Data

Tools

Indexes

Applications

Experiments

Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / aspnet/Security issues and pull requests

#1928 - Wctx parameter getting overridden, breaking functionality

Issue - State: closed - Opened by ischultz over 6 years ago - 8 comments

#1926 - Redirect URI is ignored

Issue - State: closed - Opened by elukash over 6 years ago - 2 comments

#1925 - SSO for Microsoft Outlook using auth0

Issue - State: closed - Opened by kandarp1993 over 6 years ago - 6 comments

#1923 - Docker Swarm + nginx + WS-Federation: multiple redirection issue

Issue - State: closed - Opened by rynnova over 6 years ago - 33 comments

#1922 - [Net Core 2.0] AccessDeniedPath ignored in cookie authentication

Issue - State: closed - Opened by tdmboro over 6 years ago - 1 comment

#1920 - AuthenticationProperties object is not passed to ChallengeAsync / ForbidAsync

Issue - State: closed - Opened by PrefixAM over 6 years ago - 11 comments

#1918 - .net core api authentication using ws-federation

Issue - State: closed - Opened by MSAppsDev over 6 years ago - 7 comments

#1917 - Handling incomplete remote signouts

Issue - State: closed - Opened by karthik25 over 6 years ago - 15 comments

#1916 - Upgrade packages and projects to target netcoreapp3.0

Pull Request - State: closed - Opened by natemcmaster over 6 years ago

#1915 - Remove obsolete apis

Pull Request - State: closed - Opened by HaoK over 6 years ago - 4 comments

#1913 - HttpContext.SignInAsync sets null to Identity claims data

Issue - State: closed - Opened by fabercs over 6 years ago - 3 comments

#1912 - .

Issue - State: closed - Opened by fabercs over 6 years ago

#1910 - JWT payload "unique_name" not mapped correctly

Issue - State: closed - Opened by Abrynos over 6 years ago - 2 comments

#1908 - refactor: Rename param from requiredValues to allowedValues to better…

Pull Request - State: closed - Opened by benmccallum over 6 years ago - 1 comment

#1906 - Set redirect from authorization handler

Issue - State: closed - Opened by justinhelgerson over 6 years ago - 5 comments

#1904 - Is there a way to Decrypt encrypted SAML token??

Issue - State: closed - Opened by amitsharma2912 over 6 years ago - 9 comments
Labels: question

#1901 - OAuth redirect_uri using http instead of https on Azure App Service Linux

Issue - State: closed - Opened by jarrettv over 6 years ago - 9 comments

#1900 - Oauth MicrosoftAccount Token Request Issue

Issue - State: closed - Opened by Fosol over 6 years ago - 6 comments

#1899 - Eliminate allocations in AuthorizationPolicy.CombineAsync with no policy

Pull Request - State: closed - Opened by JamesNK over 6 years ago - 2 comments

#1898 - Multiple refresh for authentication on server

Issue - State: closed - Opened by justlearntutors almost 7 years ago - 33 comments

#1896 - [WIP] Add AuthorizationMiddleware tests

Pull Request - State: closed - Opened by JamesNK over 6 years ago

#1894 - Authorization middleware

Pull Request - State: closed - Opened by JamesNK over 6 years ago - 19 comments
Labels: breaking-change

#1893 - About policy in Multiple Schemes 403 problem

Issue - State: closed - Opened by JohnHe404 almost 7 years ago - 2 comments

#1892 - OpenID Connect - Sign Out - AADSTS90015: Requested query string is too long.

Issue - State: closed - Opened by blowdart almost 7 years ago - 10 comments

#1889 - Question: Is it possible to update OpenIdConnectOptions at runtime?

Issue - State: closed - Opened by AdamRiddick almost 7 years ago - 2 comments

#1888 - Added missing Div tag in JWTBearer Sample index.html

Pull Request - State: closed - Opened by Syliddar almost 7 years ago - 1 comment

#1887 - Add AccessDeniedPath support to the OIDC/OAuth2/Twitter providers

Pull Request - State: closed - Opened by kevinchalet almost 7 years ago - 19 comments

#1886 - No token validator was found for the given token WS-FED

Issue - State: closed - Opened by amitsharma2912 almost 7 years ago - 2 comments

#1885 - Expose configuration to deriving types

Pull Request - State: closed - Opened by hvanbakel almost 7 years ago - 1 comment

#1884 - Make _configuration protected for OpenIdConnectHandler

Issue - State: closed - Opened by hvanbakel almost 7 years ago - 10 comments

#1883 - RequireClaim method signature is a little confusing

Issue - State: closed - Opened by benmccallum almost 7 years ago - 8 comments
Labels: 3 - Done, up-for-grabs

#1882 - Ws-Federation remote signout not working ASP.NET Core 2.1

Issue - State: closed - Opened by GoFightNguyen almost 7 years ago - 6 comments

#1881 - Release/1.1 Print the sdk in the global json

Pull Request - State: closed - Opened by shivamk01 almost 7 years ago - 2 comments

#1880 - authentication/authorization other than cookie in websocket

Issue - State: closed - Opened by John0King almost 7 years ago - 3 comments

#1878 - Relax test SkuTelemetry strictness

Pull Request - State: closed - Opened by Tratcher almost 7 years ago - 1 comment

#1877 - [automated] Merge branch 'maestro/release/2.2' => 'release/2.2'

Pull Request - State: closed - Opened by dotnet-maestro-bot almost 7 years ago - 1 comment

#1876 - [automated] Merge branch 'maestro/master' => 'master'

Pull Request - State: closed - Opened by dotnet-maestro-bot almost 7 years ago - 1 comment

#1875 - Test failure: ChallengeRedirectIsIssuedCorrectly

Issue - State: closed - Opened by aspnet-hello almost 7 years ago - 7 comments
Labels: 3 - Done, test-failure, Branch:2.2, Branch:master

#1874 - Two authentication schema doesn't work together

Issue - State: closed - Opened by yucelakpinar almost 7 years ago - 4 comments
Labels: question

#1873 - WS-Federation remote login failure ASP.NET Core 2.1+

Issue - State: closed - Opened by GoFightNguyen almost 7 years ago - 7 comments

#1872 - sourceLink doesn't work for Microsoft.AspNetCore.Authorization.dll

Issue - State: closed - Opened by yucelakpinar almost 7 years ago - 5 comments

#1871 - "Correlation Failed" error even after successful login via AzureAD

Issue - State: closed - Opened by rh1984 almost 7 years ago - 6 comments

#1868 - Setting up DataProtectionProvider for cookie authentication

Issue - State: closed - Opened by kevinlo almost 7 years ago - 2 comments

#1867 - OpenIDConnect Correlation Error Amazon Cognito

Issue - State: closed - Opened by devnull almost 7 years ago - 5 comments

#1862 - Inconsistent server response when using JWT bearer tokens to authenticate

Issue - State: closed - Opened by blowdart almost 7 years ago - 6 comments

#1853 - How to combine the windows authentication and JWT with .Net Core 2.1

Issue - State: closed - Opened by Jenan almost 7 years ago - 2 comments

#1852 - AddJwtBearer with MetadataAddress does not use the correct Issuer value on ADFS 2016

Issue - State: closed - Opened by rasitha1 almost 7 years ago - 16 comments

#1847 - Support for multiple authorities for the same JWT bearer scheme

Issue - State: closed - Opened by blowdart almost 7 years ago - 9 comments

#1831 - Change description of role in RequireRole method

Pull Request - State: closed - Opened by woeterman94 almost 7 years ago - 4 comments

#1793 - SaveTokens Not working .net core 2.1.301

Issue - State: closed - Opened by BruceHunter about 7 years ago - 3 comments

#1792 - Allow post and basic client authentication mode for OIDC

Pull Request - State: closed - Opened by bhugot about 7 years ago - 14 comments
Labels: enhancement

#1768 - JwtBearerOptions.SaveToken tests

Issue - State: closed - Opened by Tratcher about 7 years ago - 4 comments
Labels: 1 - Ready, task, cost: XS

#1765 - HttpContext.GetTokenAsync fails after Upgrade to 2.1.0

Issue - State: closed - Opened by TimHess about 7 years ago - 34 comments
Labels: bug, 3 - Done

#1738 - Encode ClientId/Secret in Basic Authorization Header per OIDC Spec

Pull Request - State: closed - Opened by jdmichel over 7 years ago - 18 comments

#1719 - Enable using a Cookie Session Store from DI

Pull Request - State: closed - Opened by fredrikhr over 7 years ago - 19 comments

#1666 - Provide a way to pass TestServer handlers for JwtBearerOptions.BackchannelHttpHandler

Issue - State: closed - Opened by akamud over 7 years ago - 3 comments
Labels: question

#1631 - Remove unused dependency IDataProtectionProvider from JwtBearerHandler class

Issue - State: closed - Opened by maximpashuk over 7 years ago - 2 comments
Labels: bug, 3 - Done, breaking-change

#1598 - Add support for CancellationTokens in AuthorizationHandler

Issue - State: closed - Opened by Eilon over 7 years ago - 6 comments

#1569 - CORS Cookies not being sent, even if credentials:"include"

Issue - State: closed - Opened by ghstahl over 7 years ago - 5 comments

#1421 - Remove unused Authentication.AddScheme/RemoteScheme methods

Issue - State: closed - Opened by HaoK almost 8 years ago - 1 comment
Labels: enhancement, 3 - Done, breaking-change

#1405 - Get the user's e-mail address from Twitter

Issue - State: closed - Opened by AlexOliinyk1 almost 8 years ago - 8 comments

#1377 - Refactor some of external login out of Identity and into Security

Issue - State: closed - Opened by jeffputz almost 8 years ago - 2 comments

#1317 - Add logging scope for auth flows

Issue - State: closed - Opened by davidfowl about 8 years ago - 3 comments
Labels: enhancement, 1 - Ready

#1292 - Remove obsolete cookie options API

Issue - State: closed - Opened by natemcmaster about 8 years ago - 2 comments
Labels: enhancement, 3 - Done, breaking-change

#1268 - Add concept of Skip to BaseContext for skipping all event behavior.

Issue - State: closed - Opened by HaoK about 8 years ago - 2 comments

#1236 - Support for password and JWT/SAML SSO grant types in OAuthMiddleware

Issue - State: closed - Opened by bgever about 8 years ago - 13 comments

#1221 - Remove obsolete AuthorizeAttribute.ActiveAuthenticationSchemes property

Issue - State: closed - Opened by Eilon about 8 years ago - 1 comment
Labels: bug, 3 - Done, breaking-change

#1189 - More granular schemes for hosting.

Issue - State: closed - Opened by HaoK over 8 years ago - 2 comments
Labels: enhancement, needs design

#1179 - The Grand Auth Redesign of 2017

Issue - State: closed - Opened by HaoK over 8 years ago - 67 comments
Labels: enhancement, 3 - Done, breaking-change

#1175 - Allow for a separate "RedirectAuthority" URL in OpenIdConnectOptions

Issue - State: closed - Opened by WarcraftYax over 8 years ago - 23 comments

#1169 - Make IsAjaxRequest overridable or configurable

Issue - State: closed - Opened by TomGroeneboer over 8 years ago - 11 comments

#1165 - Support automatic redirect on remote failures

Issue - State: closed - Opened by JeanCollas over 8 years ago - 25 comments
Labels: enhancement, 3 - Done

#1139 - Update the OAuth2 generic handler to allow setting the scope when calling ChallengeAsync

Issue - State: closed - Opened by kevinchalet over 8 years ago - 9 comments
Labels: enhancement, needs design

#1132 - Add/Remove/Configure Authentication Middleware at Runtime

Issue - State: closed - Opened by windischb over 8 years ago - 9 comments
Labels: enhancement, 1 - Ready, needs design

#1118 - Create Client Certificate Authentication middleware

Issue - State: closed - Opened by blowdart over 8 years ago - 10 comments
Labels: enhancement

#1105 - The purpose of RefreshOnIssuerKeyNotFound

Issue - State: closed - Opened by Pikhulya over 8 years ago - 11 comments

#1086 - IAuthorizationService/Requirement/Handler workflow - recursive authorization handling

Issue - State: closed - Opened by nth-commit over 8 years ago - 8 comments
Labels: enhancement

#1026 - SAML-P Authentication

Issue - State: closed - Opened by axelheer over 8 years ago - 9 comments
Labels: enhancement

#991 - CookieUseSlidingExpiration do not renew the cookie properly

Issue - State: closed - Opened by Tratcher almost 9 years ago - 6 comments
Labels: enhancement, needs design

#977 - Remove the IAuthorizationRequirement interface

Issue - State: closed - Opened by dotnetjunkie almost 9 years ago - 4 comments
Labels: wontfix

#872 - Custom JSON response from Policy-Based Authorization is being overwritten

Issue - State: closed - Opened by levitatejay about 9 years ago - 19 comments
Labels: needs design

#716 - Unable to external login when app behind proxy

Issue - State: closed - Opened by hantleman over 9 years ago - 8 comments

#710 - Improve access_denied handling

Issue - State: closed - Opened by kevinchalet over 9 years ago - 8 comments
Labels: 3 - Done

#699 - Returning 401 and JSON

Issue - State: closed - Opened by bragma over 9 years ago - 26 comments
Labels: bug

#693 - setting CallBackPath causes error

Issue - State: closed - Opened by kapoc over 9 years ago - 2 comments
Labels: invalid

#589 - More efficient Authentication ticket serialization

Issue - State: closed - Opened by jods4 over 9 years ago - 16 comments

#581 - Question about ITicketStore and ApplicationCookie.SessionStore injection

Issue - State: closed - Opened by rustd over 9 years ago - 11 comments
Labels: question

#551 - Rfc6238AuthenticationService should be in Security repository and make him public?

Issue - State: closed - Opened by abcplex almost 10 years ago - 12 comments
Labels: enhancement

#336 - Proposal: Add AccessDeniedPath for OpenIdConnect middleware

Issue - State: closed - Opened by guardrex about 10 years ago - 24 comments
Labels: OIDC

#292 - AuthorizeAttribute return 404 Not Found instead of 401 Unauthorized

Issue - State: closed - Opened by YZahringer about 10 years ago - 9 comments

#179 - OpenIdConnect nonce cookies - overflow handling

Issue - State: closed - Opened by loctanvo over 10 years ago - 62 comments