Skip to content

Bump Microsoft.Identity.Web from 1.25.10 to 2.17.0#97

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/nuget/Microsoft.Identity.Web-2.17.0
Closed

Bump Microsoft.Identity.Web from 1.25.10 to 2.17.0#97
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/nuget/Microsoft.Identity.Web-2.17.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Feb 6, 2024

Copy link
Copy Markdown
Contributor

Bumps Microsoft.Identity.Web from 1.25.10 to 2.17.0.

Release notes

Sourced from Microsoft.Identity.Web's releases.

2.17.0

  • Updated to Microsoft.IdentityModel.* 7.3.1 and MSAL.NET 4.59.0

New features

Bug fixes

  • In OWIN applications, GetTokenForUserAsync now respects the ClaimsPrincipal. See issue #2629 for details.
  • After setting AddTokenAcquisition(useSingleton:true) to use token acquisition as a singleton, if you use .AddMicrosoftGraph and/or .AddDownstreamApi after this call, the GraphServiceClient and IDownstreamApis are now registered as a singleton service. For details see [PR #2645](AzureAD/microsoft-identity-web#2645)
  • Added check Against Injection Attacks. For details see PR 2619

Engineering excellence

2.16.1

  • Update Microsoft.Identity.Abstractions 5.1.0 and Microsoft.IdentityModel.* 7.1.2

Bug Fixes

  • In OWIN, Id Web now respects the passed in user argument. See issue #2585 for details.

2.16.0

Leverage IdentityModel 7.x on all .NET core frameworks.

2.15.5

  • Update to .NET 8 GA
  • Update to Microsoft.Graph 5.34.0

Bug Fixes

  • Fixes an issue where users were not able to override ICredentialsLoader. See #2564 for details.
  • The latest patch version is no longer used in dependencies, as it made builds non-deterministic. See #2569 for details.
  • Removed dependencies that were no longer needed. See #2577 for details.
  • Fixes an issue where the build did not look up project names as package dependencies. See #2579 for more details.

Fundamentals

  • Enable baseline package validation, see #2572 for details.
  • Improve trimmability on .NET 8, see #2574 for details.

2.15.3

Bug Fixes:

  • Microsoft.Identity.Web honors the user-provided value for the cache expiry for in-memory cache. See #2466 for details.

2.15.2

... (truncated)

Changelog

Sourced from Microsoft.Identity.Web's changelog.

2.17.0

  • Updated to Microsoft.IdentityModel.* 7.3.1 and MSAL.NET 4.59.0

New features

Bug fixes

  • In OWIN applications, GetTokenForUserAsync now respects the ClaimsPrincipal. See issue #2629 for details.
  • After setting AddTokenAcquisition(useSingleton:true) to use token acquisition as a singleton, if you use .AddMicrosoftGraph and/or .AddDownstreamApi after this call, the GraphServiceClient and IDownstreamApis are now registered as a singleton service. For details see [PR #2645](AzureAD/microsoft-identity-web#2645)
  • Added check Against Injection Attacks. For details see PR 2619

Engineering excellence

2.16.1

  • Update Microsoft.Identity.Abstractions 5.1.0 and Microsoft.IdentityModel.* 7.1.2

Bug Fixes

  • In OWIN, Id Web now respects the passed in user argument. See issue #2585 for details.

2.16.0

  • Leverage IdentityModel 7.x on all .NET core frameworks.

2.15.5

  • Update to .NET 8 GA
  • Update to Microsoft.Graph 5.34.0

Bug Fixes

  • Fixes an issue where users were not able to override ICredentialsLoader. See #2564 for details.
  • The latest patch version is no longer used in dependencies, as it made builds non-deterministic. See #2569 for details.
  • Removed dependencies that were no longer needed. See #2577 for details.
  • Fixes an issue where the build did not look up project names as package dependencies. See #2579 for more details.

Fundamentals

  • Enable baseline package validation, see #2572 for details.
  • Improve trimmability on .NET 8, see #2574 for details.

2.15.3

Bug Fixes:

  • Microsoft.Identity.Web honors the user-provided value for the cache expiry for in-memory cache. See #2466 for details.

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [Microsoft.Identity.Web](https://github.com/AzureAD/microsoft-identity-web) from 1.25.10 to 2.17.0.
- [Release notes](https://github.com/AzureAD/microsoft-identity-web/releases)
- [Changelog](https://github.com/AzureAD/microsoft-identity-web/blob/master/changelog.md)
- [Commits](AzureAD/microsoft-identity-web@1.25.10...2.17.0)

---
updated-dependencies:
- dependency-name: Microsoft.Identity.Web
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added .NET Pull requests that update .net code dependencies Pull requests that update a dependency file labels Feb 6, 2024
@dependabot @github

dependabot Bot commented on behalf of github Feb 28, 2024

Copy link
Copy Markdown
Contributor Author

Superseded by #99.

@dependabot dependabot Bot closed this Feb 28, 2024
@dependabot
dependabot Bot deleted the dependabot/nuget/Microsoft.Identity.Web-2.17.0 branch February 28, 2024 07:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file .NET Pull requests that update .net code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants