7.1.0-preview

7.1.0-preview

Include IdentityModel 6.32.0 release updates, including AAD specific signing key issuer validator and fix perf regression.

6.32.0

New features:

• Adding an AAD specific signing key issuer validator. See issue #2134 for details.
• Better support for WsFederation (#2100)

Bug fixes

• Address perf regression introduced in 6.31.0 (#2131)

7.0.0-preview

7.0.0-preview

Join the 7x discussion and provide your feedback!

Relevant PRs for supporting .NET 8:
#2108
#2121
#2122

Remove net45, see #2123

JwtSecurityTokenConverter, see #2117

6.31.0

This release contains work from the following PRs and commits:

• Introduce ConfigurationValidationException(#2076)
• Disarm security artifacts(#2064)
• Throw SecurityTokenMalformedTokenException on malformed tokens(#2080)
• Add ClaimsMapping to JsonWebTokenHandler
  8e7f07e

6.30.1

This release contains work from the following PRs:

• Modified token validation to be async throughout the call graph #2075
• Enforce key sizes when creating HMAC #2072
• Fix AotCompatibilityTests #2066
• Use up-to-date "now", in case take long time to get Metadata #2063

This release addresses #1743 and, as such, going forward if the SymmetricKey is smaller than the required size for HMAC IdentityModel will throw an ArgumentOutOfRangeException which is the same exception when the SymmetricKey is smaller than the minimum key size for encryption.

6.30.0

Beginning in release 6.28.0 the library stopped throwing SecurityTokenUnableToValidateException. This version (6.30.0) marks the exception type as obsolete to make this change more discoverable. Not including it in the release notes explicitly for 6.28.0 was a mistake. This exception type will be removed completely in the next few months as the team moves towards a major version bump. More information on how to replace the usage going forward can be found here: https://aka.ms/SecurityTokenUnableToValidateException

Indicate that a SecurityTokenDescriptor can create JWS or JWE
#2055
Specify 'UTC' in log messages
ceb10b1
Fix order of log messages
05eeeb5

Fixed issues with matching Jwt.Kid with a X509SecurityKey.x5t
#2057
#2061

Marked Exception that is no longer used as obsolete
#2060

Added support for AesGcm on .NET 6.0 or higher
85fa86a

First round of triming analysis preperation for AOT
#2042

Added new API on TokenHandler.ValidateTokenAsync(SecurityToken ...) implemented only on JsonWebTokenHandler.
#2056

6.29.0

• Add BootstrapRefreshInterval (#2052)
• Added net462 target (#2049)
• Create the configuration cache in the BaseConfigurationManager class (#2048)

6.28.1

• Bug fix where internal cache was not instantiated #2045

6.28.0

• Update Wilson logs with aka.ms pointers to known wikis in #2027
• Fix typo in documentation #2034
• Introduce a LKG configuration cache to store each valid base configuration instead of a single entry of configuration #2007
• Add encryption keys to base configuration #2023
• Updated CHANGELOG link #2026

6.27.0

Servicing release
Set maximum depth for Newtonsoft parsing.
#2024
Improve metadata failure message.
#2010
Validate size of symmetric signatures.
#2008
Added property TokenEndpoint to BaseConfiguration.
#1998