This repository has been archived by the owner on Jun 30, 2023. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 214
/
changelog.txt
217 lines (185 loc) · 8.51 KB
/
changelog.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
Version 3.19.8
==============
This hotfix release includes:
- Increasing API Surface for Subject Issuer Auth(#1091)
Version 3.19.7
==============
This hotfix release includes:
- No longer clear SecurePassword after the username password grant flow (#1087)
- Keep whitespaces inside a SAML token. This will bring better interoperability with other federated IDPs. (#1087)
Version 3.19.6
==============
This hotfix release includes:
- Updated ADAL to follow the Public Key Authentication spec when running on a non workplace joined device (#1058)
Version 3.19.5
==============
This hotfix release includes:
- Resolved issue with iOS 11.3 where network resources are reclaimed by the system when sending the app to the background (#1053)
Version 3.19.4
==============
This hotfix release includes:
- X5c claim added to AcquireTokenByAuthorizationCodeAsync for easy certificate rollover (#1043)
- Filter logs for AdalEventSource based on log level in default log (#1039)
Version 3.19.3
==============
This hotfix release includes:
- Fix for an issue with CoreCLR library writing to console by default (#1028)
Version 3.19.2
==============
This hotfix release includes:
- Fix for an issue with web UI failure on UWP platform
Version 3.19.1
==============
This hotfix release includes:
- Fix deadlock issue when calling with UI context without specifying ConfigureAwait(false)
Version 3.19.0
==============
- Adding new Api to acquire a security token from the authority while enabling simplified Azure AD certificate roll-over (#959)
- Fixing issues related to sending incorrect parameters in broker requests (#960)
Version 3.18.0
==============
This release includes
- Complicance with GDPR
- Add PiiLoggingEnabled flag (#877)
- Include Sovereign Cloud support (#884)
Version 3.17.3
==============
- Fix an issue with IOS broker - changing the type of UserIdentifier.AnyUser from UniqueId to OptionalDisplayableId (#905)
Version 3.17.2
==============
- Re-enable binary compatibility by re-adding the platform specific assemblies containing public types and adding TypeForwardedTo attributes (#887)
Version 3.17.1
==============
This hotfix release includes the following changes to rollback breaking changes
- Move select account enum to the end of the promptbehavior list (#874)
- Move extension methods to be public instance methods in the primary assembly (#875)
- Confidential client API for Xamarin iOS and Xamarin Android get an Obsolete attribute explaining why they should not be used (with link to FAQ) (#880)
Version 3.17.0
==============
This release includes
- Removal of API surfaces accidently exposed in some platforms.
- WinRT should only expose client credential API for confidential client flows (#768)
- Confidential client API surface should not be exposed on iOS/Android (#759)
- GetAuthorizationRequestUrl() API should not be exposed on WinRT, iOS and Android (#808)
- Device Profile API should not be exposed on iOS/Android (#806)
- Update library to use [assembly: CLSCompliant(true)] (#673)
- Removal of dependency injection of platform specific DLLs (#511)
- Leak of ViewController passed with PlatformParameters (#534)
- Log Scrubbing to remove potential PII (#772, #800)
- Support to return all response headers from a failed request to the STS (#721)
- Bug fix to include inner exception details in AdalClaimChallengeException (#777)
- Fix to ensure refresh tokens are not used for incorrect environments (#290)
- Support for PromptBehavior.SelectAccount (#754)
- Fix for net47 where RSACng key was not being used correctly (#781)
Version 3.16.1
==============
This release includes
- Fix for net47 where non-exportable private key usage was failing. (#752)
- Fix api surface -- Add GetAuthRequestUrlAsync method without claims overload (#740)
Version 3.16.0
==============
This release includes
- Fix for WinRT failure when logging an empty UserInfo object (#727).
- Implement PromptBehavior support for iOS/Android
- Url encode claims for iOS with Broker (#744)
Version 3.15.0
==============
This release includes
- Support for returning claims challenge back to developer for OBO flows. (#712)
- Support for API overload to consume claims challenge. (#712)
- Handle new RSA default (RSACng) on netfx4.7 (#708)
- Minor source code cleanups to have culture invariant messages and address FxCop violations.
Version 3.14.2
==============
This release includes
- Use ISO 8601 formatted date-times in log messages (#710)
- Fix TokenCacheKey::GetHashCode to no longer be culture-specific (#717)
- More uniform use of Invariant Culture when manipulating URLs, tokens, and request messages
Version 3.14.1
==============
This release includes
- Fix SOAP message bug (GitHub issue #699)
Version 3.14.0
==============
This release includes
- Add support for ClientAssertionCertificate in CoreCLR
- Port ADAL.PCL project to .NET Standard 1.1 project (requires VS2017 to build)
- Port ADAL.CoreCLR project to .NET Standard 1.3 project (requires VS2017 to build)
- Assemblies are signed with SHA-256 certificate
- Fix an issue where silently logging in with an expired refresh token could cause a null reference exception
- Fix casing bugs in SOAP requests (GitHub issue #401)
Version 3.13.9
==============
This release includes
- Add blackforest as a trusted authority
- Addition of new US Gov STS as a trusted authority
- Limit Http Response size to 1MB
- Fix an issue where request to WS-Trust was not working when using ADAL in sovereign clouds
- Fix to ignore all navigation events once redirect_uri is reached in the webview
- Add support for configuring transitioning styles in iOS
- Add support to disable logging to platform defaults.
- Update resiliency error codes to be HTTP 500-599 (all inclusive)
- Add support to consume developer configured Proxy in HttpMessageHandler.
Version 3.13.8
==============
This release includes
- update to nuget package to fix casing of NETStandard.Library nuget dependency
- Add serialization packages to netstandard1.4 target as they are not part of netstandard.
Version 3.13.7
==============
This release contains update to nuget package to use meta package and explicitly define target frameworks for the library.
Version 3.13.6
==============
This release includes
- Fix where UWP apps were ErrorHttp was causing unhandled exception.
- Fix .NET webview to add javascript:// to whitelist.
- Fix .NET webview to ensure if redirect_uri is hit, ignore errors raised by webview after that event.
- Add support for UIStatusBarStyle in Xamarin.iOS.
Version 3.13.5
==============
This release includes
- Update to OBO flows to force userassertion match against cache entries.
- Fix an issue where UWP was not handling ErrorHttp status and returning uncaught exception.
Version 3.13.4
==============
This release includes
- Fix to force iOS UIViewController to run on UI thread.
- Fix regresssion where content was passed as a file path for UserCredential flows.
- Fix an issue where internal exception was being thrown back to the developer.
Version 3.13.3
==============
This release includes
- Fix for null pointer exception when hash was computed on a null string.
- Add support to return complete http response body as an inner exception.
Version 3.13.2
==============
This release includes
- Adding default constructor to UserInfo class to circumvent CoreCLR deserialization issue.
Version 3.13.1
==============
This release contains
- Fix to add ConfigureAwait(false) to all await calls to avoid deadlocks.
- Fix bug where null reference was thrown in Android when onResult was called for an activity.
- ext_expires_in claim was not being read from server response.
- Disable Cross-Tenant refresh token redemption for client credentials flow.
- Fix the bug where access token in authentication result could be null in multi-threaded scenarios.
- Fix a bug where UserAssertion was not assumed to be JWT by default.
- Add support for SecureString client secret.
- Fix bug where null reference exception was thrown for AcquireTokenUsingDeviceCode.
Version 3.12.0
==============
This release contains
- Support for extended lifetime tokens.
- Fix to allow hardware based keys to perform authentication.
- Validate signing certificate chain in Android.
- Update NetStandard GA packages.
- Fix bug in cache lookup where developer provided parameters were ignored.
Version 3.10.305231913
======================
This release contains
- Retargeting Xamarin Android to Lollipop (5.0)
- Fix for PromptBehavior.Always in UWP apps where prompt=login was not sent to server.
Version 3.10.305161347
======================
This release contains
- Fix in GetAuthorizationURLAsync where QP were not getting appended correctly.