-
Notifications
You must be signed in to change notification settings - Fork 417
IdentityModel 8x
All the IdentityModel libraries must have the same version 8.0.0 in your project and including the recursive dependencies.
dotnet restore yourProject.csproj
dotnet list yourProject.csproj package --include-transitive
to see the list of all packages dependencies.
We are excited to announce the release of IdentityModel 8.0.0, a major update to our popular .NET auth validation library.
IdentityModel 8x no longer supports .net461, which has reached end of life and is no longer supported. See issue #2544 for details. The table below contains changes encountered when upgrading to newer .NET versions from 4.6.1.
File | What Changes | Versions change occurs in |
---|---|---|
src/Microsoft.IdentityModel.Tokens/ECDsaAdapter.cs | Using ECParams vs CNGKey to generate ECDsaFunction… This happens as an internal abstraction when creating an ECDsaSecurityKey |
|
src/Microsoft.IdentityModel.Tokens/Utility.cs | When evaluating IsHttps(Uri uri) uses Uri.UriSchemeHttps to compare for equality rather than just the string “https” |
|
IdentityModel extension dlls Microsoft.IdentityModel.KeyVaultExtensions and Microsoft.IdentityModel.ManagedKeyVaultSecurityKey were using ADAL, which is no longer supported. The affected packages have been removed, as the replacement is to use Microsoft.Identity.Web. See issue https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/issues/2454 for details.
AppContext.SetSwitch which were included in IdentityModel 7.x, have been removed and are the default in IdentityModel 8x. The result is a more performant IdentityModel by default. See App Context Switches in Identity Model and PR #2644.
Conceptual Documentation
- Using TokenValidationParameters.ValidateIssuerSigningKey
- Scenarios
- Validating tokens
- Outbound policy claim type mapping
- How ASP.NET Core uses Microsoft.IdentityModel extensions for .NET
- Using a custom CryptoProvider
- SignedHttpRequest aka PoP (Proof-of-Possession)
- Creating and Validating JWEs (Json Web Encryptions)
- Caching in Microsoft.IdentityModel
- Resiliency on metadata refresh
- Use KeyVault extensions
- Signing key roll over