summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Merge branch 'v4.0' into v4.1origin/v4.1Andrew Arnott2013-11-252-3/+3
|\
| * Applies fix for #209 to one more entrypoint for parsing XML that was missed ↵origin/v4.0Andrew Arnott2013-11-251-1/+1
| | | | | | | | initially.
| * Merge remote-tracking branch 'origin/v4.0' into v4.0Andrew Arnott2013-02-261-1/+1
| |\
| * | Fixes log message when return_to match failures occur.Andrew Arnott2013-02-261-2/+2
| | | | | | | | | | | | Fixes #249
* | | Fixes compile error on .NET 3.5Andrew Arnott2013-04-221-1/+1
| | |
* | | Fixes exception thrown from unusual language-culture combinations in OpenID ↵Andrew Arnott2013-03-171-2/+11
|\ \ \ | | | | | | | | | | | | Sreg responses. Closes #261.
| * | | StyleCop and comment touch-ups.Andrew Arnott2013-03-171-4/+7
| | | |
| * | | A possible fix for exception in ClaimsResponse.Culture, if Language + ↵AkosLukacs2013-03-171-1/+7
|/ / / | | | | | | | | | | | | | | | | | | | | | Country doesn't make a valid culture. https://github.com/DotNetOpenAuth/DotNetOpenAuth/issues/260 Just a simple try-catch. According to this comment at SO http://stackoverflow.com/a/12375100 using try-catch is the fastest is you don't expect a continuous stream of illegal combinations.
* | | Adds Content-Length header to direct responses.Andrew Arnott2013-03-091-0/+2
| | |
* | | Merge remote-tracking branch 'origin/v4.1' into v4.1Andrew Arnott2013-03-0349-84/+748
|\ \ \
| * \ \ Merge remote-tracking branch 'aarnott/v4.1' into v4.1Andrew Arnott2013-02-033-1/+9
| |\ \ \
| | * | | Adds another catch block to the logger initializer.Andrew Arnott2013-01-121-0/+2
| | | | |
| | * | | Fixes StyleCop break.Andrew Arnott2013-01-121-1/+1
| | | | |
| | * | | Accepted pull request #245Andrew Arnott2013-01-121-1/+2
| | |\ \ \
| | | * | | Update to support Front_End_Https header used by some loadbalancers for SSL ↵Mike Roest2013-01-121-1/+2
| | |/ / / | | | | | | | | | | | | | | | terminiation. As Per http://en.wikipedia.org/wiki/List_of_HTTP_header_fields#Common_non-standard_request_headers
| | * | | Skips the UriIdentifier scheme workaround on Mono.Andrew Arnott2013-01-121-0/+5
| | | | | | | | | | | | | | | | | | | | | | | | | Mono doesn't support it. Thanks to Justin Nel <dogbertuk2000@gmail.com> for helping identify this mono limitation.
| * | | | Merge in pull request #247Andrew Arnott2013-02-031-1/+6
| |\ \ \ \ | | |/ / / | |/| | |
| | * | | Touch up on community contribution.Andrew Arnott2013-02-031-6/+7
| | | | |
| | * | | Update samples/OpenIdProviderMvc/Controllers/OpenIdController.csSergey Kosivchenko2013-02-031-2/+6
| |/ / / | | | | | | | | | | | | Previous version did not work, if user had already authorized on provider, and use to authorizing on consumer ids with uppercase symbol, for example http://provider.com/user/AlGol 
| * | | Fixes KeyNotFoundException in logging.Andrew Arnott2013-01-011-1/+1
| | | |
| * | | Sensitive message information is now masked from logging.Andrew Arnott2012-12-235-3/+30
| | | | | | | | | | | | | | | | Fixes #243
| * | | Move the bool assignment inside the try catch to allow analysis tool to pass.Mike Roest2012-12-211-1/+1
| | | |
| * | | Merge of pull request to avoid crashes when reporting and logging failes. ↵Andrew Arnott2012-12-171-1/+5
| |\ \ \ | | | | | | | | | | | | | | | Closes #241
| | * | | StyleCop fixAndrew Arnott2012-12-171-1/+1
| | | | |
| | * | | Add additional Exception handling to prevent a process crash on a Logger ↵Mike Roest2012-12-171-1/+5
| |/ / / | | | | | | | | | | | | Exception during SendStatsAsync
| * | | Fixes NetworkCredentialApplicator on first request.Andrew Arnott2012-12-021-1/+3
| | | | | | | | | | | | | | | | Fixes #204
| * | | Incremented versionAndrew Arnott2012-11-281-1/+1
| | | |
| * | | Updates Microsoft account login OAuth2 endpoints. Closes #236Andrew Arnott2012-11-271-2/+2
| |\ \ \
| | * | | Updating Microsoft account OAuth endpointsIlya Grebnov2012-11-271-2/+2
| |/ / /
| * | | Adds facebook email retrieval to Facebook logins. Fixes #208Andrew Arnott2012-11-271-2/+4
| |\ \ \
| | * | | More Stylecop fixesAndrew Arnott2012-11-271-1/+0
| | | | |
| | * | | Style fix.Andrew Arnott2012-11-271-3/+3
| | | | |
| | * | | Update src/DotNetOpenAuth.AspNet/Clients/OAuth2/FacebookClient.csJason Kulatunga2012-11-271-1/+4
| |/ / / | | | | | | | | | | | | Retrive the facebook user's email as well as the rest of their default user data. 
| * | | Fixes stylecop messages.Andrew Arnott2012-11-271-2/+7
| | | |
| * | | Merge pull request #235 from dotnetjunky/v4.1Andrew Arnott2012-11-264-13/+112
| |\ \ \ | | | | | | | | | | | | | | | Fix bug in the LinkedInClient not working Fixes #232
| | * | | Fix bug in the LinkedInClient not working because the token manager class ↵Microsoft2012-11-264-13/+112
| |/ / / | | | | | | | | | | | | used does not persist the access token.
| * | | Fixes StyleCop errorAndrew Arnott2012-11-121-1/+1
| | | |
| * | | Fixes an InternalErrorException thrown when decoding corrupted access tokens.Andrew Arnott2012-11-112-2/+2
| | | | | | | | | | | | | | | | Fixes #178
| * | | Adds more token decoding tests.Andrew Arnott2012-11-112-10/+65
| | | |
| * | | Fixes another OOM exception while decoding corrupted tokens.Andrew Arnott2012-11-111-1/+1
| | | |
| * | | Allows resource servers to receive unencrypted access tokens.Andrew Arnott2012-11-111-2/+1
| | | |
| * | | Wraps IOException with ProtocolException while decoding access tokens.Andrew Arnott2012-11-111-1/+7
| | | | | | | | | | | | | | | | Related to #178
| * | | Enforces signing of access tokens at auth serverAndrew Arnott2012-11-113-3/+16
| | | |
| * | | Avoids OOM exceptions from ResourceServerAndrew Arnott2012-11-116-9/+40
| | | | | | | | | | | | | | | | Related to #178
| * | | Fixes NullReferenceException on missing keysAndrew Arnott2012-11-111-0/+5
| | | | | | | | | | | | | | | | Fixes #193
| * | | Fixes HTTP Basic auth challenge to include realmAndrew Arnott2012-11-111-1/+7
| | | | | | | | | | | | | | | | Fixes #189
| * | | Fixes access token expiration check in clientAndrew Arnott2012-11-101-1/+1
| | | | | | | | | | | | | | | | Fixes #174
| * | | Marks SelectorButton as serializableAndrew Arnott2012-11-101-0/+1
| | | | | | | | | | | | | | | | Fixes #188
| * | | Fixes exception thrown on missing access tokenAndrew Arnott2012-11-103-0/+48
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The resource server was throwing an ArgumentException when an HTTP Authorization header appeared with a value of "Bearer " but no access token. We now throw a ProtocolException that can produce the appropriate error to the client. Fixes #230
| * | | Fixes build breakAndrew Arnott2012-11-101-0/+4
| | | |
| * | | Adds AuthorizationServer.HandleTokenRequest(HttpRequestMessage) overload.Andrew Arnott2012-11-101-0/+14
| | | | | | | | | | | | | | | | Fixes #210
| * | | Fixes Twitter auth to not force re-login the user.Andrew Arnott2012-11-101-1/+1
| | | | | | | | | | | | | | | | Fixes #231
| * | | Fixes AsHttpResposneMessage() exception when response has no stream.Andrew Arnott2012-11-022-3/+15
| | | | | | | | | | | | | | | | Fixes #226
| * | | Incremented version.Andrew Arnott2012-10-291-2/+2
| | | |
| * | | Removed/adjusted NuGet dependencies.Andrew Arnott2012-10-291-2/+1
| | | |
| * | | Fixes web.config merge of DotNetOpenAuth.Ultimate on .NET 4.xAndrew Arnott2012-10-294-1/+149
| | | | | | | | | | | | | | | | Installing DotNetOpenAuth.Ultimate on .NET 4.x would add a redundant uri config section, leading to runtime error.
| * | | Fixes bad web.config merge for OpenID RP package on .NET 4.5Andrew Arnott2012-10-292-0/+35
| | | | | | | | | | | | | | | | Installing DotNetOpenAuth.OpenId.RelyingParty when targeting .NET 4.5 would leave out the openid config section from web.config file, leading to runtime error.
| * | | Incremented version.Andrew Arnott2012-10-161-2/+2
| | | |
| * | | SubType noise.Andrew Arnott2012-10-143-0/+14
| | | |
| * | | Fixes TraceSwitch tracing to filter based on configuration.Andrew Arnott2012-10-101-30/+90
| | | | | | | | | | | | | | | | Fixes #214
| * | | Added OutgoingWebResponse.AsHttpResponseMessage extension method.Andrew Arnott2012-10-092-1/+54
| | | |
| * | | Reverted change from last merge that shouldn't be in v4.1.Andrew Arnott2012-10-071-1/+1
| | | |
| * | | Merge branch 'v4.0' into v4.1Andrew Arnott2012-10-072-5/+14
| |\ \ \ | | | |/ | | |/|
| | * | Fixed build break in v4.0.Andrew Arnott2012-10-071-1/+1
| | |/
| | * Fixes failing ASP.NET tests. Closes #211Andrew Arnott2012-10-021-4/+13
| | |\
| | | * Whitespace fixes.Andrew Arnott2012-10-021-2/+2
| | | |
| | | * Fix some unit tests failing.Microsoft2012-10-021-4/+13
| | |/
| | * Fixed broken runtime due to bad assemblyinfo attribute.Andrew Arnott2012-10-021-1/+1
| | |
* | | Fixes bad logic that reports expired tokens incorrectly.Andrew Arnott2013-03-031-1/+1
|/ /
* | Fixed broken runtime due to bad assemblyinfo attribute.v4.1.2.12274Andrew Arnott2012-09-301-1/+1
| |
* | Incremented version.Andrew Arnott2012-09-291-2/+2
| |
* | Merge branch 'v4.0' into v4.1v4.1.1.12273Andrew Arnott2012-09-290-0/+0
|\ \ | |/
| * Adjusted AssemblyInfo.cs to be unique for each assembly.Andrew Arnott2012-09-2931-256/+89
| | | | | | | | This should fix nuget pdb package submission to symbolsource.org
* | Adjusted AssemblyInfo.cs to be unique for each assembly.Andrew Arnott2012-09-2931-265/+32
| | | | | | | | This should fix nuget pdb package submission to symbolsource.org
* | Merge branch 'v4.0' into v4.1Andrew Arnott2012-09-291-12/+3
|\ \ | |/
| * Fixes NullReferenceException in AspNet.OpenAuthSecurityManager.Andrew Arnott2012-09-291-12/+3
| | | | | | | | | | This was reported at: http://stackoverflow.com/questions/12235395/openauth-requestauthentication-throws-null-ref-in-vs2012-web-forms-template/12240150#12240150 It is due to fields being left uninitialized by the constructors yet assumed to be non-null by all or some public methods.
* | Added missing folder that led to build break.Andrew Arnott2012-09-291-0/+0
| |
* | Added missing xml doc comment line.Andrew Arnott2012-09-291-0/+1
| |
* | Merge branch 'v4.0' into v4.1Andrew Arnott2012-09-299-10/+54
|\ \ | |/
| * Mitigates the XML DTD DoS attack from expanding entities.Andrew Arnott2012-09-296-9/+37
| | | | | | | | Fixes #209
| * Fixed bug in OpenID Provider MVC sample that allowed users to log in as others.Andrew Arnott2012-09-261-0/+13
| | | | | | | | Fixes #207
| * Fix for unhandled exception in some partial trust environments (mono?).Andrew Arnott2012-09-201-0/+4
| |
| * Fixed bug in CustomStore.GetKeys enumeration.Andrew Arnott2012-09-201-1/+2
| | | | | | | | This bug only existed in the OpenIdProviderWebForms sample. The OpenIdRelyingPartyWebForms sample's copy of this file already had the fix in it.
| * Incremented version.Andrew Arnott2012-06-301-2/+2
| |
* | System.Net.Http added as a reference for .NET 4.5 targeting projects.Andrew Arnott2012-09-271-3/+0
| |
* | Added NuGet package dependency and fixed build breaks in samples.Andrew Arnott2012-09-276-4/+35
| |
* | Adds overloads of ResourceServer for HttpRequestMessage.Andrew Arnott2012-09-272-5/+90
| | | | | | | | | | | | | | The GetPrincipal and GetAccessToken now better support resource servers that are written in ASP.NET WebAPI. Fixes #206
* | Adds ClientBase.CreateAuthorizingHandlerAndrew Arnott2012-09-2612-1/+2593
| | | | | | | | | | | | This method creates an HttpMessageHandler that automatically applies the OAuth 2 access token (bearer) to all outbound HTTP requests. Fixes #205
* | Merge branch 'SlowGoogleServerWorkaround' into v4.1Andrew Arnott2012-09-175-17/+128
|\ \
| * | Added ability to cache Google certificates.Andrew Arnott2011-02-095-16/+126
| | | | | | | | | | | | Something of a workaround for slow certificate handling on some servers.
* | | Fix error message.Andrew Arnott2012-08-231-1/+1
| | |
* | | Fixes a bug in posting to HTML forms in Firefox with the InfoCard selector.Andrew Arnott2012-08-231-1/+1
| | | | | | | | | | | | | | | | | | | | | If the idselector control on a page with an other control that raises a postback, then the selector is opening when using firefox with "openinfocard identity selector" addon. To fix this problem, you have to move the object tag with the identity object outside the form tag in the page. Thanks to Philipp Jenni <philipp.jenni@gmx.ch> who contributed this fix.
* | | Fixed a couple build warnings.Andrew Arnott2012-07-222-2/+2
| | |
* | | Fix NetworkCredentialApplicator verify checkAndrew Arnott2012-07-221-2/+6
| | | | | | | | | | | | Fixes #183
* | | Fixed build break for .NET 3.5 targeting.Andrew Arnott2012-07-191-0/+2
| | |
* | | More StyleCop fixesAndrew Arnott2012-07-181-7/+9
| | |
* | | Fixed StyleCop issueAndrew Arnott2012-07-181-1/+1
| | |
* | | Replaces explicit crypto algorithm use with factories.Andrew Arnott2012-07-189-14/+80
| | | | | | | | | | | | Fixes #47 which requires that FIPS compliance be an option.
* | | Removed session state from user identity pagesAndrew Arnott2012-07-132-2/+2
| | | | | | | | | | | | Thanks to Richard Collette for suggesting this efficiency improvement.
* | | Fixed ClientAuthorization .nuspec file to include the missing source file ↵Andrew Arnott2012-06-302-2/+4
| | | | | | | | | | | | from the symbols .nupkg
generated by cgit v1.1 at 2025-06-11 07:56:17 +0000