WPF 3.1.4 & WinForms 3.1.3

• Now support .NET Core 3.1.0 #149

WPF & Android 3.1.3

WPF

• Assembly is now actually strong-named.

Android

• Sign-in flow no longer cancels when app switching. This allows 2FA apps to be successfully used during sign-in.

3.1.2

• Allow ID tokens "issued at" (iat) claims from "the future" to allow slow local clocks on mobile and desktop devices.
• Assemblies are now strong-named except Auth0.Oidcclient.Android which can not be because Xamarin.Android.Support.CustomTabs is not strong-named

3.1.1

All

• Corrected OpenIDConnect package dep version to 5.6.0
• Tweaked some ID Token Validation exception messages
• Update IdentityModel.OidcClient to 3.1.2

WinForms

• Changed WebBrowserBrowser (IE compatible mode) to handle ULP error scenarios without closing and to ensure completed flows return correctly on Windows Server locked-down browsing.

3.1.0

All platforms

• Improved OIDC Compliance - ID Tokens have more comprehensive checks
• Update Microsoft.IdentityModel.Protocols.OpenIdConnect to 5.6.0
• Update IdentityModel.OidcClient to 3.1.0

WinForms

• NuGet package brings in Microsoft.Toolkit.Forms.UI.Controls.WebView
• Update Microsoft.Toolkit.Forms.UI.Controls.WebView to 6.0.0

WPF

• NuGet package brings in Microsoft.Toolkit.Forms.UI.Controls.WebView
• Update Microsoft.Toolkit.Wpf.UI.Controls.WebView to 6.0.0

3.0.1

All platforms

• Correct package dependency version for Auth0.OidcClient.Core

Android

• Fix No Browser configured error by ensuring the non-Activity constructor for Auth0Client creates a default Browser implementation #118

3.0.0

Breaking changes! Please visit our v3 migration guide.

All platforms

• Upgrade IdentityModel.OidcClient to 3.0.1
• Add CancellationToken support to IAuth0Client/Auth0Client methods (not honored yet)
• Combined LogoutAsync and RefreshTokenAsync overloads on IAuth0Client/Auth0Client
• ClientSecret property is now marked Obsolete to discourage use in native clients
• Add email to default scopes and force openid to always be included
• Add debugger logging statements that show expected callback URLs
• Add extraParameters parameter to ParseResponseAsync
• Ensure user agent sent on RefreshToken and ProcessResponse
• Remove obsolete PlatformWebView classes

Android

• Add automatic callback URL (IntentFilter) detection

iOS

• Fix ASWebAuthenticationSessionBrowser being assigned to Browser directly

WinForms & WPF

• Support Microsoft Edge and prefer it over Internet Explorer
• Min target is now .NET 4.6.2

UWP

• Support Microsoft Edge and prefer it over Internet Explorer
• Min target is now uap10.0.16299 (Fall Creators Edition)

2.4.3

All platforms

• Improved XML code documentation.
• Update IdentityModel.OidcClient2 to 2.9.2

Android

• Update Xamarin.Android.Support.CustomTabs to 28.0.0.3

iOS

• Fix iOS 13 compatibility by setting ASWebAuthenticationSession.PresentationAnchor #93

UWP

• Update Microsoft.NETCore.UniversalWindowsPlatform to 6.2.9

v2.4.2

All platforms

• Fixes Auth0ClientOptions RedirectUri so it is actually honored.
• Clarified RedirectUri and PostLogoutRedirectUri on Auth0ClientOptions in doc comments
• Debug log now helpfully reports what Callback and Logout URLs to whitelist

v2.4.1

Android

• Hotfix for #78 exception targeting Android SDK 9