Skip to content
This repository has been archived by the owner on Jul 31, 2024. It is now read-only.

2.3 Preview 1

Pre-release
Pre-release
Compare
Choose a tag to compare
@leastprivilege leastprivilege released this 09 Aug 15:13
2.3.0-preview1
cd125ed

As part of this release we had 40 issues closed.
next feature release

bugs

  • #2533 DistributedCacheStateDataFormatter should handle failed Unprotect workflows
  • #2523 CorsService doesn't handle null for origin
  • #2504 DistributedCacheStateDataFormatter tries to unprotect null string
  • #2499 fix ??-operator priority
  • #2492 Refresh token is not redacted
  • #2446 ReturnUrl in CustomRedirectResult?
  • #2441 CloneWithScopes in ApiResource does not clone DisplayName
  • #2358 Filter identity scopes and offline_access when no explicit scopes are specificed in client credentials
  • #2336 Fix incorrect log message
  • #2251 IdentityServer might log tokens in case of error

new feature

  • #2440 Add built-in support for Confirmation (cnf)

enhancements

  • #2525 enable default client validator by default
  • #2518 Add AsNoTracking for readonly queries
  • #2517 Add explicit FK properties in EF entities to allow EF Core DataSeeding
  • #2514 Add more strict cache control headers when softer headers are already added by HttpContext.SignInAsync
  • #2513 Make AddScriptCspHeaders and AddStyleCspHeaders public
  • #2512 Add parameters to IntrospectionRequestValidationResult - #2388
  • #2509 Update all projects
  • #2508 Move all repos to ASP.NET Core 2.1
  • #2506 add invalid uri scheme validation
  • #2489 IdentityServerAuthenticationService doesn't work well with the new dynamic/policy auth schemes in 2.1
  • #2469 EndSession class should be public?
  • #2460 Create abstractions package for Storage models and interfaces
  • #2434 Consider redirect uri scheme blocked list
  • #2402 IdentityServer4.AspNetIdentity's ProfileService readonly filelds should be protected
  • #2393 Add details to logError in TokenRequestValidator
  • #2374 Make client secret optional while parsing basic authentication secret
  • #2359 During the cleanup token process, add support for an event when token is expired.
  • #2357 Dont log SecurityTokenExpiredException as error, since it is not
  • #2353 Sign nuget packages
  • #2300 update the generated EF sql files
  • #2299 Extract JWT payload creation to extension method
  • #2298 Extension Grant flows need all the data of the request at the final build of the claims.
  • #2285 Consider more metadata for clients and resources
  • #2280 Client missing description while EF Client has it.
  • #2264 ClientSecret exceeds the MaxLength value
  • #2249 Consider Properties on ApiResource and IdentityResource EF models
  • #2218 GetErrorContextAsync does not always return description.
  • #2055 Consider create datetime on ClientSecret

breaking change

  • #2524 Remove obsolete constructor on DefaultCustomTokenValidator
Assets 2
Loading