Skip to content
This repository has been archived by the owner. It is now read-only.
Choose a tag to compare


@leastprivilege leastprivilege released this
· 290 commits to master since this release
Choose a tag to compare

As part of this release we had 19 issues closed.

bug fixs

  • #2110 IE Support for CSP
  • #2084 Permissions web page: If no logoUri is specified, the frame for the logoUri is still displayed
  • #2063 RememberMeDuration Ignored During Partial Signin
  • #1904 Secure mode on all IdSvr cookies
  • #1619 IIS Multibinding causes automatic IssuerUri to take random name
  • #1238 Fix max-age param in HSTS header
  • #1000 PostLogoutRedirectUri "lost" when signing out using an external IdP

new features

  • #2181 Provide support for federation signout cleanup callback
  • #2100 Update validation middleware to support Introspection endpoint
  • #1986 Add a cookie to track clients the user logged in
  • #1639 Introspection endpoint
  • #922 Implement HTTP-based Logout spec


  • #2175 Add reference token handle to event
  • #2174 Add events for client authentication success/failure
  • #2105 Enhanced token signing service
  • #2085 Allow POST on EndSession endpoint
  • #1837 Don't issue XFO on response_mode post on authorization endpoint
  • #1641 Add tests for introspection endpoint
  • #1640 Add introspection specific events