summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Adds OAuth2 packages to DotNetOpenAuth package.v4.2.1.13026Andrew Arnott2013-01-261-0/+4
|
* Incremented build version.Andrew Arnott2013-01-241-1/+1
|
* Remove the beta tag from v4.2 builds.v4.2.0.13024Andrew Arnott2013-01-241-1/+1
|
* OAuth2 NuGet packages no longer version separately.Andrew Arnott2012-12-273-8/+2
|
* Switches to session cookies.Andrew Arnott2012-12-261-1/+1
|
* Fixes build break in .NET 3.5 builds.Andrew Arnott2012-12-261-6/+11
|
* StyleCop fixes.Andrew Arnott2012-12-264-35/+38
|
* Fixes timeout in unit tests.Andrew Arnott2012-12-265-29/+60
|
* Whitespace fixes.Andrew Arnott2012-12-251-61/+61
|
* Replaces locking with thread-affinitized RNGs.Andrew Arnott2012-12-251-17/+35
|
* Mitigates timing attack on random number generator.Andrew Arnott2012-12-252-5/+29
|
* Merge branch 'v4.1'Andrew Arnott2012-12-246-5/+36
|\
| * Sensitive message information is now masked from logging.Andrew Arnott2012-12-235-3/+30
| | | | | | | | Fixes #243
| * Move the bool assignment inside the try catch to allow analysis tool to pass.Mike Roest2012-12-211-1/+1
| |
| * Merge of pull request to avoid crashes when reporting and logging failes. ↵Andrew Arnott2012-12-171-1/+5
| |\ | | | | | | | | | Closes #241
| | * StyleCop fixAndrew Arnott2012-12-171-1/+1
| | |
| | * Add additional Exception handling to prevent a process crash on a Logger ↵Mike Roest2012-12-171-1/+5
| |/ | | | | | | Exception during SendStatsAsync
* | Replaces use of ASP.NET session id with random key.Andrew Arnott2012-12-244-11/+82
| | | | | | | | Fixes #229
* | Fixed stylecop errors.Andrew Arnott2012-12-241-1/+7
| |
* | Access token responses now encode expires as number.Andrew Arnott2012-12-246-5/+60
| | | | | | | | Fixes #223
* | Exposes MicrosoftClient.appId as a protected property.Andrew Arnott2012-12-241-0/+7
| | | | | | | | Fixes #239
* | CreateAccessToken reveals username to hostAndrew Arnott2012-12-247-6/+150
| | | | | | | | | | | | | | IAuthorizationServerHost.CreateAccessToken now has access to authoring usernames. Fixes #219
* | Fixes StyleCop errors.Andrew Arnott2012-12-241-6/+6
| |
* | Adjusts verbosity levels of HTTP error logging.Andrew Arnott2012-12-241-5/+16
| | | | | | | | Fixes #244
* | Verifies that client credential grants receive approved scope in response.Andrew Arnott2012-12-241-0/+28
| | | | | | | | Closes #242
* | Adds ability for OAuth 2 clients to accept deeper access token JSON responses.Andrew Arnott2012-12-244-0/+27
| | | | | | | | Fixes #168
* | Merge branch 'v4.1'Andrew Arnott2012-12-0226-38/+338
|\ \ | |/ | | | | | | | | | | Conflicts: src/DotNetOpenAuth.OAuth2.ResourceServer/OAuth2/StandardAccessTokenAnalyzer.cs src/DotNetOpenAuth.Test/OAuth2/OAuth2TestBase.cs src/version.txt
| * Fixes NetworkCredentialApplicator on first request.Andrew Arnott2012-12-021-1/+3
| | | | | | | | Fixes #204
| * Incremented versionAndrew Arnott2012-11-281-1/+1
| |
| * Updates Microsoft account login OAuth2 endpoints. Closes #236Andrew Arnott2012-11-271-2/+2
| |\
| | * Updating Microsoft account OAuth endpointsIlya Grebnov2012-11-271-2/+2
| |/
| * Adds facebook email retrieval to Facebook logins. Fixes #208Andrew Arnott2012-11-271-2/+4
| |\
| | * More Stylecop fixesAndrew Arnott2012-11-271-1/+0
| | |
| | * Style fix.Andrew Arnott2012-11-271-3/+3
| | |
| | * Update src/DotNetOpenAuth.AspNet/Clients/OAuth2/FacebookClient.csJason Kulatunga2012-11-271-1/+4
| |/ | | | | | | Retrive the facebook user's email as well as the rest of their default user data. 
| * Fixes stylecop messages.Andrew Arnott2012-11-271-2/+7
| |
| * Merge pull request #235 from dotnetjunky/v4.1Andrew Arnott2012-11-264-13/+112
| |\ | | | | | | | | | Fix bug in the LinkedInClient not working Fixes #232
| | * Fix bug in the LinkedInClient not working because the token manager class ↵Microsoft2012-11-264-13/+112
| |/ | | | | | | used does not persist the access token.
| * Fixes StyleCop errorAndrew Arnott2012-11-121-1/+1
| |
| * Fixes an InternalErrorException thrown when decoding corrupted access tokens.Andrew Arnott2012-11-112-2/+2
| | | | | | | | Fixes #178
| * Adds more token decoding tests.Andrew Arnott2012-11-112-10/+65
| |
| * Fixes another OOM exception while decoding corrupted tokens.Andrew Arnott2012-11-111-1/+1
| |
| * Allows resource servers to receive unencrypted access tokens.Andrew Arnott2012-11-111-2/+1
| |
| * Wraps IOException with ProtocolException while decoding access tokens.Andrew Arnott2012-11-111-1/+7
| | | | | | | | Related to #178
| * Enforces signing of access tokens at auth serverAndrew Arnott2012-11-113-3/+16
| |
| * Avoids OOM exceptions from ResourceServerAndrew Arnott2012-11-116-9/+40
| | | | | | | | Related to #178
| * Fixes NullReferenceException on missing keysAndrew Arnott2012-11-111-0/+5
| | | | | | | | Fixes #193
| * Fixes HTTP Basic auth challenge to include realmAndrew Arnott2012-11-111-1/+7
| | | | | | | | Fixes #189
| * Fixes access token expiration check in clientAndrew Arnott2012-11-101-1/+1
| | | | | | | | Fixes #174
| * Marks SelectorButton as serializableAndrew Arnott2012-11-101-0/+1
| | | | | | | | Fixes #188
| * Fixes exception thrown on missing access tokenAndrew Arnott2012-11-103-0/+48
| | | | | | | | | | | | | | | | | | The resource server was throwing an ArgumentException when an HTTP Authorization header appeared with a value of "Bearer " but no access token. We now throw a ProtocolException that can produce the appropriate error to the client. Fixes #230
| * Fixes build breakAndrew Arnott2012-11-101-0/+4
| |
| * Adds AuthorizationServer.HandleTokenRequest(HttpRequestMessage) overload.Andrew Arnott2012-11-101-0/+14
| | | | | | | | Fixes #210
| * Fixes Twitter auth to not force re-login the user.Andrew Arnott2012-11-101-1/+1
| | | | | | | | Fixes #231
| * Fixes AsHttpResposneMessage() exception when response has no stream.Andrew Arnott2012-11-022-3/+15
| | | | | | | | Fixes #226
| * Incremented version.Andrew Arnott2012-10-291-2/+2
| |
* | Adds a LinkedIn interop test.Andrew Arnott2012-11-221-0/+23
| | | | | | | | Part of investigation of issue #232
* | Adds log message when XrdsPublisher transfers to another page.Andrew Arnott2012-11-131-0/+1
| | | | | | | | Fixes #180
* | Adds ClientBase.AuthorizeRequest overloads that accept WebHeaderCollection.Andrew Arnott2012-11-112-3/+42
| | | | | | | | Fixes #119
* | ASPXCodeBehind noise.Andrew Arnott2012-10-306-0/+35
| |
* | Authorization servers can override the granted scopes for all grant types.Andrew Arnott2012-10-3011-65/+189
| | | | | | | | | | | | This change adds the ability for authorization servers to override the granted scopes of client credential and resource owner password grant types. Fixes #225
* | Fixes build break due to StyleCop message.Andrew Arnott2012-10-291-1/+0
| |
* | Merge remote-tracking branch 'aarnott/master'Andrew Arnott2012-10-2916-31/+118
|\ \
| * | Fixed AccessTokenResult API to be clearerAndrew Arnott2012-07-227-7/+48
| | | | | | | | | | | | | | | | | | The AccessTokenResult constructor accepts an AccessToken, when it should only accept an AuthorizationServerAccessToken so it's clear what an auth server host must create so that it's serializable. This fixes that.
| * | Adds AuthorizationServer.DecodeRefreshTokenAndrew Arnott2012-07-209-24/+70
| | | | | | | | | | | | | | | | | | And a unit test. Fixes #182
* | | user_xrds.aspx samples now utilize GetPublicFacingUrl method.Andrew Arnott2012-10-292-4/+6
| | | | | | | | | | | | Fixes #199
* | | Promotes MessagingUtilities.GetPublicFacingUrl to public method.Andrew Arnott2012-10-291-57/+57
| | | | | | | | | | | | Fixes #198
* | | Merge branch 'v4.1'Andrew Arnott2012-10-297-3/+185
|\ \ \ | | |/ | |/| | | | | | | Conflicts: src/version.txt
| * | Removed/adjusted NuGet dependencies.Andrew Arnott2012-10-291-2/+1
| | |
| * | Fixes web.config merge of DotNetOpenAuth.Ultimate on .NET 4.xAndrew Arnott2012-10-294-1/+149
| | | | | | | | | | | | Installing DotNetOpenAuth.Ultimate on .NET 4.x would add a redundant uri config section, leading to runtime error.
| * | Fixes bad web.config merge for OpenID RP package on .NET 4.5Andrew Arnott2012-10-292-0/+35
| | | | | | | | | | | | Installing DotNetOpenAuth.OpenId.RelyingParty when targeting .NET 4.5 would leave out the openid config section from web.config file, leading to runtime error.
| * | Incremented version.Andrew Arnott2012-10-161-2/+2
| | |
* | | Merge branch 'v4.1'Andrew Arnott2012-10-1490-30576/+3202
|\ \ \ | |/ /
| * | SubType noise.Andrew Arnott2012-10-143-0/+14
| | |
| * | Fixes TraceSwitch tracing to filter based on configuration.Andrew Arnott2012-10-101-30/+90
| | | | | | | | | | | | Fixes #214
| * | Added OutgoingWebResponse.AsHttpResponseMessage extension method.Andrew Arnott2012-10-092-1/+54
| | |
| * | Reverted change from last merge that shouldn't be in v4.1.Andrew Arnott2012-10-071-1/+1
| | |
| * | Merge branch 'v4.0' into v4.1Andrew Arnott2012-10-072-5/+14
| |\ \
| | * | Fixed build break in v4.0.Andrew Arnott2012-10-071-1/+1
| | | |
| | * | Fixes failing ASP.NET tests. Closes #211Andrew Arnott2012-10-021-4/+13
| | |\ \
| | | * | Whitespace fixes.Andrew Arnott2012-10-021-2/+2
| | | | |
| | | * | Fix some unit tests failing.Microsoft2012-10-021-4/+13
| | |/ /
| | * | Fixed broken runtime due to bad assemblyinfo attribute.Andrew Arnott2012-10-021-1/+1
| | | |
| * | | Fixed broken runtime due to bad assemblyinfo attribute.v4.1.2.12274Andrew Arnott2012-09-301-1/+1
| | | |
| * | | Incremented version.Andrew Arnott2012-09-291-2/+2
| | | |
| * | | Merge branch 'v4.0' into v4.1v4.1.1.12273Andrew Arnott2012-09-290-0/+0
| |\ \ \ | | |/ /
| | * | Adjusted AssemblyInfo.cs to be unique for each assembly.Andrew Arnott2012-09-2931-256/+89
| | | | | | | | | | | | | | | | This should fix nuget pdb package submission to symbolsource.org
| * | | Adjusted AssemblyInfo.cs to be unique for each assembly.Andrew Arnott2012-09-2931-265/+32
| | | | | | | | | | | | | | | | This should fix nuget pdb package submission to symbolsource.org
| * | | Merge branch 'v4.0' into v4.1Andrew Arnott2012-09-291-12/+3
| |\ \ \ | | |/ /
| | * | Fixes NullReferenceException in AspNet.OpenAuthSecurityManager.Andrew Arnott2012-09-291-12/+3
| | | | | | | | | | | | | | | | | | | | This was reported at: http://stackoverflow.com/questions/12235395/openauth-requestauthentication-throws-null-ref-in-vs2012-web-forms-template/12240150#12240150 It is due to fields being left uninitialized by the constructors yet assumed to be non-null by all or some public methods.
| * | | Added missing folder that led to build break.Andrew Arnott2012-09-291-0/+0
| | | |
| * | | Added missing xml doc comment line.Andrew Arnott2012-09-291-0/+1
| | | |
| * | | Merge branch 'v4.0' into v4.1Andrew Arnott2012-09-299-10/+54
| |\ \ \ | | |/ /
| | * | Mitigates the XML DTD DoS attack from expanding entities.Andrew Arnott2012-09-296-9/+37
| | | | | | | | | | | | | | | | Fixes #209
| | * | Fixed bug in OpenID Provider MVC sample that allowed users to log in as others.Andrew Arnott2012-09-261-0/+13
| | | | | | | | | | | | | | | | Fixes #207
| | * | Fix for unhandled exception in some partial trust environments (mono?).Andrew Arnott2012-09-201-0/+4
| | | |
| | * | Fixed bug in CustomStore.GetKeys enumeration.Andrew Arnott2012-09-201-1/+2
| | | | | | | | | | | | | | | | This bug only existed in the OpenIdProviderWebForms sample. The OpenIdRelyingPartyWebForms sample's copy of this file already had the fix in it.
| | * | Incremented version.Andrew Arnott2012-06-301-2/+2
| | | |
| * | | System.Net.Http added as a reference for .NET 4.5 targeting projects.Andrew Arnott2012-09-271-3/+0
| | | |
| * | | Added NuGet package dependency and fixed build breaks in samples.Andrew Arnott2012-09-276-4/+35
| | | |
generated by cgit v1.1 at 2025-05-25 21:06:26 +0000