8.6.0
New Features
- TokenValidationParameters has a new boolean property
TryAllDecryptionKeysthat let you choose whether to try all decrypt keys when no key matches the token decrypt key IDs. By default it's set to true (legacy behavior) but you can set it to false to avoid tyring all keys which is more performant. See #3128 - Promote KeyInfo.MatchesKey from internal to protected internal virtual to enable SAML extensibility (for CoreWcf). See #3140
Fundamentals
- Update dependency on Microsoft.Extensions.Logging.Abstractions from 9.0.0 to 8.0.2 to avoid package downgrade in apps on .NET 9 using a netstandard2.0 library referencing logging.abstractions. See 3143
- Add more tests for encrypted tokens. See #3139
What's Changed
- Update CHANGELOG.md by @jennyf19 in #3133
- Update version.props to next version by @jennyf19 in #3137
- Add TryAllDecryptionKeys flag to whether decrypt if no key IDs match by @pmaytak in #3128
- Change KeyInfo.MatchesKey from internal to protected internal virtual. by @brentschmaltz in #3140
- Fix #3112 by @jmprieur in #3143
- Add more auto-decryption related tests by @pmaytak in #3139
- Update changelog.md for 8.6.0 by @jmprieur in #3144
Full Changelog: 8.5.0...8.6.0
Contributors
brentschmaltz, jmprieur, and 2 other contributors