auth0 · kailash-b · Nov 25, 2025 · Nov 25, 2025
@@ -13,7 +13,7 @@ jobs:
 
     strategy:
       matrix:
-        dotnet-version: ['net6.0', 'net7.0', 'net8.0']
+        dotnet-version: ['net6.0', 'net7.0', 'net8.0', 'net10.0']
 
     steps:
     - uses: actions/checkout@v5
@@ -24,6 +24,7 @@ jobs:
           6.0.x
           7.0.x
           8.0.x
+          10.0.x
     - name: Restore dependencies
       run: dotnet restore
     - name: Build

@@ -45,6 +45,7 @@ jobs:
             6.0.x
             7.0.x
             8.0.x
+            10.0.x
 
       - name: Create NuGet packages
         shell: pwsh

@@ -20,7 +20,7 @@ A library based on `Microsoft.AspNetCore.Authentication.OpenIdConnect` to make i
 ## Getting started
 ### Requirements
 
-This library supports .NET 6 and .NET 7.
+This library supports .NET 6.0 and above.
 
 ### Installation
 

@@ -19,7 +19,7 @@ A library based on `Microsoft.AspNetCore.Authentication.OpenIdConnect` to make i
 ## Getting started
 ### Requirements
 
-This library supports .NET 6 and .NET 7.
+This library supports .NET 6.0 and above.
 
 ### Installation
 

@@ -1,7 +1,7 @@
 <Project Sdk="Microsoft.NET.Sdk.Web">
 
   <PropertyGroup>
-    <TargetFrameworks>net6.0;net8.0</TargetFrameworks>
+    <TargetFrameworks>net6.0;net8.0;net10.0</TargetFrameworks>
   </PropertyGroup>
 
   <ItemGroup>

@@ -1,16 +1,19 @@
 <Project Sdk="Microsoft.NET.Sdk">
 
   <PropertyGroup>
-    <TargetFrameworks>net6.0;net7.0;net8.0</TargetFrameworks>
+    <TargetFrameworks>net6.0;net7.0;net8.0;net10.0</TargetFrameworks>
   </PropertyGroup>
 
   <ItemGroup>
     <PackageReference Include="Microsoft.AspNetCore.Authentication.OpenIdConnect" Version="6.0.*" Condition="'$(TargetFramework)' == 'net6.0'" />
     <PackageReference Include="Microsoft.AspNetCore.Authentication.OpenIdConnect" Version="7.0.*" Condition="'$(TargetFramework)' == 'net7.0'" />
     <PackageReference Include="Microsoft.AspNetCore.Authentication.OpenIdConnect" Version="8.0.*" Condition="'$(TargetFramework)' == 'net8.0'" />
+    <PackageReference Include="Microsoft.AspNetCore.Authentication.OpenIdConnect" Version="10.0.*" Condition="'$(TargetFramework)' == 'net10.0'" />
+  </ItemGroup>
+
+  <ItemGroup>
     <PackageReference Include="Microsoft.IdentityModel.Protocols.OpenIdConnect" Version="8.14.0" />
-
-    <PackageReference Include="System.Text.Encodings.Web" Version="8.0.0" />
+    <PackageReference Include="System.Text.Encodings.Web" Version="10.0.0" />
   </ItemGroup>
 
   <ItemGroup>

@@ -33,7 +33,7 @@
        {
            try
            {
                context.Response.Headers.Add("Cache-Control", "no-cache, no-store");

                if (context.Request.HasFormContentType)
                {
@@ -111,7 +111,7 @@
            }

            var principal =
                oidcOptions.SecurityTokenValidator.ValidateToken(token, tokenValidationParameters, out SecurityToken _);

            LogoutTokenValidator.Validate(new JwtSecurityTokenHandler().ReadJwtToken(token));

@@ -124,7 +124,9 @@
         public static async Task WriteErrorAsync(this HttpContext context, int statusCode, string error, string description)
         {
             context.Response.StatusCode = statusCode;
-            await context.Response.WriteAsJsonAsync(new { error, error_description = description });
+            context.Response.ContentType = "application/json";
+            var json = System.Text.Json.JsonSerializer.Serialize(new { error, error_description = description });
+            await context.Response.WriteAsync(json);
         }
 
         public static async Task WriteStatusCodeAsync(this HttpContext context, int statusCode)

@@ -1,13 +1,14 @@
 <Project Sdk="Microsoft.NET.Sdk">
 
   <PropertyGroup>
-    <TargetFramework>net8.0</TargetFramework>
+    <TargetFramework>net10.0</TargetFramework>
   </PropertyGroup>
 
   <ItemGroup>
     <EmbeddedResource Include="jwks.json" />
     <EmbeddedResource Include="jwks2.json" />
     <EmbeddedResource Include="wellknownconfig.json" />
+    <EmbeddedResource Include="wellknownconfig_with_par.json" />
     <EmbeddedResource Include="wellknownconfig_without_par.json" />
   </ItemGroup>
 

@@ -124,7 +124,7 @@ public async Task Should_Throw_When_Using_PAR_But_No_OIDC_Config()
         public async Task Should_Post_To_PAR_Endpoint()
         {
             var mockHandler = new OidcMockBuilder()
-                .MockOpenIdConfig()
+                .MockOpenIdConfig("wellknownconfig_with_par.json")
                 .MockJwks()
                 .MockPAR("https://my-par-request-uri")
                 .Build();
@@ -152,7 +152,7 @@ public async Task Should_Post_To_PAR_Endpoint()
         public async Task Should_Handle_Errors_From_PAR_Endpoint()
         {
             var mockHandler = new OidcMockBuilder()
-                .MockOpenIdConfig()
+                .MockOpenIdConfig("wellknownconfig_with_par.json")
                 .MockJwks()
                 .MockPAR("https://my-par-request-uri", null, 70, HttpStatusCode.BadRequest)
                 .Build();

@@ -2,7 +2,6 @@
   "issuer": "https://tenant.eu.auth0.com/",
   "authorization_endpoint": "https://tenant.eu.auth0.com/authorize",
   "token_endpoint": "https://tenant.eu.auth0.com/oauth/token",
-  "pushed_authorization_request_endpoint": "https://tenant.eu.auth0.com/oauth/par",
   "device_authorization_endpoint": "https://tenant.eu.auth0.com/oauth/device/code",
   "userinfo_endpoint": "https://tenant.eu.auth0.com/userinfo",
   "mfa_challenge_endpoint": "https://tenant.eu.auth0.com/mfa/challenge",

@@ -0,0 +1,64 @@
+{
+  "issuer": "https://tenant.eu.auth0.com/",
+  "authorization_endpoint": "https://tenant.eu.auth0.com/authorize",
+  "token_endpoint": "https://tenant.eu.auth0.com/oauth/token",
+  "pushed_authorization_request_endpoint": "https://tenant.eu.auth0.com/oauth/par",
+  "device_authorization_endpoint": "https://tenant.eu.auth0.com/oauth/device/code",
+  "userinfo_endpoint": "https://tenant.eu.auth0.com/userinfo",
+  "mfa_challenge_endpoint": "https://tenant.eu.auth0.com/mfa/challenge",
+  "jwks_uri": "https://tenant.eu.auth0.com/.well-known/jwks.json",
+  "registration_endpoint": "https://tenant.eu.auth0.com/oidc/register",
+  "revocation_endpoint": "https://tenant.eu.auth0.com/oauth/revoke",
+  "scopes_supported": [
+    "openid",
+    "profile",
+    "offline_access",
+    "name",
+    "given_name",
+    "family_name",
+    "nickname",
+    "email",
+    "email_verified",
+    "picture",
+    "created_at",
+    "identities",
+    "phone",
+    "address"
+  ],
+  "response_types_supported": [
+    "code",
+    "token",
+    "id_token",
+    "code token",
+    "code id_token",
+    "token id_token",
+    "code token id_token"
+  ],
+  "code_challenge_methods_supported": [ "S256", "plain" ],
+  "response_modes_supported": [ "query", "fragment", "form_post" ],
+  "subject_types_supported": [ "public" ],
+  "id_token_signing_alg_values_supported": [ "HS256", "RS256" ],
+  "token_endpoint_auth_methods_supported": [
+    "client_secret_basic",
+    "client_secret_post"
+  ],
+  "claims_supported": [
+    "aud",
+    "auth_time",
+    "created_at",
+    "email",
+    "email_verified",
+    "exp",
+    "family_name",
+    "given_name",
+    "iat",
+    "identities",
+    "iss",
+    "name",
+    "nickname",
+    "phone_number",
+    "picture",
+    "sub"
+  ],
+  "request_uri_parameter_supported": false
+}
-Original file line number
+Diff line change
@@ Expand Up / @@ -45,6 +45,7 @@ jobs: @@
 .0.x
 .0.x
 .0.x
+.0.x
           - name: Create NuGet packages
             shell: pwsh
@@ Expand Down @@