This repository has been archived by the owner on Jul 31, 2024. It is now read-only.
2.2
As part of this release we had 16 issues closed.
bugs
- #2224 RequireCspFrameSrcForSignout = false does not sign out websites using front channel
- #2214 GetAcrValues() should call ToArray() internally
- #2176 Allow client ids with spaces in check session endpoint
- #2173 PublicOrigin with the value empty string results in invalid Issuer
- #2121 explicitly set the default value of base target in html response from AuthorizeResult
- #2080 Potential URL host encoding
enhancements
- #2220 Add ws-fed wsignoutcleanup support to front-channel signout notification
- #2219 Move IsPkceClient to UI
- #2211 Hide index view when not in development
- #2210 Add Events for grant management
- #2204 Split controllers in local login/logout and external challenge/callback
- #2200 Add client configuration validation infrastructure
- #2199 Added events for granted/denied consent
- #2194 Enhance scope validation to detect duplicates
- #2035 Add Content-Security-Policy options
- #1609 Consider adding events for introspection events