6.30.0

Beginning in release 6.28.0 the library stopped throwing SecurityTokenUnableToValidateException. This version (6.30.0) marks the exception type as obsolete to make this change more discoverable. Not including it in the release notes explicitly for 6.28.0 was a mistake. This exception type will be removed completely in the next few months as the team moves towards a major version bump. More information on how to replace the usage going forward can be found here: https://aka.ms/SecurityTokenUnableToValidateException

Indicate that a SecurityTokenDescriptor can create JWS or JWE
#2055
Specify 'UTC' in log messages
ceb10b1
Fix order of log messages
05eeeb5

Fixed issues with matching Jwt.Kid with a X509SecurityKey.x5t
#2057
#2061

Marked Exception that is no longer used as obsolete
#2060

Added support for AesGcm on .NET 6.0 or higher
85fa86a

First round of triming analysis preperation for AOT
#2042

Added new API on TokenHandler.ValidateTokenAsync(SecurityToken ...) implemented only on JsonWebTokenHandler.
#2056

6.29.0

• Add BootstrapRefreshInterval (#2052)
• Added net462 target (#2049)
• Create the configuration cache in the BaseConfigurationManager class (#2048)

6.28.1

• Bug fix where internal cache was not instantiated #2045

6.28.0

• Update Wilson logs with aka.ms pointers to known wikis in #2027
• Fix typo in documentation #2034
• Introduce a LKG configuration cache to store each valid base configuration instead of a single entry of configuration #2007
• Add encryption keys to base configuration #2023
• Updated CHANGELOG link #2026

6.27.0

Servicing release
Set maximum depth for Newtonsoft parsing.
#2024
Improve metadata failure message.
#2010
Validate size of symmetric signatures.
#2008
Added property TokenEndpoint to BaseConfiguration.
#1998

6.26.1

Releasing a Hotfix for Wilson 6.26.0 that reverts async/await changes made in #1996 to address a performance reduction issue.

• Changes are in #2015

• Root cause analysis and fix will be tracked in #2017

6.26.0

Servicing release
Introducing a new boolean TokenValidationParameter LogTokenId.
#2002
Update System.Text.Encodings.Web
#1997
Update ValidateToken call stack fully async
#1996
JsonWebTokenHandler to return the JsonWebToken on validation failure
#1989
Update documentation of DefaultTokenLifetimeInMinutes
#1988

6.25.1

Servicing release
.net was throwing when JWT tokens contained claims that used escaped characters.
#1975
Fixed Typo in comments
#1971
Added inner exception to help diagnose when reading JWT tokens fails.
#1968
Updated comments to improve understanding of RoleClaimTypeRetriever and NameClaimTypeRetriever
#1960

6.25.0

Add Instance property bag that is cleared when Clone is called.
Added comments to JsonWebTokenHandler and JwtSecurityTokenHandler to emphasize that ReadToken does not validate the token.
#1952
#1954

6.24.0

Single feature to control if exceptions are logged for Audience and Issuer failures.
Sometimes multiple policies are used, when a subsequent policy succeeds the upper layer can decide if previous exceptions should be logged.
#1949