search

servicetitan / Stl.Fusion

Build real-time apps (Blazor included) with less than 1% of extra code responsible for real-time updates. Host 10-1000x faster APIs relying on transparent and nearly 100% consistent caching. We call it DREAM, or Distributed REActive Memoization, and it's here to turn real-time on!
MIT License
1.86k stars 109 forks source link

build(deps): Update Microsoft.Identity.Web requirement from 2.9.* to 2.10.* #591

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Updates the requirements on Microsoft.Identity.Web to permit the latest version.

Release notes

Sourced from Microsoft.Identity.Web's releases.

2.10.0

  • Update to Wilson 6.30.0

New features:

  • Microsoft.Identity.Web now provides more logging in DownstreamAPI, see #2148 for details.
  • OBO support for composite tokens based assertion and sub_assertion extra query parameters. See issue #2222 for details.

Bug fixes:

  • Fix a regex issue relating to same site, see #1811 for details.
  • Bug fixes for CIAM support, see #2218 for details.
Changelog

Sourced from Microsoft.Identity.Web's changelog.

2.10.0

  • Update to Wilson 6.30.0

New features:

  • Microsoft.Identity.Web now provides more logging in DownstreamAPI, see #2148 for details.
  • OBO support for composite tokens based assertion and sub_assertion extra query parameters. See issue #2222 for details.

Bug fixes:

  • Fix a regex issue relating to same site, see #1811 for details.
  • Bug fixes for CIAM support, see #2218 for details.

2.9.0

  • Update to Wilson 6.29.0 and MSAL.NET 4.53.0

Bug Fix:

  • The ASP.NET Core regression between .NET 5 and 6 with Razor Pages, is now addressed with Microsoft.Identity.Web.UI targeting .NET 5 until a more permanent solution is found. See issues #2111, #2095 and #2183 for details.

2.8.0

New features:

  • ID Web works with Authority in place of Tenant ID and Domain. See #2160
  • ID Web now supports CIAM authorities.
  • Abstractions is now updated to version 3.1.0

Bug fixes:

  • Fixed a bug causing ClaimsIdentity.RoleClaimType to always be "roles" when using App Service Authentication. See #2166

2.7.0

New Feature:

  • MicrosoftIdentityAppCallsWebApiAuthenticationBuilder is now available on netstandard2.0
  • Id Web now supports expressing the cache key used for serializing/deserializing. See #2156

Bug Fixes:

  • Make GetClientAssertion protected.

2.6.1

  • Update to Wilson 6.27.0 and MSAL.NET 4.51.0

New Features:

  • GetClientAssertion is now public, which enables inheritance of ClientAssertionProviderBase. See PR for details.
  • Id Web now uses TryAdd instead of Add in the InMemory and Distributed caches, this is to not overwrite previously added caches. See issue for details.
  • Id Web now supports MsAuth10ATPop. See PR for details.

Bug Fixes:

  • Fix a regression from v1.16.x to v2.5.0 with auth code redemption when the ResponseType == "code". See issue #2096 for details.

Fundamentals:

... (truncated)

Commits


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
codecov[bot] commented 1 year ago

Codecov Report

Patch coverage has no change and project coverage change: +0.08 :tada:

Comparison is base (fc1588d) 61.79% compared to head (da7c6cd) 61.87%.

Additional details and impacted files ```diff @@ Coverage Diff @@ ## master #591 +/- ## ========================================== + Coverage 61.79% 61.87% +0.08% ========================================== Files 536 536 Lines 15948 15948 ========================================== + Hits 9855 9868 +13 + Misses 6093 6080 -13 ``` | Flag | Coverage Δ | | |---|---|---| | unit | `61.87% <ø> (+0.08%)` | :arrow_up: | Flags with carried forward coverage won't be shown. [Click here](https://docs.codecov.io/docs/carryforward-flags?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=servicetitan#carryforward-flags-in-the-pull-request-comment) to find out more. [see 8 files with indirect coverage changes](https://app.codecov.io/gh/servicetitan/Stl.Fusion/pull/591/indirect-changes?src=pr&el=tree-more&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=servicetitan)

:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Do you have feedback about the report comment? Let us know in this issue.

dependabot[bot] commented 1 year ago

Superseded by #595.