-25 17:19:27 -07:00
797e1287e3
Using [NotNull]
2015-06-19 09:19:51 -07:00
7fcbefc86f
Using 'nameof' operator instead of magic strings
2015-06-19 09:19:50 -07:00
ab3cc8bcc7
React to OnSendingHeaders rename.
2015-06-12 15:53:07 -07:00
c6230f5de2
Fix invalid challenge in CookieAuthenticationHandler.ApplyResponseChallenge
2015-06-05 12:19:25 -07:00
0b214a0e77
* Changing IdentityModel package versions to beta5
...
* Updating NuGet.config to pick up packages from AzureAD feed.
2015-06-02 16:17:49 -07:00
e54d088c46
Fix issue with 401->403 not working with AutomaticAuthentication
2015-05-22 14:48:24 -07:00
af2c524352
React to aspnet/Configuration #195,#198
2015-05-20 18:20:35 -07:00
468852550c
Tweak SecurityHelper.AddUserPrincipal logic
2015-05-12 15:49:49 -07:00
17deab142d
AuthZ: Sugar to make resource parameter optional
2015-05-12 13:57:23 -07:00
bb2e12a8e6
Add sugar for UseClaimsTransformation
2015-05-12 13:52:32 -07:00
96a0b3e459
Merge pull request #241 from hishamco/dev
...
Using [NotNull] and 'nameof' operator
2015-05-08 22:03:14 -07:00
071de85e04
React to Http namespace changes.
2015-05-07 14:10:59 -07:00
582f562bbb
Using [NotNull] and 'nameof' operator
2015-05-07 22:04:48 +03:00
e57440f92c
React to common package name change
2015-05-07 09:41:05 -07:00
3cc6739c3d
React to QueryString API change.
2015-05-06 16:17:34 -07:00
dbdabeb9d2
Delete old handlers
2015-05-06 14:24:58 -07:00
434d158c76
Support custom name and role claims
2015-05-06 14:24:20 -07:00
ce48c1fc7d
Move ClaimsIssuer to base AuthenticationOptions
...
Also step 1 of refactoring tests
2015-05-05 14:50:59 -07:00
6e7ec9b2fb
Cleanup cookies (moar var)
2015-05-01 17:00:06 -07:00
5cf0564484
Update LICENSE.txt and license header on files.
2015-05-01 14:00:05 -07:00
4a5e8e5dfe
Reacting to Logging Package rename
2015-04-29 19:09:52 -07:00
1283414499
React to Http.Interfaces package rename.
2015-04-29 15:46:47 -07:00
63fc18b945
React to auth feature API changes.
2015-04-24 09:57:49 -07:00
87c31c5526
Switch to IUrlEncoder, introduce AddAuthentication
2015-04-23 22:49:47 -07:00
30d350da26
Move logger to base handler and moar var
2015-04-22 12:23:54 -07:00
6072e3b1b8
#221 Remove unneeded dependencies around DataProtection.
2015-04-21 16:21:50 -07:00
99f3aa197f
#118 - Use common cookie header formatters.
2015-04-20 15:16:29 -07:00
a3b2d2c3eb
Handle Http.Core rename.
2015-04-16 15:58:45 -07:00
501bd4ff10
Merge https://github.com/brentschmaltz/Security
2015-04-16 12:26:42 -07:00
9ce84d39c2
React to http challenge changes
2015-04-15 11:21:32 -07:00
5e03a6c1ad
Fix incorrect handler delegation and update SignInScheme documentation
2015-04-13 23:20:24 +02:00
4a2a742ad5
Fix SecurityTokenValidated and rework the different OAuth2 Bearer middleware tests
2015-04-13 23:19:32 +02:00
e0694a21d8
Add serviceable attribute to projects.
...
aspnet/DNX#1600
2015-04-07 14:50:16 -07:00
440e782f8b
Update .xproj files for Microsoft.Web.AspNet.* -> Microsoft.DNX.* rename
2015-04-02 13:49:29 -07:00
1a37bf1747
Changing Wilson package versions to beta4
2015-03-31 10:34:44 -07:00
ffd2489f6c
Revert "Changing Wilson packages to beta4"
...
This reverts commit 101b719994
2015-03-30 19:11:44 -07:00
101b719994
Changing Wilson packages to beta4
2015-03-30 19:10:57 -07:00
4a5b9f6b6e
Add a description for the OpenIdConnect package
2015-03-23 21:34:26 -07:00
776593ec71
React to hosting changes
2015-03-19 11:04:33 -07:00
e2a8efbb64
Cleanup
...
Switch to logging interfaces reference
Tweak DenyAnonymous logic
Fixes https://github.com/aspnet/Security/issues/181
Fixes https://github.com/aspnet/Security/issues/169
2015-03-17 11:40:58 -07:00
7abccd8f22
React to Shared NotNull
2015-03-16 15:22:46 -07:00
14d1b467c6
ClaimsXform and RIP AutoAuthHandler
...
- Initial support for ClaimsTransformation
- merge automatic auth handler back into base
2015-03-16 15:14:44 -07:00
bd7f07052e
Using [NotNull] from the common package
2015-03-14 07:25:14 -07:00
f8c526c12d
Update .kproj => .xproj.
2015-03-11 14:04:40 -07:00
78406b411c
Remove config from AddAuthorization
2015-03-11 11:43:48 -07:00
b7c8af8503
Reading AuthenticationProperties from SignOutContext
...
This will enable users to set a specific redirect uri and call signout.
2015-03-09 19:48:04 -07:00
08fdd7ad30
Remove BOM from project.json, *.cmd, *.sh and *.shade files.
2015-03-09 12:59:01 -07:00
1bd605da5e
Update aspnet50/aspnetcore50 => dnx451/dnxcore50.
2015-03-08 12:56:09 -07:00
5e7f1d7eff
Add Configure overloads for Auth for config/name
2015-03-06 12:37:34 -08:00
ce8caf0b9a
Rename Microsoft.AspNet.Http.Interfaces => Microsoft.AspNet.Http
2015-03-05 17:13:43 -08:00
aacc00aaee
Move extension methods to proper namespaces
...
Also add sugar for OpenIdConnect
Fixes https://github.com/aspnet/Security/issues/107
Fixes https://github.com/aspnet/Security/issues/113
2015-03-05 16:04:57 -08:00
e2bb76280f
Support AccessDeniedPath for Cookie 403 redirection
...
Fixes https://github.com/aspnet/Security/issues/166
2015-03-05 15:01:44 -08:00
1459ca1edb
React to DI changes
2015-03-04 19:57:15 -08:00
329d826857
Logging API changes
2015-03-04 17:10:56 -08:00
0577454f13
Fix for OpenIdConnect
2015-03-03 15:40:54 -08:00
d890f49fc0
Fix sln and kproj
2015-03-02 17:43:59 -08:00
775eb5ece4
Split Security into AuthN/AuthZ
...
AuthenticationType -> Scheme
Move Active/Passive into AutomaticAuthenticationHandler
Security -> Authorization/Authentication assemblies
401-403 logic
Switch from ClaimsIdentity to ClaimsPrincipal
2015-03-02 15:33:52 -08:00
d864b72561
React to DataProtection rename
2015-02-25 17:23:11 -08:00
a15cb4ffe5
React to HttpRequest.IsSecure renaming
2015-02-17 11:08:12 -08:00
5094b85ac9
Latest AuthZ iteration
...
- Core Auth API now takes list of IAuthorizationRequirements, or policy
name.
- Overload that takes AuthorizationPolicy instance moved to extension
method.
- Remove HttpContext from API and replace with ClaimsPrincipal instead
- Add Operation requirement
- Add Sync overloads
- Add ClaimsTransformationOptions (TBD where to use this)
Fixes https://github.com/aspnet/Security/issues/132
Fixes https://github.com/aspnet/Security/issues/116
Fixes https://github.com/aspnet/Security/issues/11
Fixes https://github.com/aspnet/Security/issues/117
2015-02-16 15:04:10 -08:00
04c6b1f101
Adding necessary dependencies to OpenIdConnect directly
...
OpenIdconnect project is betting on the dependencies included by Microsoft.IdentityModel.Protocol.Extensions for the types that are referenced directly in this library but not used in Protocol.Extensions library.
This change is to enable Wilson clean up its unused dependencies.
2015-02-10 11:25:30 -08:00
bb2352c638
Remove build time deps and fixed formatting
2015-02-10 11:01:03 -08:00
74bb8e089d
Reacting to System.Dynamic.Runtime version changes
2015-02-06 09:55:22 -08:00
b17d718d27
Updating .kproj files
2015-02-04 14:24:28 -08:00
4e83a678c0
Creating authentication ticket by passing in a principal
...
This fixes bug : https://github.com/aspnet/Security/issues/144
2015-02-02 13:46:28 -08:00
Kiran Challa
Chris R
BrennanConroy
Pranav K
Hao Kung
Doug Bunting
jacalvar
Ajay Bhargav Baaskaran
Dovydas Navickas
Eilon Lipton
Eilon Lipton
Mike Surcouf
Osman M Elsayed
N. Taylor Mullen
Kévin Chalet
David Fowler
John Luo
Nicholas Nelson
Vincent Lainé
Cesar Blum Silveira
Ryan Nowak
Troy Dai
unknown
bchavez
unknown
Victor Hurdugaci
Hisham Abdullah Bin Ateya
Kirthi Krishnamraju
Praburaj
Levi B