summaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* Incremented build version.Andrew Arnott2013-01-241-1/+1
|
* Remove the beta tag from v4.2 builds.v4.2.0.13024Andrew Arnott2013-01-241-1/+1
|
* OAuth2 NuGet packages no longer version separately.Andrew Arnott2012-12-271-1/+0
|
* Switches to session cookies.Andrew Arnott2012-12-261-1/+1
|
* Fixes build break in .NET 3.5 builds.Andrew Arnott2012-12-261-6/+11
|
* StyleCop fixes.Andrew Arnott2012-12-264-35/+38
|
* Fixes timeout in unit tests.Andrew Arnott2012-12-265-29/+60
|
* Whitespace fixes.Andrew Arnott2012-12-251-61/+61
|
* Replaces locking with thread-affinitized RNGs.Andrew Arnott2012-12-251-17/+35
|
* Mitigates timing attack on random number generator.Andrew Arnott2012-12-252-5/+29
|
* Merge branch 'v4.1'Andrew Arnott2012-12-246-5/+36
|\
| * Sensitive message information is now masked from logging.Andrew Arnott2012-12-235-3/+30
| | | | | | | | Fixes #243
| * Move the bool assignment inside the try catch to allow analysis tool to pass.Mike Roest2012-12-211-1/+1
| |
| * StyleCop fixAndrew Arnott2012-12-171-1/+1
| |
| * Add additional Exception handling to prevent a process crash on a Logger ↵Mike Roest2012-12-171-1/+5
| | | | | | | | Exception during SendStatsAsync
* | Replaces use of ASP.NET session id with random key.Andrew Arnott2012-12-244-11/+82
| | | | | | | | Fixes #229
* | Fixed stylecop errors.Andrew Arnott2012-12-241-1/+7
| |
* | Access token responses now encode expires as number.Andrew Arnott2012-12-246-5/+60
| | | | | | | | Fixes #223
* | Exposes MicrosoftClient.appId as a protected property.Andrew Arnott2012-12-241-0/+7
| | | | | | | | Fixes #239
* | CreateAccessToken reveals username to hostAndrew Arnott2012-12-247-6/+150
| | | | | | | | | | | | | | IAuthorizationServerHost.CreateAccessToken now has access to authoring usernames. Fixes #219
* | Fixes StyleCop errors.Andrew Arnott2012-12-241-6/+6
| |
* | Adjusts verbosity levels of HTTP error logging.Andrew Arnott2012-12-241-5/+16
| | | | | | | | Fixes #244
* | Verifies that client credential grants receive approved scope in response.Andrew Arnott2012-12-241-0/+28
| | | | | | | | Closes #242
* | Adds ability for OAuth 2 clients to accept deeper access token JSON responses.Andrew Arnott2012-12-244-0/+27
| | | | | | | | Fixes #168
* | Merge branch 'v4.1'Andrew Arnott2012-12-0225-38/+334
|\ \ | |/ | | | | | | | | | | Conflicts: src/DotNetOpenAuth.OAuth2.ResourceServer/OAuth2/StandardAccessTokenAnalyzer.cs src/DotNetOpenAuth.Test/OAuth2/OAuth2TestBase.cs src/version.txt
| * Fixes NetworkCredentialApplicator on first request.Andrew Arnott2012-12-021-1/+3
| | | | | | | | Fixes #204
| * Incremented versionAndrew Arnott2012-11-281-1/+1
| |
| * Updating Microsoft account OAuth endpointsIlya Grebnov2012-11-271-2/+2
| |
| * More Stylecop fixesAndrew Arnott2012-11-271-1/+0
| |
| * Style fix.Andrew Arnott2012-11-271-3/+3
| |
| * Update src/DotNetOpenAuth.AspNet/Clients/OAuth2/FacebookClient.csJason Kulatunga2012-11-271-1/+4
| | | | | | | | Retrive the facebook user's email as well as the rest of their default user data. 
| * Fixes stylecop messages.Andrew Arnott2012-11-271-2/+7
| |
| * Fix bug in the LinkedInClient not working because the token manager class ↵Microsoft2012-11-264-13/+112
| | | | | | | | used does not persist the access token.
| * Fixes StyleCop errorAndrew Arnott2012-11-121-1/+1
| |
| * Fixes an InternalErrorException thrown when decoding corrupted access tokens.Andrew Arnott2012-11-112-2/+2
| | | | | | | | Fixes #178
| * Adds more token decoding tests.Andrew Arnott2012-11-112-10/+65
| |
| * Fixes another OOM exception while decoding corrupted tokens.Andrew Arnott2012-11-111-1/+1
| |
| * Allows resource servers to receive unencrypted access tokens.Andrew Arnott2012-11-111-2/+1
| |
| * Wraps IOException with ProtocolException while decoding access tokens.Andrew Arnott2012-11-111-1/+7
| | | | | | | | Related to #178
| * Enforces signing of access tokens at auth serverAndrew Arnott2012-11-113-3/+16
| |
| * Avoids OOM exceptions from ResourceServerAndrew Arnott2012-11-116-9/+40
| | | | | | | | Related to #178
| * Fixes NullReferenceException on missing keysAndrew Arnott2012-11-111-0/+5
| | | | | | | | Fixes #193
| * Fixes HTTP Basic auth challenge to include realmAndrew Arnott2012-11-111-1/+7
| | | | | | | | Fixes #189
| * Fixes access token expiration check in clientAndrew Arnott2012-11-101-1/+1
| | | | | | | | Fixes #174
| * Marks SelectorButton as serializableAndrew Arnott2012-11-101-0/+1
| | | | | | | | Fixes #188
| * Fixes exception thrown on missing access tokenAndrew Arnott2012-11-103-0/+48
| | | | | | | | | | | | | | | | | | The resource server was throwing an ArgumentException when an HTTP Authorization header appeared with a value of "Bearer " but no access token. We now throw a ProtocolException that can produce the appropriate error to the client. Fixes #230
| * Adds AuthorizationServer.HandleTokenRequest(HttpRequestMessage) overload.Andrew Arnott2012-11-101-0/+14
| | | | | | | | Fixes #210
| * Fixes Twitter auth to not force re-login the user.Andrew Arnott2012-11-101-1/+1
| | | | | | | | Fixes #231
| * Fixes AsHttpResposneMessage() exception when response has no stream.Andrew Arnott2012-11-022-3/+15
| | | | | | | | Fixes #226
| * Incremented version.Andrew Arnott2012-10-291-2/+2
| |
| * Incremented version.Andrew Arnott2012-10-161-2/+2
| |
* | Adds a LinkedIn interop test.Andrew Arnott2012-11-221-0/+23
| | | | | | | | Part of investigation of issue #232
* | Adds log message when XrdsPublisher transfers to another page.Andrew Arnott2012-11-131-0/+1
| | | | | | | | Fixes #180
* | Adds ClientBase.AuthorizeRequest overloads that accept WebHeaderCollection.Andrew Arnott2012-11-112-3/+42
| | | | | | | | Fixes #119
* | Authorization servers can override the granted scopes for all grant types.Andrew Arnott2012-10-309-39/+177
| | | | | | | | | | | | This change adds the ability for authorization servers to override the granted scopes of client credential and resource owner password grant types. Fixes #225
* | Fixes build break due to StyleCop message.Andrew Arnott2012-10-291-1/+0
| |
* | Merge remote-tracking branch 'aarnott/master'Andrew Arnott2012-10-2916-31/+118
|\ \
| * | Fixed AccessTokenResult API to be clearerAndrew Arnott2012-07-227-7/+48
| | | | | | | | | | | | | | | | | | The AccessTokenResult constructor accepts an AccessToken, when it should only accept an AuthorizationServerAccessToken so it's clear what an auth server host must create so that it's serializable. This fixes that.
| * | Adds AuthorizationServer.DecodeRefreshTokenAndrew Arnott2012-07-209-24/+70
| | | | | | | | | | | | | | | | | | And a unit test. Fixes #182
* | | Promotes MessagingUtilities.GetPublicFacingUrl to public method.Andrew Arnott2012-10-291-57/+57
| | | | | | | | | | | | Fixes #198
* | | Merge branch 'v4.1'Andrew Arnott2012-10-1465-353/+764
|\ \ \ | | |/ | |/|
| * | Fixes TraceSwitch tracing to filter based on configuration.Andrew Arnott2012-10-101-30/+90
| | | | | | | | | | | | Fixes #214
| * | Added OutgoingWebResponse.AsHttpResponseMessage extension method.Andrew Arnott2012-10-092-1/+54
| | |
| * | Merge branch 'v4.0' into v4.1Andrew Arnott2012-10-071-4/+13
| |\ \
| | * | Whitespace fixes.Andrew Arnott2012-10-021-2/+2
| | | |
| | * | Fix some unit tests failing.Microsoft2012-10-021-4/+13
| | | |
| | * | Adjusted AssemblyInfo.cs to be unique for each assembly.Andrew Arnott2012-09-2929-246/+84
| | | | | | | | | | | | | | | | This should fix nuget pdb package submission to symbolsource.org
| * | | Incremented version.Andrew Arnott2012-09-291-2/+2
| | | |
| * | | Adjusted AssemblyInfo.cs to be unique for each assembly.Andrew Arnott2012-09-2929-255/+27
| | | | | | | | | | | | | | | | This should fix nuget pdb package submission to symbolsource.org
| * | | Merge branch 'v4.0' into v4.1Andrew Arnott2012-09-291-12/+3
| |\ \ \ | | |/ /
| | * | Fixes NullReferenceException in AspNet.OpenAuthSecurityManager.Andrew Arnott2012-09-291-12/+3
| | | | | | | | | | | | | | | | | | | | This was reported at: http://stackoverflow.com/questions/12235395/openauth-requestauthentication-throws-null-ref-in-vs2012-web-forms-template/12240150#12240150 It is due to fields being left uninitialized by the constructors yet assumed to be non-null by all or some public methods.
| * | | Added missing xml doc comment line.Andrew Arnott2012-09-291-0/+1
| | | |
| * | | Merge branch 'v4.0' into v4.1Andrew Arnott2012-09-297-9/+39
| |\ \ \ | | |/ /
| | * | Mitigates the XML DTD DoS attack from expanding entities.Andrew Arnott2012-09-296-9/+37
| | | | | | | | | | | | | | | | Fixes #209
| | * | Fix for unhandled exception in some partial trust environments (mono?).Andrew Arnott2012-09-201-0/+4
| | | |
| | * | Incremented version.Andrew Arnott2012-06-301-2/+2
| | | |
| | * | Updated version to v4.0.4Andrew Arnott2012-06-271-2/+2
| | | |
| * | | Added NuGet package dependency and fixed build breaks in samples.Andrew Arnott2012-09-271-0/+11
| | | |
| * | | Adds overloads of ResourceServer for HttpRequestMessage.Andrew Arnott2012-09-272-5/+90
| | | | | | | | | | | | | | | | | | | | | | | | | | | | The GetPrincipal and GetAccessToken now better support resource servers that are written in ASP.NET WebAPI. Fixes #206
| * | | Adds ClientBase.CreateAuthorizingHandlerAndrew Arnott2012-09-266-0/+213
| | | | | | | | | | | | | | | | | | | | | | | | This method creates an HttpMessageHandler that automatically applies the OAuth 2 access token (bearer) to all outbound HTTP requests. Fixes #205
| * | | Merge branch 'SlowGoogleServerWorkaround' into v4.1Andrew Arnott2012-09-175-17/+128
| |\ \ \
| | * | | Added ability to cache Google certificates.Andrew Arnott2011-02-095-16/+126
| | | | | | | | | | | | | | | | | | | | Something of a workaround for slow certificate handling on some servers.
| * | | | Fix error message.Andrew Arnott2012-08-231-1/+1
| | | | |
| * | | | Fixes a bug in posting to HTML forms in Firefox with the InfoCard selector.Andrew Arnott2012-08-231-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | If the idselector control on a page with an other control that raises a postback, then the selector is opening when using firefox with "openinfocard identity selector" addon. To fix this problem, you have to move the object tag with the identity object outside the form tag in the page. Thanks to Philipp Jenni <philipp.jenni@gmx.ch> who contributed this fix.
| * | | | Fixed a couple build warnings.Andrew Arnott2012-07-222-2/+2
| | | | |
| * | | | Fix NetworkCredentialApplicator verify checkAndrew Arnott2012-07-221-2/+6
| | | | | | | | | | | | | | | | | | | | Fixes #183
| * | | | Fixed build break for .NET 3.5 targeting.Andrew Arnott2012-07-191-0/+2
| | | | |
| * | | | More StyleCop fixesAndrew Arnott2012-07-181-7/+9
| | | | |
| * | | | Fixed StyleCop issueAndrew Arnott2012-07-181-1/+1
| | | | |
| * | | | Replaces explicit crypto algorithm use with factories.Andrew Arnott2012-07-189-14/+80
| | | | | | | | | | | | | | | | | | | | Fixes #47 which requires that FIPS compliance be an option.
| * | | | Fixed ClientAuthorization .nuspec file to include the missing source file ↵Andrew Arnott2012-06-301-2/+3
| | | | | | | | | | | | | | | | | | | | from the symbols .nupkg
| * | | | Incrementing version number.Andrew Arnott2012-06-301-2/+2
| | | | |
| * | | | Branched off v4.1 stabilization branch.Andrew Arnott2012-06-301-1/+1
| | | | |
* | | | | Style fix.Andrew Arnott2012-10-021-3/+3
| | | | |
* | | | | Update src/DotNetOpenAuth.AspNet/Clients/OAuth2/FacebookClient.csJason Kulatunga2012-09-271-1/+4
| | | | | | | | | | | | | | | Retrive the facebook user's email as well as the rest of their default user data. 
* | | | | Fixing one more place it was missed, also changing to OPTIONSMatt Hawley2012-08-104-12/+14
| | | | |
* | | | | Adding PATCH and OPTION http verbsMatt Hawley2012-08-103-6/+30
| |_|_|/ |/| | |
* | | | Updated version.txtAndrew Arnott2012-06-301-2/+2
|/ / /
* | | Merge branch 'v4.0'Andrew Arnott2012-06-202-3/+21
|\ \ \ | | |/ | |/|
| * | Merge remote-tracking branch 'origin/v4.0' into v4.0Andrew Arnott2012-06-204-7/+100
| |\ \
generated by cgit v1.1 at 2025-05-23 02:27:59 +0000