Update nuget non-major dependencies #16
Merged
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
1.4.1
->1.8.2
4.2.0
->4.5.0
6.0.0
->6.0.1
6.0.0
->6.0.3
6.15.1
->6.27.0
6.15.1
->6.27.0
Release Notes
Azure/azure-sdk-for-net
v1.8.2
1.8.2 (2023-02-08)
Bugs Fixed
AzurePowerShellCredential
which would misinterpret AAD errors with the need to install PowerShell. #31998ManagedIdentityCredential
. [#32498])(https://github.com/Azure/azure-sdk-for-net/issues/32498)v1.8.1
1.8.1 (2020-01-11)
Key Bug Fixes
Microsoft.Bcl.AsyncInterfaces
dependency on .NET 5 to avoid build issues in applications targeting .NET 5.v1.8.0
1.8.0 (2020-01-06)
Added
AzureSasCredential
and its respective policy.Key Bug Fixes
v1.7.0
1.7.0 (2022-09-19)
Features Added
AdditionallyAllowedTenants
to the following credential options to force explicit opt-in behavior for multi-tenant authentication:AuthorizationCodeCredentialOptions
AzureCliCredentialOptions
AzurePowerShellCredentialOptions
ClientAssertionCredentialOptions
ClientCertificateCredentialOptions
ClientSecretCredentialOptions
DefaultAzureCredentialOptions
OnBehalfOfCredentialOptions
UsernamePasswordCredentialOptions
VisualStudioCodeCredentialOptions
VisualStudioCredentialOptions
TenantId
toDefaultAzureCredentialOptions
to avoid having to setInteractiveBrowserTenantId
,SharedTokenCacheTenantId
,VisualStudioCodeTenantId
, andVisualStudioTenantId
individually.Bugs Fixed
user_impersonation
#30647Breaking Changes
AuthenticationFailedException
if the requested tenant ID doesn't match the credential's tenant ID, and is not included in theAdditionallyAllowedTenants
option. Applications must now explicitly add additional tenants to theAdditionallyAllowedTenants
list, or add '*' to list, to enable acquiring tokens from tenants other than the originally specified tenant ID. See BREAKING_CHANGES.md.ManagedIdentityCredential
token caching added in 1.7.0-beta.1 has been removed from this release and will be added back in 1.8.0-beta.1v1.6.1
1.6.1 (2022-08-08)
Bugs Fixed
AZURE_REGIONAL_AUTHORITY_NAME
support inClientCertificateCredential
#29112SharedTokenCacheCredential
default behavior #28029Other Changes
TokenCacheRefreshArgs
andEnvironmentCredential
(Community contributions, courtesy of pmaytak and goenning)Acknowledgments
Thank you to our developer community members who helped to make Azure Identity better with their contributions to this release:
v1.6.0
1.6.0 (2020-10-28)
Added
HttpClientTransport(HttpMessageHandler)
constructor overload.JsonPatchDocument
type.Fixed
AzureEventSourceListener
class that sometimes resulted in aNullReferenceException
in theEventSource
.int.MaxValue
.v1.5.0
1.5.0 (2022-08-24)
Bugs Fixed
AddAzureClientsCore
overload from IntelliSense, as its usage is not intuitive.dotnet/runtime
v6.0.1
: .NET 6.0.1Release
AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet
v6.27.0
Servicing release
Set maximum depth for Newtonsoft parsing.
https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/2024
Improve metadata failure message.
https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/2010
Validate size of symmetric signatures.
https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/2008
Added property TokenEndpoint to BaseConfiguration.
https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/1998
v6.26.1
=========
Bug Fixes:
Releasing a Hotfix for Wilson 6.26.0 that reverts async/await changes made in #1996 to address a performance reduction issue.
v6.26.0
Compare Source
Servicing release
Introducing a new boolean TokenValidationParameter LogTokenId.
https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/2002
Update System.Text.Encodings.Web
https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/1997
Update ValidateToken call stack fully async
https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/1996
JsonWebTokenHandler to return the JsonWebToken on validation failure
https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/1989
Update documentation of DefaultTokenLifetimeInMinutes
https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/1988
v6.25.1
Compare Source
Servicing release
.net was throwing when JWT tokens contained claims that used escaped characters.
https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/1975
Fixed Typo in comments
https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/1971
Added inner exception to help diagnose when reading JWT tokens fails.
https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/1968
Updated comments to improve understanding of RoleClaimTypeRetriever and NameClaimTypeRetriever
https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/1960
v6.25.0
Compare Source
Add Instance property bag that is cleared when Clone is called.
Added comments to JsonWebTokenHandler and JwtSecurityTokenHandler to emphasize that ReadToken does not validate the token.
#1952
#1954
v6.24.0
Compare Source
Single feature to control if exceptions are logged for Audience and Issuer failures.
Sometimes multiple policies are used, when a subsequent policy succeeds the upper layer can decide if previous exceptions should be logged.
#1949
v6.23.1
Compare Source
A simple 'dot' release to fix an issue where JsonWebTokenHandler virtual CreateClaimsIdentity was not called.
https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/1940
v6.23.0
Compare Source
=========
New Features:
Microsoft.IdentityModel has two assemblies to manipulate JWT tokens:
System.IdentityModel.Tokens.Jwt, which is the legacy assembly. It defines JwtSecurityTokenHandler class to manipulate JWT tokens.
Microsoft.IdentityModel.JsonWebTokens, which defines the JsonWebToken class and JsonWebTokenHandler, more modern, and more efficient.
When using JwtSecurityTokenHandler, the short named claims (oid, tid), used to be transformed into the long named claims (with a namespace). With JsonWebTokenHandler this is no longer the case, but when you migrate your application from using JwtSecurityTokenHandler to JsonWebTokenHandler (or use a framework that does), you will only get original claims sent by the IdP. This is more efficient, and occupies less space, but might trigger a lot of changes in your application. In order to make it easier for people to migrate without changing their app too much, this PR offers extensibility to re-add the claims mapping.
Bug Fixes:
v6.22.1
Compare Source
=========
New Features:
Microsoft.IdentityModel has two assemblies to manipulate JWT tokens:
System.IdentityModel.Tokens.Jwt, which is the legacy assembly. It defines JwtSecurityTokenHandler class to manipulate JWT tokens.
Microsoft.IdentityModel.JsonWebTokens, which defines the JsonWebToken class and JsonWebTokenHandler, more modern, and more efficient.
When using JwtSecurityTokenHandler, the short named claims (oid, tid), used to be transformed into the long named claims (with a namespace). With JsonWebTokenHandler this is no longer the case, but when you migrate your application from using JwtSecurityTokenHandler to JsonWebTokenHandler (or use a framework that does), you will only get original claims sent by the IdP. This is more efficient, and occupies less space, but might trigger a lot of changes in your application. In order to make it easier for people to migrate without changing their app too much, this PR offers extensibility to re-add the claims mapping.
Bug Fixes:
v6.22.0
Compare Source
=========
New Features:
Unmasked non-PII properties in log messages -
In Microsoft.IdentityModel logs, previously only system metadata (DateTime, class name, httpmethod etc.) was displayed in clear text. For all other log arguments, the type was being logged to prevent Personally Identifiable Information (PII) from being displayed when ShowPII flag is turned OFF. To improve troubleshooting experience non-PII properties - Issuer, Audience, Key location, Key Id (kid) and some SAML constants will now be displayed in clear text. See issue #1903 for more details.
Prefix Wilson header message to the first log message -
To always log the Wilson header (Version, DateTime, PII ON/OFF message), EventLogLevel.LogAlways was mapped to LogLevel.Critical in Microsoft.IdentityModel.LoggingExtensions.IdentityLoggerAdapter class which caused confusion on why header was being displayed as a fatal log.
To address this, header is now prefixed to the first message logged by Wilson and separated with a newline. EventLogLevel.LogAlways has been remapped to LogLevel.Trace. See issue #1907 for more details.
Bug Fixes:
Copy the IssuerSigningKeyResolverUsingConfiguration delegate in Clone() #1909
v6.21.0
Compare Source
Dependency Updates:
Updated Newtonsoft dependency to 13.0.2 #1902
Bug Fixes:
Add M.IM.TestExtensions to strong name by pass. #1897
Add early alerting for governance #1896
Adjust log level #1893
Fundamentals
Update newtonsoft per governance report #1890
v6.20.0
Compare Source
New Feature:
Microsoft.IdentityModel now provides a LoggerContext class to aid with debugging. See issue #1876 for details.
Bug Fixes:
The
cty
claim is now optional. See issue #1861 for details.The signature of the token is no longer logged. See issue #1880 for details.
ValidateHash method Alg is null when token is a JWE token. See issue #1680 for details.
Fixed the issue the compaction actions are queued but potentially never got started. See issue #1871 for details.
v6.19.0
Compare Source
Enhancements
v6.18.0
Compare Source
Enhancements
v6.17.0
Compare Source
New Features
v6.16.0
Compare Source
Enhancements
Configuration
📅 Schedule: Branch creation - "before 07:00 on Thursday" in timezone Europe/Oslo, Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR has been generated by Mend Renovate. View repository job log here.