Update for release

Sustainsys · Sep 19, 2023 · 885a3a7 · 885a3a7
1 parent 248e2c4
commit 885a3a7
Show file tree

Hide file tree

Showing 2 changed files with 8 additions and 13 deletions.
diff --git a/VersionInfo.cs b/VersionInfo.cs
@@ -1,7 +1,7 @@
 using System.Reflection;
 
 [assembly: AssemblyCompany("Sustainsys")]
-[assembly: AssemblyCopyright("Copyright © Sustainsys and contributors 2013-2020")]
+[assembly: AssemblyCopyright("Copyright © Sustainsys and contributors 2013-2023")]
 
 
 // Sustainsys.Saml2 uses semantic versioning
@@ -11,6 +11,6 @@
 //      Patch Number
 //
 
-[assembly: AssemblyVersion("1.0.2")]
-[assembly: AssemblyFileVersion("1.0.2")]
-[assembly: AssemblyInformationalVersion("1.0.2")]
+[assembly: AssemblyVersion("1.0.3")]
+[assembly: AssemblyFileVersion("1.0.3")]
+[assembly: AssemblyInformationalVersion("1.0.3")]
diff --git a/nuget/ReleaseNotes.txt b/nuget/ReleaseNotes.txt
@@ -1,3 +1,7 @@
+Version 1.0.3
+* Security Fix: Bind state and assertion to response issuer.
+* Security Fix: Bind request state to module path to prevent substitution.
+
 Version 1.0.2
 * Security Fix: Ensure received token is a bearer token.
 
@@ -7,13 +11,4 @@ Version 1.0.1
 Version 1.0.0
 * Bug fix: Asp.Net Core2 handler, incorrect signed redirect messages.
 
-Version 0.24.0
-* Bug fix: Asp.Net Core2 handler with null AuthenticationProperties now works.
-* Bug fix: Error handling in Owin middleware with null/missing return url.
-* Compatibility setting to ignore missing InResponseTo
-
-Version 0.23.0
-* Project renamed to Sustainsys.Saml2
-* No other changes since 0.22.0
-
 See GitHub milestone issue list for details.