6.13.1

Updating comments to help improve correct usage
#1705

SignedHttpRequests
New exceptions and delegate for validation.
#1704

Base64UrlEncoder performance improvements
#1698

Improve comments to clarify API usage and avoid unintentional validation weakening
#1687

Modify how internal caching runs tasks
Change to starting the event queue task via the Task.Run() method so it is on the default task scheduler and will not interfere with caller's task scheduler as some custom task schedulers might be single threaded and execution can be blocked. The second change is replacing the BlockingCollection with ConcurrentQueue to prevent resource leaks
#1696

Adding the BaseConfigurationManager and BaseConfiguration
This simplifies access to first class properties such as RefreshInterval etc.
Some of the properties in TokenValidationParameter were left as internal as they are required for a future feature that requires additional work.
#1695

NOTE: Version 6.13.0 should NOT be used. In version 6.13.0, users were experiencing an issue where they could not use a ConfigurationManager where T is a custom class. This has been addressed in 6.13.1.

6.12.2

BugFixes

Stop the event queue task when event queue is empty (#1685)

6.12.1

BugFixes

• Fix double instantiation of Uri in IsHttps() (#1676)

Enhancements and features

• Enable deterministic builds for CI builds (#1672).
• Remove wait on first force refresh (#1674)
• Send additional data to metadata end point (#1678)

6.12.0

Bug fixes

• Addressed security bugs (#1656, #1661, #1657).
• Fixed the task leaking issue in the EventBasedLRUCache (#1667).

Enhancements and features

• Added support for decryption using AesGcm (#1606).

6.11.1

Bug fix:

• Fixing incorrect parameters when writing Saml2ProxyConditions (#1646).

6.11.0

Enhancements and Features

Send SKU and Version details to metadata end point #1632

6.10.2

Removed name entry from claim type mapping #1629

6.10.1

Enhancements and Features

#1626 - Change base type of SecurityTokenUnableToValidateException

6.10.0

Enhancements and Features

• #1621 Change default values for DefaultAutomaticRefreshInterval and DefaultRefreshInterval
• #1615 Add SecurityTokenUnableToValidateException
• #1620 Reduce copies in URL encoder

6.9.0

Bug fixes

• Removed calls to overridable methods in constructors (#1549).
• Modified AuthenticationProtocolMessage to use CSP 'unsafe-eval' compliant default value for _script (#1565).
• SecurityTokenNoExpirationException 'IDX10225' is now thrown if a token is missing an 'nbf' or 'exp' claim (#1582).

Enhancements and features

• Made the 'x5c' property available on the JwtHeader (#1543).
• Added ClaimTypeMapping for 'name' claim (#1545).
• Added a net472 desktop target (#1552).
• Added 'phone_number' and 'phone_number_verified' standard claims to JwtRegisteredClaimNames (#1559).
• Added RSACng support for encryption / decryption (#1579).
• Added an EventBasedLRUCache for use by InMemoryCryptoProviderCache on the .NET desktop targets (#1605). See here for more details.