aspnet/AspNetKatana
### [`v4.2.2`](https://togithub.com/aspnet/AspNetKatana/releases/tag/v4.2.2): 4.2.2 Release
This release includes a few bugfixes, including one with possible security implications. The packages are available on [nuget.org](https://www.nuget.org/packages/Microsoft.Owin/4.2.2).
- [CVE 2022-29117](https://togithub.com/dotnet/announcements/issues/220) also applies to Microsoft.Owin.
See [here](https://togithub.com/aspnet/AspNetKatana/issues?q=milestone%3A4.2.2+is%3Aclosed+) for the complete list of changes.
### [`v4.2.1`](https://togithub.com/aspnet/AspNetKatana/releases/tag/v4.2.1): 4.2.1 Release
This release concludes significant build infrastructure changes and also includes a few product bug fixes. The packages are available on [nuget.org](https://www.nuget.org/packages/Microsoft.Owin/4.2.1).
See [here](https://togithub.com/aspnet/AspNetKatana/issues?q=milestone%3A4.2.1+is%3Aclosed+) for the complete list of changes.
The language specific satellite packages such as Microsoft.Owin.zh-Hans have been discontinued.
### [`v4.2.0`](https://togithub.com/aspnet/AspNetKatana/releases/tag/v4.2.0): 4.2.0 Release
This release includes a security feature and some minor improvements. The packages are available on [nuget.org](https://www.nuget.org/packages/Microsoft.Owin/4.2.0).
See [here](https://togithub.com/aspnet/AspNetKatana/pulls?q=is%3Apr+milestone%3A4.2.0+is%3Aclosed) for the complete list of changes. These improvements have been completely community driven, thanks everybody for helping out!
[https://github.com/aspnet/AspNetKatana/pull/389](https://togithub.com/aspnet/AspNetKatana/pull/389) adds PKCE support for OpenIdConnect authentication when using the `code` flow:
app.UseOpenIdConnectAuthentication(
new OpenIdConnectAuthenticationOptions
{
ClientId = clientId,
ClientSecret = clientSecret,
Authority = authority,
PostLogoutRedirectUri = postLogoutRedirectUri,
ResponseType = OpenIdConnectResponseType.Code,
RedeemCode = true,
RedirectUri = redirectUri,
UsePkce = true,
});
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
â™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
[ ] If you want to rebase/retry this PR, check this box
This PR contains the following updates:
4.1.1->4.2.2Release Notes
aspnet/AspNetKatana
### [`v4.2.2`](https://togithub.com/aspnet/AspNetKatana/releases/tag/v4.2.2): 4.2.2 Release This release includes a few bugfixes, including one with possible security implications. The packages are available on [nuget.org](https://www.nuget.org/packages/Microsoft.Owin/4.2.2). - [CVE 2022-29117](https://togithub.com/dotnet/announcements/issues/220) also applies to Microsoft.Owin. See [here](https://togithub.com/aspnet/AspNetKatana/issues?q=milestone%3A4.2.2+is%3Aclosed+) for the complete list of changes. ### [`v4.2.1`](https://togithub.com/aspnet/AspNetKatana/releases/tag/v4.2.1): 4.2.1 Release This release concludes significant build infrastructure changes and also includes a few product bug fixes. The packages are available on [nuget.org](https://www.nuget.org/packages/Microsoft.Owin/4.2.1). See [here](https://togithub.com/aspnet/AspNetKatana/issues?q=milestone%3A4.2.1+is%3Aclosed+) for the complete list of changes. The language specific satellite packages such as Microsoft.Owin.zh-Hans have been discontinued. ### [`v4.2.0`](https://togithub.com/aspnet/AspNetKatana/releases/tag/v4.2.0): 4.2.0 Release This release includes a security feature and some minor improvements. The packages are available on [nuget.org](https://www.nuget.org/packages/Microsoft.Owin/4.2.0). See [here](https://togithub.com/aspnet/AspNetKatana/pulls?q=is%3Apr+milestone%3A4.2.0+is%3Aclosed) for the complete list of changes. These improvements have been completely community driven, thanks everybody for helping out! [https://github.com/aspnet/AspNetKatana/pull/389](https://togithub.com/aspnet/AspNetKatana/pull/389) adds PKCE support for OpenIdConnect authentication when using the `code` flow: app.UseOpenIdConnectAuthentication( new OpenIdConnectAuthenticationOptions { ClientId = clientId, ClientSecret = clientSecret, Authority = authority, PostLogoutRedirectUri = postLogoutRedirectUri, ResponseType = OpenIdConnectResponseType.Code, RedeemCode = true, RedirectUri = redirectUri, UsePkce = true, });Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
â™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.