5.0.0-rc-1

What's Changed

• Update email in security policy by @PeterOrneholm in #344
• Update links to demo by @PeterOrneholm in #346
• Use System.Text.Json by @joanro123 in #345
• Implement custom claims transformation by @PeterOrneholm in #350
• Separate documentation site with DocFX by @joanro123 in #349
• Support animated QR codes by @PeterOrneholm in #355
• Add codespace definition files by @jakobehn in #353

New Contributors

• @jakobehn made their first contribution in #353

Full Changelog: 5.0.0-alpha-3...v5.0.0-rc-1

5.0.0-alpha-3

What's Changed

• Change master into main by @PeterOrneholm in #316
• Add Codeql code scanning by @PeterOrneholm in #317
• Fix github workflow and slack badges by @PeterOrneholm in #318
• Add response for animated Qr and fallback for deprecated autoStartTok… by @PeterOrneholm in #311
• Add security policy by @PeterOrneholm in #319
• Update to .NET 6 by @PeterOrneholm in #321
• Update docs by @PeterOrneholm in #326
• Fix bugs from net6 upgrade by @PeterOrneholm in #333
• Add by @PeterOrneholm in #334
• Allow user assigned identity to Azure Keyvault by @joanro123 in #325
• Support for user data on auth request by @joanro123 in #340
• Update ActiveLogin Identity dependency by @PeterOrneholm in #341
• Use azure default credentials by @PeterOrneholm in #342
• Add release by @PeterOrneholm in #343

Full Changelog: 4.1.0...5.0.0-alpha-3

5.0.0-alpha-2

What's Changed

• Change master into main by @PeterOrneholm in #316
• Add Codeql code scanning by @PeterOrneholm in #317
• Fix github workflow and slack badges by @PeterOrneholm in #318
• Add response for animated Qr and fallback for deprecated autoStartTok… by @PeterOrneholm in #311
• Add security policy by @PeterOrneholm in #319
• Update to .NET 6 by @PeterOrneholm in #321

Full Changelog: 4.1.0...5.0.0-alpha-2

4.1.0

What's Changed

• Relaxed dependency on .NET Core SDK 3.1.100 to rollForward:latestFeature and updated nuget package dependencies. by @bemafred in #287
• Update FAQ with certificate handling when running in Linux by @equist in #292
• Monitoring dashboard by @PeterOrneholm in #296
• Rename readme.txt to README.md by @ceciliasharp in #291
• Added missing awaits by @joanro123 in #303
• Implement invalid state handling by @PeterOrneholm in #309
• Implement Github Actions for build and package by @joanro123 in #313
• added AddApplicationInsightsTelemetry to startup by @joanro123 in #314
• Remove beta for 4.1.0 release by @PeterOrneholm in #315

New Contributors

• @bemafred made their first contribution in #287
• @equist made their first contribution in #292
• @ceciliasharp made their first contribution in #291
• @joanro123 made their first contribution in #303

Full Changelog: 4.0.0...4.1.0

4.0.0

With the release 4.0.0 of ActiveLogin.Authentication we bring new features, bug fixes, and improved documentation.

We are happy to celebrate that we know have passed 100 000 downloads on NuGet!

Since 3.0.0 we have:

• Made alot of changes
• Closed 41 Issues and Pull Requests

7 people were involved in this release.

Major features and changes in this release

• Support for listening to events
• Support for multiple event listeners
• Support for enhanced logging to Azure Monitor (Application Insights)
• Allow overriding retreival of EndUserIp
• Use App Link (https:/app.bankid.com/) on supported browsers on Android
• Use UA Parser for better browser detection
• Verified support for .NET 5

Features & Improvements

• Support for custom event listeners #22, #229
• Enhanced logging to Azure Monitor (Application Insights) #231, #255, #271
• Use new Android redirect URL #242, #250, #252, #251, #253, #254
• Add extension method for adding BankIdResultStore #227
• Allow overriding retreival of EndUserIp #228
• Breaking change: Rename events #244
• Force JSON formatting from API #232, #247
• Add missing GrandId fields #265, #267, #269
• Add package with device detection using ua parser #263, #256
• Support .NET 5 #279

Bugfixes & Refactorings

• Breaking change: Remove UseClientCertificateResolver #245, #243
• Breaking change: Enable cancel even if init fails #233, #246

Misc

• Refactor nuget sign #240, #241
• Update docs #222, #224, #230, #239, #238, #237, #258

Breaking changes

For a full list of breaking changes, see all issues/PR:s prefixed with Breaking change: above. Most of them should go unnoticed, but a few might have bigger impact.

Renaming events

We have renamed events and event ids but the log messages should be the same.

A full list of current event names and ids can be found in BankIdEventTypes.cs.

The category of events logged to ILogger will now be BankIdLoggerEventListener.

Removed UseClientCertificateResolver #245, #243

The UseClientCertificateResolver extension was removed, but docs was added with sample on how to achieve the same result.

Refactor IBankIdLauncher #254

IBankIdLauncher was refactored to return an object with launch info, not only launch URL.

Feedback

If you find any bugs or have feedback in general. Please file an issue!

Thanks

Thanks to the community for providing code, testing and feedback!

4.0.0 Beta 3

Add package with device detection using ua parser (256) (#263)

* Added new implementation of IBankIdSupportedDeviceDetector using uap-csharp. Not finished.

* Bugfix, dont reload page after fake loading bank id app since this results in a new login attempt.

* Modified extension method to replace default implementation of IBankIdSupportedDeviceDetector.

* Refactoring.

* Changed name of test.

* Modified project file and added readme file.

* If device type could not be identified by os check if mobile browser.

* Use ua parser in sample projects.

* Updated readme file.

* Added XML comment to UAParserDeviceDetector.

* Use StringComparison.InvariantCultureIgnoreCase instead of ToLower() for string comparison.

* Add debugger

* Add debugger

* Fix detection and launch according to new findings

* Docs

* Remove empty files

* Bump versions

Co-authored-by: Elin Ohlsson <ElinO@activesolution.se>
Co-authored-by: Peter Örneholm <peter@orneholm.com>

4.0.0 Beta 2

With the release 4.0.0 beta 2 of ActiveLogin.Authentication we bring new features, bug fixes, and improved documentation.

Since 3.0.0 we have:

• Made alot of changes
• Closed 28 Issues and Pull Requests

5 people were involved in this release.

Major features and changes in this release

• Support for listening to events
• Support for multiple event listeners
• Support for enhanced logging to Azure Monitor (Application Insights)
• Allow overriding retreival of EndUserIp
• Use App Link (https:/app.bankid.com/) on supported browsers on Android

Features & Improvements

• Support for custom event listeners #22, #229
• Enhanced logging to Azure Monitor (Application Insights) #231, #255
• Use new Android redirect URL #242, #250, #252, #251, #253, #254
• Add extension method for adding BankIdResultStore #227
• Allow overriding retreival of EndUserIp #228
• Breaking change: Rename events #244
• Force JSON formatting from API #232, #247

Bugfixes & Refactorings

• Breaking change: Remove UseClientCertificateResolver #245, #243
• Breaking change: Enable cancel even if init fails #233, #246

Misc

• Refactor nuget sign #240, #241
• Update docs #222, #224, #230, #239, #238, #237, #258

Breaking changes

For a full list of breaking changes, see all issues/PR:s prefixed with Breaking change: above. Most of them should go unnoticed, but a few might have bigger impact.

Renaming events

We have renamed events and event ids but the log messages should be the same.

A full list of current event names and ids can be found in BankIdEventTypes.cs.

The category of events logged to ILogger will now be BankIdLoggerEventListener.

Removed UseClientCertificateResolver #245, #243

The UseClientCertificateResolver extension was removed, but docs was added with sample on how to achieve the same result.

Refactor IBankIdLauncher #254

IBankIdLauncher was refactored to return an object with launch info, not only launch URL.

Feedback

If you find any bugs or have feedback in general. Please file an issue!

4.0.0 Beta 1

The focus of this release has been logging and events. It introduces a new way to hook into the pipeline. There have also been some bugs fixed and improvement to auto launch the app on Android.

A list of all changes, including breaking changes, to come.

3.0.0

With the release 3.0.0 of ActiveLogin.Authentication we bring new features, bug fixes, and improved build system.

Since 2.0.0 we have:

• Changed 203 files with 4,504 additions and 1,956 deletions
• Closed 28 issues
• Merged 60 PR:s

This release is the one with the most contributions from the community so far.
9 people have been involved in this release, with almost 50% from outside of Active Solution. Great to see so many great community contributions!

Thank you all for your support:
@PeterOrneholm, @span, @nikolaykrondev, @viktorvan, @Palpie, @HSBallina, @fredrik-lundin, @FredrikK, @martinsjolander

Major features and changes in this release

• Support for authenticating using QR code in BankID
• Support to abort BankID auth requests
• Only target .NET Standard for API Wrappers
• *.AspNetCore packages now require ASP.NET Core 3.1
• Our Azure DevOps Pipeline is now configured through code (YAML)

Features & Improvements

• Use QR codes for other device authentication #19, #138, #150, #154, #155
• Add cancel button to abort BankID auth requests #134, #145, #143
• Apply a default User Agent for calls to the BankId/GrandId API:s #157
• Adding Http method on action #121, #120
• Support callback path based on IApplicationBuilder.Map paths enhancement #123, #126
• Support third party browsers on iOS #86, #181
• Breaking change: Update to new Azure KeyVault Secrets Client #193, #194, #208, #209

Bugfixes & Refactorings

• Breaking change: Update BankID texts #136, #137
• Url.Action() returns inconsistent urls in Core 2.2/3.0 #115, #116
• Use AngleSharp in tests #147, #179
• Fix polyfyll for fetch #159, #171
• Refactor device detection and try to fix bug #183
• QR code authentication message flickers and could be clarified bug #188, #195
• BankID cancellation broken for erronous cancellation requests bug #184, #185
• UseClientCertificateFromAzureKeyVault only allows for one certificate bug #189
• Result classes in IBankIdApiClient are not exposed to user bug #191, #197, #210, #211

Tooling & Engineering

• Enable "C# 8 nullable reference types" #140, #163
• Breaking change: Upgrade to ASP.NET Core 3.X #109, #114, #133, #161
• Use YAML for Azure Pipelines #21, #160
• Breaking change: Drop strong naming for libraries only targeting .NET Core #139, #141
• Package icon and license within NuGet-package enhancement #129
• Create an editorconfig file #99, #180
• Breaking change: Add explicit assembly version #130
• Breaking change: Remove Authentication from name of Authentication.cs classes #176, #177
• Breaking change: Move *Extensions.cs into namespace Microsoft.Extensions.DependencyInjection #174, #175
• Breaking change: Use SocketsHttpHandler instead of old HttpClientHandler #173, #172

Misc

• Breaking change: Update dependencies
• Breaking change: Update spelling in logging
• Update docs #117, #125, #148, #149, #151, #156, #158, #164, #170, #186, #192, #201, #202, #203, #204, #207, #214, #216, #219

Breaking changes

For a full list of breaking changes, see al issues/PR:s prefixed with Breaking change: above. Most of them should go unnoticed, but a few might have bigger impact.

Upgrade to ASP.NET Core 3.X (#109, #114, #133, #161)

We now require ASP.NET Core 3.1 for the UI parts. The API wrapper still targets .NET Standard 2.0, but de did drop explicit support for older versions of .NET Framework.

Update to new Azure KeyVault Secrets Client (#193, #194, #208, #209)

We have updated the Azure Key Vault client, which requires the configuration to be in a different way. An example of new config:

{
    "ActiveLogin:BankId:ClientCertificate": {
        "UseManagedIdentity": true,

        "AzureAdTenantId": "",
        "AzureAdClientId": "",
        "AzureAdClientSecret": "",

        "AzureKeyVaultUri": "TODO-ADD-YOUR-VALUE",
        "AzureKeyVaultSecretName": "TODO-ADD-YOUR-VALUE"
    }
}

Renaming of classes and namespaces

We have removed Authentication from name of Authentication.cs classes (#176, #177) and move *Extensions.cs into namespace Microsoft.Extensions.DependencyInjection (#174, #175). You might have to update your imports and/or rename classes you have explicitly used. In most cases the classes are used as extension methods and you should not be affected.

Feedback

If you find any bugs or have feedback in general. Please file an issue!

3.0.0 Beta 2

With the release 3.0.0 beta of ActiveLogin.Authentication we bring new features, bugfixes and improved build system.

Major features and changes in this release

• Support for authenticating using QR code in BankID
• Support to abort BankID auth requests
• Only target .NET Standard for API Wrappers
• *.AspNetCore packages now requires ASP.NET Core 3.1
• Our Azure DevOps Pipeline is now configured through code (YAML)

Features & Improvements

• Use QR codes for other device authentication #19, #138, #150, #154, #155
• Add cancel button to abort BankID auth requests #134, #145, #143
• Apply a default User Agent for calls to the BankId/GrandId API:s #157
• Adding Http method on action #121, #120
• Support callback path based on IApplicationBuilder.Map paths enhancement #123, #126
• Support third party browsers on iOS #86, #181
• Breaking change: Update to new Azure KeyVault Secrets Client #193, #194

Bugfixes & Refactorings

• Breaking change: Update BankID texts #136, #137
• Url.Action() returns inconsistent urls in Core 2.2/3.0 #115, #116
• Use AngleSharp in tests #147, #179
• Fix polyfyll for fetch #159, #171
• Refactor device detection and try to fix bug #183
• QR code authentication message flickers and could be clarified bug #188, #195
• BankID cancellation broken for erronous cancellation requests bug #184, #185
• UseClientCertificateFromAzureKeyVault only allows for one certificate bug #189
• Result classes in IBankIdApiClient are not exposed to user bug #191, #197

Tooling & Enginering

• Enable "C# 8 nullable reference types" #140, #163
• Breaking change: Upgrade to ASP.NET Core 3.X #109, #114, #133, #161
• Use YAML for Azure Pipelines #21, #160
• Breaking change: Drop strong naming for libraries only targeting .NET Core #139, #141
• Package icon and license within NuGet-package enhancement #129
• Create an editorconfig file #99, #180
• Breaking change: Add explicit assembly version #130
• Breaking change: Remove Authentication from name of Authentication.cs classes #176, #177
• Breaking change: Move *Extensions.cs into namespace Microsoft.Extensions.DependencyInjection #174, #175
• Breaking change: Use SocketsHttpHandler instead of old HttpClientHandler #173, 172

Misc

• Breaking change: Update dependencies
• Breaking change: Update spelling in logging
• Update docs #117, #125, #148, #149, #151, #156, #158, #164, #170, #186, #192

Known issues

We have a few issues with BankID on third party browsers on iOS. Should be fixed before final release.