Skip to content

Commit 68238fb

Browse files
manfredsteyermanfredsteyer
committed
fix: correctly use clockSkew for hasValid[Access|Id]Token
1 parent 5a499bb commit 68238fb

File tree

12 files changed

+208
-43
lines changed

12 files changed

+208
-43
lines changed

docs/additional-documentation/authorization-servers/azure-ad-(active-directory).html

+104
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,104 @@
1+
<!doctype html>
2+
<html class="no-js" lang="">
3+
<head>
4+
<meta charset="utf-8">
5+
<meta http-equiv="x-ua-compatible" content="ie=edge">
6+
<title>angular-oauth2-oidc</title>
7+
<meta name="description" content="">
8+
<meta name="viewport" content="width=device-width, initial-scale=1">
9+
10+
<link rel="icon" type="image/x-icon" href="../../images/favicon.ico">
11+
<link rel="stylesheet" href="../../styles/style.css">
12+
<link rel="stylesheet" href="../../styles/dark.css" media="(prefers-color-scheme: dark)">
13+
</head>
14+
<body>
15+
16+
<div class="navbar navbar-default navbar-fixed-top visible-xs">
17+
<a href="../../" class="navbar-brand">angular-oauth2-oidc</a>
18+
<button type="button" class="btn btn-default btn-menu ion-ios-menu" id="btn-menu"></button>
19+
</div>
20+
21+
<div class="xs-menu menu" id="mobile-menu">
22+
<div id="book-search-input" role="search"><input type="text" placeholder="Type to search"></div> <compodoc-menu></compodoc-menu>
23+
</div>
24+
25+
<div class="container-fluid main">
26+
<div class="row main">
27+
<div class="hidden-xs menu">
28+
<compodoc-menu mode="normal"></compodoc-menu>
29+
</div>
30+
<!-- START CONTENT -->
31+
<div class="content additional-page">
32+
<div class="content-data">
33+
34+
35+
36+
37+
38+
39+
40+
41+
42+
43+
44+
45+
46+
47+
48+
49+
50+
51+
52+
<h1 id="using-with-azure-ad">Using with Azure AD</h1>
53+
<p>For using this library with <strong>Azure Active Directory</strong> (<strong>Azure AD</strong>), we recommend an additional look to this <a href="https://dev.to/yuriburger/azure-active-directory-b2c-with-pkce-for-your-angular-app-1dcg">blog post</a> and the example linked at the end of this blog post.</p>
54+
55+
</div><div class="search-results">
56+
<div class="has-results">
57+
<h1 class="search-results-title"><span class='search-results-count'></span> result-matching "<span class='search-query'></span>"</h1>
58+
<ul class="search-results-list"></ul>
59+
</div>
60+
<div class="no-results">
61+
<h1 class="search-results-title">No results matching "<span class='search-query'></span>"</h1>
62+
</div>
63+
</div>
64+
</div>
65+
<!-- END CONTENT -->
66+
</div>
67+
</div>
68+
69+
<script>
70+
var COMPODOC_CURRENT_PAGE_DEPTH = 2;
71+
var COMPODOC_CURRENT_PAGE_CONTEXT = 'additional-page';
72+
var COMPODOC_CURRENT_PAGE_URL = 'azure-ad-(active-directory).html';
73+
var MAX_SEARCH_RESULTS = 15;
74+
</script>
75+
76+
<script src="../../js/libs/custom-elements.min.js"></script>
77+
<script src="../../js/libs/lit-html.js"></script>
78+
79+
<script type="module" src="../../js/menu-wc.js" defer></script>
80+
<script nomodule src="../../js/menu-wc_es5.js" defer></script>
81+
82+
<script src="../../js/libs/bootstrap-native.js"></script>
83+
84+
<script src="../../js/libs/es6-shim.min.js"></script>
85+
<script src="../../js/libs/EventDispatcher.js"></script>
86+
<script src="../../js/libs/promise.min.js"></script>
87+
<script src="../../js/libs/zepto.min.js"></script>
88+
89+
<script src="../../js/compodoc.js"></script>
90+
91+
<script src="../../js/tabs.js"></script>
92+
<script src="../../js/menu.js"></script>
93+
<script src="../../js/libs/clipboard.min.js"></script>
94+
<script src="../../js/libs/prism.js"></script>
95+
<script src="../../js/sourceCode.js"></script>
96+
<script src="../../js/search/search.js"></script>
97+
<script src="../../js/search/lunr.min.js"></script>
98+
<script src="../../js/search/search-lunr.js"></script>
99+
<script src="../../js/search/search_index.js"></script>
100+
<script src="../../js/lazy-load-graphs.js"></script>
101+
102+
103+
</body>
104+
</html>

docs/changelog.html

+35-8
Original file line numberDiff line numberDiff line change
@@ -31,6 +31,33 @@
3131
<div class="content getting-started">
3232
<div class="content-data">
3333

34+
<h2 id="1200-2021-07-16"><a href="https://github.com/manfredsteyer/angular-oauth2-oidc/compare/v10.0.3...v10.0.2">12.0.0</a> (2021-07-16)</h2>
35+
<h3 id="bug-fixes">Bug Fixes</h3>
36+
<ul>
37+
<li><a href="https://github.com/manfredsteyer/angular-oauth2-oidc/issues/728">#728</a> (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/51e438a942773948f17ab108332d704b459fd789">51e438a</a>), closes <a href="https://github.com//github.com/manfredsteyer/angular-oauth2-oidc/issues/728/issues/issuecomment-808969225">/github.com/manfredsteyer/angular-oauth2-oidc/issues/728#issuecomment-808969225</a></li>
38+
<li>clear location.hash only if it is present (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/c2b2753943d59a6b4b5149f1003371338ac1a210">c2b2753</a>), closes <a href="https://github.com/manfredsteyer/angular-oauth2-oidc/issues/970">#970</a></li>
39+
<li>correctly handle ? and &amp; in location replacements (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/70fd8268832aba954956542e37896252dde5cdab">70fd826</a>)</li>
40+
<li>Disable nonce validation for id token for e2e tests (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/f5bd96ca81ec6b7af868de72b1098541264347cf">f5bd96c</a>)</li>
41+
<li>fix scope/state removal for implicit flow with hash (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/9e257d0d267942d716607f2a1c78700bd9d6e9ef">9e257d0</a>)</li>
42+
<li>in code flow pass options to error handler (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/c9a2c557178af26154adfbcf39e3db2d12ee0503">c9a2c55</a>), closes <a href="https://github.com/manfredsteyer/angular-oauth2-oidc/issues/972">#972</a></li>
43+
<li><strong>jwks:</strong> update jsrsasign dependency to 10.2.0 (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/a05bd8a106035acb51fb06fd62e17de0de8decb4">a05bd8a</a>), closes <a href="https://github.com/manfredsteyer/angular-oauth2-oidc/issues/1061">#1061</a></li>
44+
<li>multiplying calls to token endpoint in code flow (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/59f65d2eb9cd1a724301fb3de0b3def796920bd4">59f65d2</a>)</li>
45+
<li>Refresh tokens with a plus sign get corrupted before sending to token endpoint (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/2204c5a307640d11b847a0c266b44ca2c18fd9a7">2204c5a</a>)</li>
46+
<li><strong>revoketokenandlogout:</strong> &#39;customParameters&#39; should accept boolean (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/9761baded0d85bd831947de4607296fb029579ab">9761bad</a>)</li>
47+
<li>While Using POPUP mode, we click on login button multiple time it opens multiple popup instead of focusing already opened (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/bbff95b86173fa9262bf962e7fa4cfe4121b787e">bbff95b</a>)</li>
48+
</ul>
49+
<h3 id="features">Features</h3>
50+
<ul>
51+
<li>introduce DateTimeProvider (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/0c0a4a7a2574c8c134fa839f7ccdee06273a0676">0c0a4a7</a>)</li>
52+
<li><strong>logout:</strong> postLogoutRedirectUri should not default to redirectUri (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/ff7d1d915aa19f87bcb1c2d18ac3eb280db78d3b">ff7d1d9</a>)</li>
53+
<li>support JWT response on userinfo endpoint (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/da1649499376863b0ebf884748176f3b38d91899">da16494</a>)</li>
54+
<li>Custom grant type added (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/pull/919">https://github.com/manfredsteyer/angular-oauth2-oidc/pull/919</a>)</li>
55+
<li>Listen for storage to receive auth hash from popup (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/pull/935">https://github.com/manfredsteyer/angular-oauth2-oidc/pull/935</a>)</li>
56+
<li>Add event for unchanged session (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/pull/936">https://github.com/manfredsteyer/angular-oauth2-oidc/pull/936</a>)</li>
57+
<li>Add loginHint to codeFlow (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/pull/938">https://github.com/manfredsteyer/angular-oauth2-oidc/pull/938</a>)</li>
58+
<li>Add a windowRef option to initLoginFlowInPopup to prevent the window from beeing blocked by popup blockers (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/pull/965">https://github.com/manfredsteyer/angular-oauth2-oidc/pull/965</a>)</li>
59+
<li>Use configured revocationEndpoint by default (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/pull/1020">https://github.com/manfredsteyer/angular-oauth2-oidc/pull/1020</a>)</li>
60+
</ul>
3461
<h2 id="1000-2020-06-30">10.0.0 (2020-06-30)</h2>
3562
<ul>
3663
<li>chore: increase version in package.json (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/84d95a7">84d95a7</a>)</li>
@@ -58,20 +85,20 @@ <h2 id="1000-2020-06-30">10.0.0 (2020-06-30)</h2>
5885
<li>fix(lib): copying LICENSE file to output build (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/e89aa6d">e89aa6d</a>)</li>
5986
</ul>
6087
<h1 id="1000-2020-06-30-1"><a href="https://github.com/manfredsteyer/angular-oauth2-oidc/compare/9.2.0...10.0.0">10.0.0</a> (2020-06-30)</h1>
61-
<h3 id="bug-fixes">Bug Fixes</h3>
88+
<h3 id="bug-fixes-1">Bug Fixes</h3>
6289
<ul>
6390
<li>loadDiscoveryDocumentAndLogin should pass state into initLoginFlow (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/132c62426cfe07ddaf0eebb85bdf062ee49e4a06">132c624</a>)</li>
6491
<li><strong>lib:</strong> copying LICENSE file to output build (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/e89aa6d90054dc4ad20f234db2107e82b11a9386">e89aa6d</a>)</li>
6592
</ul>
66-
<h3 id="features">Features</h3>
93+
<h3 id="features-1">Features</h3>
6794
<ul>
6895
<li><strong>oauth-service:</strong> pass custom url params to logOut (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/4607d55c6bdf608a32a2a029feac9eb37bfb493d">4607d55</a>)</li>
6996
<li><strong>oauth-service:</strong> revokeTokenAndLogout with cust params (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/026dcb38e4299afbab8faff1d54dba94cadc1aa6">026dcb3</a>)</li>
7097
</ul>
7198
<h1 id="1000-2020-06-30-2"><a href="https://github.com/manfredsteyer/angular-oauth2-oidc/compare/v9.3.0...v10.0.0">10.0.0</a> (2020-06-30)</h1>
7299
<h1 id="changelog">Changelog</h1>
73100
<p>All notable changes to this project will be documented in this file. See <a href="https://github.com/conventional-changelog/standard-version">standard-version</a> for commit guidelines.</p>
74-
<h3 id="features-1">Features</h3>
101+
<h3 id="features-2">Features</h3>
75102
<ul>
76103
<li><strong>automatic silent refresh:</strong> stopAutomaticRefresh stops all timers. (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/8ab853bf38dd162060d7b6cbd18f7b4fd5a84f18">8ab853b</a>)</li>
77104
<li><strong>code-flow:</strong> allow using implicit flow by setting useSilentRefresh to true (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/93902a5808bb9b75a41d4bde44c6ab763bcfa9f6">93902a5</a>)</li>
@@ -83,7 +110,7 @@ <h3 id="features-1">Features</h3>
83110
<li>remove jsrsasign dependancy (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/77cb37abfd08762a59b221257ed8d5d5b7c795d4">77cb37a</a>)</li>
84111
<li>Upgrade to angular 8 (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/31c6273b388af7e796a9ad663e346f1e33ff331c">31c6273</a>)</li>
85112
</ul>
86-
<h3 id="bug-fixes-1">Bug Fixes</h3>
113+
<h3 id="bug-fixes-2">Bug Fixes</h3>
87114
<ul>
88115
<li>loadDiscoveryDocumentAndLogin should pass state into initLoginFlow (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/132c62426cfe07ddaf0eebb85bdf062ee49e4a06">132c624</a>)</li>
89116
<li><strong>lib:</strong> copying LICENSE file to output build (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/e89aa6d90054dc4ad20f234db2107e82b11a9386">e89aa6d</a>)</li>
@@ -101,26 +128,26 @@ <h3 id="bug-fixes-1">Bug Fixes</h3>
101128
<h3 id="922-2020-05-09"><a href="https://github.com/manfredsteyer/angular-oauth2-oidc/compare/v9.2.1...v9.2.2">9.2.2</a> (2020-05-09)</h3>
102129
<h3 id="921-2020-04-23"><a href="https://github.com/manfredsteyer/angular-oauth2-oidc/compare/v9.2.0...v9.2.1">9.2.1</a> (2020-04-23)</h3>
103130
<h2 id="920-2020-03-28"><a href="https://github.com/manfredsteyer/angular-oauth2-oidc/compare/v9.1.0...v9.2.0">9.2.0</a> (2020-03-28)</h2>
104-
<h3 id="features-2">Features</h3>
131+
<h3 id="features-3">Features</h3>
105132
<ul>
106133
<li><p><strong>revoketokenandlogout:</strong> explicit way to revoke an access token according to <a href="https://tools.ietf.org/html/rfc7009">RFC 7009</a> (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/c799eadbfa616d459af8be1a667499834745d78f">c799ead</a>)</p>
107134
</li>
108135
<li><p><strong>token-revocation:</strong> also revoke refresh_token (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/429ed2c5b50c60ac857ff0ffe84c1d7fc995c6dd">429ed2c</a>)</p>
109136
</li>
110137
</ul>
111-
<h3 id="bug-fixes-2">Bug Fixes</h3>
138+
<h3 id="bug-fixes-3">Bug Fixes</h3>
112139
<ul>
113140
<li><strong>sample:</strong> make sense of the guard (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/1cae011532dc91a250368c95120812d2f78f8109">1cae011</a>)</li>
114141
</ul>
115142
<h2 id="910-2020-03-23">9.1.0 (2020-03-23)</h2>
116-
<h3 id="features-3">Features</h3>
143+
<h3 id="features-4">Features</h3>
117144
<ul>
118145
<li><strong>automatic silent refresh:</strong> stopAutomaticRefresh stops all timers. (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/8ab853bf38dd162060d7b6cbd18f7b4fd5a84f18">8ab853b</a>)</li>
119146
<li><strong>code-flow:</strong> allow using silent refresh by setting useSilentRefresh to true (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/93902a5808bb9b75a41d4bde44c6ab763bcfa9f6">93902a5</a>)</li>
120147
<li><strong>sample:</strong> Also use new Identity Server 4 for implicit flow demo to prevent issues with same site cookies (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/58c63541bc7d83d72c30577da2b68ac2d1dc35b7">58c6354</a>)</li>
121148
<li><strong>session checks:</strong> Session checks work now for code flow too. Please see docs for details. (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/4bf89014d8cc5d50ed716500e3f3ad265b4ae2db">4bf8901</a>)</li>
122149
</ul>
123-
<h3 id="bug-fixes-3">Bug Fixes</h3>
150+
<h3 id="bug-fixes-4">Bug Fixes</h3>
124151
<ul>
125152
<li><strong>code flow:</strong> Fixed code flow for IE 11 (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/0f03d393aac9fe4e26444a73884dd154318d530f">0f03d39</a>)</li>
126153
<li><strong>sample:</strong> use hash-based routing (<a href="https://github.com/manfredsteyer/angular-oauth2-oidc/commit/3f44ecae157305c56ae377fcd6d2df8dfde8adf5">3f44eca</a>)</li>

0 commit comments

Comments
 (0)