This library uses semantic versioning and follows Okta's library version policy. In short, we don't make breaking changes unless the major version changes!
To stay aligned with the official .Net Framework Support Policy, this library now supports .Net Framework version 4.6.2 or later and has dropped support for earlier framework versions. Please be sure to update your deployed runtime to .NET Framework 4.6.2 or later to continue to use this library.
In previous versions, the OktaMvcOptions exposed the SecurityTokenValidated and AuthenticationFailed events you could hook into. Starting in 2.x series, the OktaMvcOptions exposes the OpenIdConnectEvents property which allows you to hook into all the events provided by the uderlying OIDC middleware.
Before:
public class Startup
{
public void Configuration(IAppBuilder app)
{
app.UseOktaMvc(new OktaMvcOptions()
{
// ... other configuration options removed for brevity ...
AuthenticationFailed = OnAuthenticationFailed,
});
}
public async Task OnAuthenticationFailed(AuthenticationFailedNotification<OpenIdConnectMessage, OpenIdConnectAuthenticationOptions> notification)
{
await Task.Run(() =>
{
notification.Response.Redirect("{YOUR-EXCEPTION-HANDLING-ENDPOINT}?message=" + notification.Exception.Message);
notification.HandleResponse();
});
}
}Now:
app.UseOktaMvc(new OktaMvcOptions()
{
// ... other configuration options removed for brevity ...
OpenIdConnectEvents = new OpenIdConnectAuthenticationNotifications
{
AuthenticationFailed = OnAuthenticationFailed,
},
});In previous versions, the OktaMvcOptions exposed the OnTokenValidated, OnOktaApiFailure, OnUserInformationReceived and OnAuthenticationFailed events you could hook into. Starting in 4.x series, the OktaMvcOptions exposes the OpenIdConnectEvents property which allows you to hook into all the events provided by the uderlying OIDC middleware.
Before:
public class Startup
{
public void ConfigureServices(IServiceCollection services)
{
services.AddOktaMvc(new OktaMvcOptions
{
// ... other configuration options removed for brevity ...
OnOktaApiFailure = OnOktaApiFailure,
OnAuthenticationFailed = OnAuthenticationFailed,
});
}
public async Task OnOktaApiFailure(RemoteFailureContext context)
{
await Task.Run(() =>
{
context.Response.Redirect("{YOUR-EXCEPTION-HANDLING-ENDPOINT}?message=" + context.Failure.Message);
context.HandleResponse();
});
}
public async Task OnAuthenticationFailed(AuthenticationFailedContext context)
{
await Task.Run(() =>
{
context.Response.Redirect("{YOUR-EXCEPTION-HANDLING-ENDPOINT}?message=" + context.Exception.Message);
context.HandleResponse();
});
}
}Now:
public class Startup
{
public void ConfigureServices(IServiceCollection services)
{
services.AddOktaMvc(new OktaMvcOptions
{
// ... other configuration options removed for brevity ...
OpenIdConnectEvents = new OpenIdConnectEvents
{
OnAuthenticationFailed = OnAuthenticationFailed,
OnRemoteFailure = OnOktaApiFailure,
},
});
}
}If you have questions about this library or about the Okta APIs, post a question on our Developer Forum.
If you find a bug or have a feature request for this library specifically, post an issue here on GitHub.