IdentityModel Extensions for .Net provide assemblies that are interesting for web developers that wish to use federated identity providers for establishing the callers identity.
Current version - 5.1.5
Preview version - 5.2.0-preview2-41113220915 has support for WsFederation, Saml1, Saml2 and EnvelopedSignature validation.
Minimum recommended version - 4.0.3
You can find the changes for each version in the change log.
IdentityModel Extensions library Microsoft.IdentityModel.Tokens has a known security vulnerability affecting version 5.1.0. Please update to >= 5.1.1 immediately. An updated package is available on NuGet. For more details, see the security notice.
IdentityModel Extensions for .NET 5 has now been released. If you are using IdentityModel Extensions with ASP.NET, the following combinations are supported:
- IdentityModel Extensions for .NET 4.x and ASP.NET 4
- IdentityModel Extensions for .NET 5.x and ASP.NET Core 1.x
All other combinations aren't supported.
We provide a full suite of sample applications and documentation on GitHub to help you get started with learning the Azure Identity system. This includes tutorials for native clients such as Windows, Windows Phone, iOS, OSX, Android, and Linux. We also provide full walkthroughs for authentication flows such as OAuth2, OpenID Connect, Graph API, and other awesome features.
We leverage Stack Overflow to work with the community on supporting Azure Active Directory and its SDKs, including this one! We highly recommend you ask your questions on Stack Overflow (we're all on there!) Also browse existing issues to see if someone has had your question before.
We recommend you use the "adal" tag so we can see it! Here is the latest Q&A on Stack Overflow for ADAL: http://stackoverflow.com/questions/tagged/adal
If you find a security issue with our libraries or services please report it to secure@microsoft.com with as much detail as possible. Your submission may be eligible for a bounty through the Microsoft Bounty program. Please do not post security issues to GitHub Issues or any other public site. We will contact you shortly upon receiving the information. We encourage you to get notifications of when security incidents occur by visiting this page and subscribing to Security Advisory Alerts.
All code is licensed under the MIT license and we triage actively on GitHub. We enthusiastically welcome contributions and feedback. See Contributing.md for guidelines, branch information, build instructions, and legalese.
- Support for creating, serializing, and validating Json Web Tokens.
- Provides model for config free validation using TokenValidationParameters.
- Support for creating and consuming OpenId and WsFederation messages.
- Support for validating Saml and Saml2 tokens using TokenValidationParameters.
- Support for dynamic metatdata retreival.
- Includes types that provide support for cryptographic operations.
- Includes types that provide support for Saml tokens.
- Provides types that are common across OpenIdConnect and WsFed protocols.
- Includes types that provide support for OpenIdConnect protocol.
- Includes types that provide support for WsFederation protocol.
- Includes Event Source based logging support.
Copyright (c) Microsoft Corporation. All rights reserved. Licensed under the MIT License (the "License");
This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact opencode@microsoft.com with any additional questions or comments.