As part of this release we had 14 issues closed.
bugs
- #220 Always allow explicit error responses from authorize request
- #200 move consent message store loading to after request validation
- #194 use SetClient rather than setting Client property directly in end session validator
enhancements
- #209 Allow full host name to be included in OidcReturnUrlParser's IsValidReturnUrl
- #197 add support for user tenant check in authorize interaction response generator against acr tenant value
- #193 Prefer explicitly registered signing keys over automatic key management keys
- #192 Open up DefaultCache for derived implementations
- #188 Support for dynamic OIDC authentication schemes
- #164 Open up DefaultCache for derived implementations
internals