OwinHost starts up and then waits for enter to be pressed. On Linux/mono, when running as a daemon, a call to ReadLine() returns EOF immediately, causing OwinHost to exit prematurely.
Id #405 | Release:
| Updated: Thu at 5:22 PM by swish014 | Created: Thu at 5:19 PM by swish014
OpenIdConnectAuthenticationHandler.CurrentUri merely takes the URI of the OWIN request and disregards the value of the "X-Forwarded-Proto" header. Thus if the application is behind a load balancer ...
Id #404 | Release:
| Updated: Tue at 5:28 PM by omidkrad | Created: Tue at 5:43 AM by rasmusnu
I have a OWIN Web API (IIS hosted) secured with OAuth2 JWT tokens. The authentication options are configured like this :
var options = new JwtBearerAuthenticationOptions
Id #403 | Release:
| Updated: Mar 11 at 7:32 PM by ultraman69 | Created: Mar 11 at 6:57 PM by ultraman69
In v3.0.1, the following issue was fixed:
OpenIdConnect nonces need a unique cookie name
For each authentication request, a unique nonce cookie is now created. Even though these are Session ba...
Id #402 | Release:
| Updated: Mar 9 at 2:28 PM by yuyuki | Created: Mar 5 at 10:31 AM by loctanvo
Per rfc6749 you should be able to specify the http status code in an OAuth error situation. There appears to be no way to accomplish this as you are hard coding the response at https://katanaproje...
Id #401 | Release:
| Updated: Mar 2 at 6:55 PM by MotoWilliams | Created: Mar 2 at 6:55 PM by MotoWilliams
The cookie values as returned by OwinRequest.Cookies are urldecoded, this is not correct. The HTTP specifications do not state that values in the HTTP Cookie header are to be transmitted urlencoded...
Id #399 | Release:
| Updated: Tue at 11:16 PM by Tratcher | Created: Feb 23 at 3:22 PM by wdb
This is related to my discussion in here. When an exception occurs in the OpenIdConnectAuthenticationHandler it is written to (trace) logs using the line:
_logger.WriteError("Exception occurred wh...
Id #398 | Release:
| Updated: Feb 16 at 8:50 AM by htuomola | Created: Feb 16 at 8:50 AM by htuomola
Little puzzling this one as I cant see any reference to enterpriselibrary.common within the owin dependencies so apologies if I have this incorrect.
I have another object within my application th...
Id #397 | Release:
| Updated: Feb 16 at 8:57 AM by ajVersed | Created: Feb 13 at 3:27 PM by ajVersed
When using an OAuthAuthorizationServerProvider, and the Authorization Code flow, the provider does not redirect when using a custom protocol instead of http or https.
When using a red...
Id #396 | Release:
| Updated: Apr 7 at 12:46 PM by Azzlack | Created: Feb 12 at 10:05 AM by Azzlack
WsFederationOptions.CallbackPath should be application-relative instead of host-relative.
WsFederationAuthenticationHandler() contains the following code in AuthenticateCoreAsync():
Id #395 | Release:
| Updated: Feb 12 at 3:53 AM by geantos | Created: Feb 12 at 3:53 AM by geantos