9.1.0

Features

• automatic silent refresh: stopAutomaticRefresh stops all timers. (8ab853b)
• code-flow: allow using silent refresh by setting useSilentRefresh to true (93902a5)
• sample: Also use new Identity Server 4 for implicit flow demo to prevent issues with same site cookies (58c6354)
• session checks: Session checks work now for code flow too. Please see docs for details. (4bf8901)

Bug Fixes

• code flow: Fixed code flow for IE 11 (0f03d39)
• sample: use hash-based routing (3f44eca)
• session state: save session_state also when using code flow (8fa99ff)
• state: passing an url with a querystring as the state, e. g. url?x=1 (71b705c)
• #687 (e2599e0)
• missing HttpModule dependency (7eac8ae)
• run tokensetup outside ngzone (07bb62d)
• typo (3d331f2)

Pull Requests

• Update sample app and silent-refresh.html script #755, linjie997
• Add optional state parameter for logout, pmccloghrylaing
• fix customHashFragment usage in tryLoginCodeFlow, roblabat
• replace document with injectionToken #741, d-moos
• Support predefined custom parameters extraction from the TokenResponse, vdveer
• Fixed not working silent refresh when using 'code' #735, ErazerBrecht

Thanks

Big Thanks to all contributers: Brecht Carlier, Daniel Moos, Jie Lin, Manfred Steyer, Phil McCloghry-Laing, robin labat, vdveer

Also, big thanks to jeroenheijmans for doing an awesome job with moderating and analyzing the issues!