Here is a simple test case (compiled with VS2015):
internal static class Program
public static void Main(str...
Id #478 | Release:
| Updated: Nov 15 at 2:57 PM by mheuser | Created: Nov 15 at 2:57 PM by mheuser
The current implementation contains the check
context.Response.StatusCode = 301;
context.Response.Headers[Constants.Location] = context.Req...
Id #476 | Release:
| Updated: Nov 9 at 1:20 PM by Ritzlgrmft | Created: Nov 9 at 1:20 PM by Ritzlgrmft
I created a new project in VS2015, set up to authenticate against ADFS (using the default WS-Federation).
I modified the project so that it also had an authentication provider for some dummy issu...
Id #475 | Release:
| Updated: Nov 20 at 3:25 AM by Rob263 | Created: Nov 2 at 8:58 PM by Rob263
for some unknown reason (for me) when the openid connect middleware makes the request for the idsrv for the very first time in incognito mode (chrome and firefox tested) the nonce cookie i...
Id #474 | Release:
| Updated: Nov 15 at 4:48 PM by be4i | Created: Oct 17 at 1:45 PM by be4i
The IAuthenticationTokenProvider interface has no documentation on how it should be implemented.
Id #473 | Release:
| Updated: Oct 6 at 8:55 AM by bgever | Created: Oct 6 at 8:55 AM by bgever
If sliding expiration has been turned on or signing out/signing in a user in code cause owin to generate and try to send a new cookie to the client. It also generates an application error and in ev...
Id #472 | Release:
| Updated: Nov 19 at 10:14 PM by sanjogsharma | Created: Sep 29 at 8:25 PM by danw22
Stumbled across this error. An exception (due I think to a client closing a connection early on a transfer) caused an exception. I log exceptions to Application Insights and AI does not perm...
Id #471 | Release:
| Updated: Sep 28 at 6:37 AM by MarkDavies | Created: Sep 28 at 6:37 AM by MarkDavies
I think I found an issue in Microsoft.Owin.Security.Cookies.CookieAuthenticationHandler class, method ApplyResponseGrantAsync. There is a line (within "else if (_shouldRenew)" block) of where cooki...
Id #470 | Release:
| Updated: Sep 15 at 10:28 AM by JaapMosselman | Created: Sep 15 at 10:28 AM by JaapMosselman
Method HandleCorsRequestAsync in CorsMiddleware calls TryEvaluateCorsPolicy which if an origin is not allowed the CorsEngine will add an error to CorsResult.ErrorMessages collection which also make...
Id #469 | Release:
| Updated: Sep 15 at 10:12 PM by Tratcher | Created: Sep 12 at 9:46 PM by JoLu1977
OWIN Pipeline throwing exception
at Microsoft.IdentityModel.Protocols.AuthenticationProtocolMessage.SetParameter(String parameter, String value)
Id #468 | Release:
| Updated: Sep 8 at 11:57 PM by Tratcher | Created: Aug 30 at 11:38 PM by bharatgupta486