search

Brightspace / D2L.Security.OAuth2

Brightspace OAuth 2.0 for C#
Apache License 2.0
7 stars 16 forks source link

Bump System.IdentityModel.Tokens.Jwt from 6.12.2 to 6.13.1 #195

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps System.IdentityModel.Tokens.Jwt from 6.12.2 to 6.13.1.

Release notes

Sourced from System.IdentityModel.Tokens.Jwt's releases.

6.13.1

Updating comments to help improve correct usage #1705

SignedHttpRequests New exceptions and delegate for validation. #1704

Base64UrlEncoder performance improvements #1698

Improve comments to clarify API usage and avoid unintentional validation weakening #1687

Modify how internal caching runs tasks Change to starting the event queue task via the Task.Run() method so it is on the default task scheduler and will not interfere with caller's task scheduler as some custom task schedulers might be single threaded and execution can be blocked. The second change is replacing the BlockingCollection with ConcurrentQueue to prevent resource leaks #1696

Adding the BaseConfigurationManager and BaseConfiguration This simplifies access to first class properties such as RefreshInterval etc. Some of the properties in TokenValidationParameter were left as internal as they are required for a future feature that requires additional work. #1695

NOTE: Version 6.13.0 should NOT be used. In version 6.13.0, users were experiencing an issue where they could not use a ConfigurationManager where T is a custom class. This has been addressed in 6.13.1.

Commits
  • 3d152e4 Cesar/config fix (#1713)
  • 4f24eae started work on making class internal (#1711)
  • 8d6a36c Adding ConfigurationManager and Configuration classes in M.IM.Tokens (#1695)
  • be1c621 Integrate ServerNonce validation (#1704)
  • e42679d Updating comments to use inclusive terms (#1705)
  • 8b52cd4 Addressing the slow build times and associated test failures (#1702)
  • e2e64e5 Adding BaseConfigurationManager and BaseConfiguration classes in M.IM.Tokens ...
  • 5a77aab Skip tests that are failing
  • 7ec9507 Danny/task 1533722 default task scheduler dev (#1696)
  • 1faf943 Base64UrlEncoder performance improvements (#1698)
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 2 years ago

Superseded by #199.