diff --git a/CHANGELOG.md b/CHANGELOG.md index edb631484c..e9186c1fee 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,8 +1,84 @@ See the [releases](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/releases) for details on bug fixes and added features. +6.31.0 +======== +This release contains work from the following PRs and commits: -6.26.1 +- Introduce ConfigurationValidationException(#2076) +- Disarm security artifacts(#2064) +- Throw SecurityTokenMalformedTokenException on malformed tokens(#2080) +- Add ClaimsMapping to [JsonWebTokenHandler](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/commit/8e7f07e859629a850e375518fcce2b6057380721) + +6.30.1 +========= +This release contains work from the following PRs: +- Modified token validation to be async throughout the call graph #2075 +- Enforce key sizes when creating HMAC #2072 +- Fix AotCompatibilityTests #2066 +- Use up-to-date "now", in case take long time to get Metadata #2063 + +This release addresses #1743 and, as such, going forward if the SymmetricKey is smaller than the required size for HMAC IdentityModel will throw an ArgumentOutOfRangeException which is the same exception when the SymmetricKey is smaller than the minimum key size for encryption. + +6.30.0 ========= +Beginning in release [6.28.0](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/releases/tag/6.28.0) the library stopped throwing SecurityTokenUnableToValidateException. This version (6.30.0) marks the exception type as obsolete to make this change more discoverable. Not including it in the release notes explicitly for 6.28.0 was a mistake. This exception type will be removed completely in the next few months as the team moves towards a major version bump. More information on how to replace the usage going forward can be found here: https://aka.ms/SecurityTokenUnableToValidateException + +Indicate that a SecurityTokenDescriptor can create JWS or JWE +https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/2055 +Specify 'UTC' in log messages +https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/commit/ceb10b10ad2edb97217e263915d407da1d957e03 +Fix order of log messages +https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/commit/05eeeb513e66a4236ae519ef9304bf2b6f26766f + +Fixed issues with matching Jwt.Kid with a X509SecurityKey.x5t +https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/2057 +https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/2061 + +Marked Exception that is no longer used as obsolete +https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/2060 + +Added support for AesGcm on .NET 6.0 or higher +https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/commit/85fa86af743e2b1a0078a9ecd956f34ee703acfc + +First round of triming analysis preperation for AOT +https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/2042 +Added new API on TokenHandler.ValidateTokenAsync(SecurityToken ...) implemented only on JsonWebTokenHandler. +https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/2056 + +6.29.0 +========= +- Add BootstrapRefreshInterval (#2052) +- Added net462 target (#2049) +- Create the configuration cache in the BaseConfigurationManager class (#2048) + +6.28.1 +========= +- Add BootstrapRefreshInterval (#2052) +- Added net462 target (#2049) +- Create the configuration cache in the BaseConfigurationManager class (#2048) + +6.28.0 +======== +* Update Wilson logs with aka.ms pointers to known wikis in https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/2027 +* Fix typo in documentation https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/2034 +* Introduce a LKG configuration cache to store each valid base configuration instead of a single entry of configuration https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/2007 +* Add encryption keys to base configuration https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/2023 +* Updated CHANGELOG link https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/2026 + +6.27.0 +======== +Servicing release +Set maximum depth for Newtonsoft parsing. +https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/2024 +Improve metadata failure message. +https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/2010 +Validate size of symmetric signatures. +https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/2008 +Added property TokenEndpoint to BaseConfiguration. +https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/pull/1998 + +6.26.1 +========= ### Bug Fixes: Releasing a Hotfix for Wilson 6.26.0 that reverts async/await changes made in #1996 to address a performance reduction issue.