Skip to content

7.5.2
Compare
Choose a tag to compare
@kllysng kllysng released this 13 May 22:06
· 258 commits to dev since this release
7.5.2
ea42b6b
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

7.5.2

Bug Fixes:

  • Validate authentication tag length so a JWE with appended characters will not be considered a valid token. See issues #2201, #1641, PR #2569, and IDX10625 Wiki for details. By @kellyyangsong

Fundamentals:

  • App Context Switches in Identity Model 7x are now documented here. By @kellyyangsong

Performance Improvements:

  • In .NET 6 or greater, use a temporary buffer to reduce intermediate allocation in VerifyRsa/VerifyECDsa. See PR #2589 for more details. By @eerhardt
  • Reduce allocations in ValidateSignature by using a collection expression instead of new List<SecurityKey> { key }, to optimize for the single element case. See PR #2586 for more details. By @eerhardt
  • Remove Task allocation in AadIssuerValidator. See PR #2584 for more details. By @eerhardt

Contributors

eerhardt and kllysng
Assets 2
Loading