Co-authored-by: dependencyupdates[bot] <218638057+dependencyupdates[bot]@users.noreply.github.com>

Co-authored-by: dependencyupdates[bot] <218638057+dependencyupdates[bot]@users.noreply.github.com>

Co-authored-by: dependencyupdates[bot] <218638057+dependencyupdates[bot]@users.noreply.github.com>

* Add initial authentication supporting JWT tokens, OpenID Connect, OAuth2.0

* Add ServicePulse-specific OIDC configuration and endpoint

* Update src/ServiceControl/App.config

Co-authored-by: Warwick Schroeder <[email protected]>

* Update src/ServiceControl/App.config

Co-authored-by: Warwick Schroeder <[email protected]>

* Remove SP enabled flag

* Update approved routes and settings

* Allow multiple api scopes, or none. Add client audience config setting

* Add auth to other instances

* Rename to ApiScopes

* Add additional options for flexible and secure hosting; SSL/TLS, Reverse Proxy, Direct HTTPS, CORS

* Remove previously added rate limit for anon api

* Forward auth header

* Allow Anon for CheckRemotes

* Remove unused rate limiting middleware

* MapControllers correctly

* Upgrade package

* Update local testing files. Add debug endpoint for dev.

* Update reverse proxy test file

* Update HTTPS config and documentation

* Update documentation for authentication

* Add forward header tests for all instances. Add links to additional documentation in readme

* Add more manual testing scenarios to docs. Rename files.

* Clean doc formatting. Update hosting guide.

* Update internal auth docs. Fix issue with server-to-server remote instance checks with auth.

* Move public docs content to the docs PR

* Clean servicecontrol hosting guide. Move content to docs RP (WIP)

* Move public docs into docs PR

* Clean forward header tests and add comments

* Fix build issues

* fix breaking tests. Add unit tests for security settings

* Add security acceptance tests for Primary instance

* Add CORS acceptance tests to audit and monitoring.

* Add HTTPS acceptance tests to audit and monitoring

* Add OpenID Conntect acceptance tests to audit and monitoring

* Move some documentation to public docs

* Small tweaks off review

* Add comments. Update security setting validation.

* Update tests off of review

* Fix API approval tests

* Update from feedback

* Updates from testing. Add additional logging to support testing. Updates from feedback.

* Remove sensitive data from diagnostics file

* add MD doc file back in

* Remove some details from debug logs.

* Clean logging. Fix issue with Platform Connector when auth is enabled.

* Undo making the connection controller anonymous. This is not required as ServicePulse should be the only client using it.

* Forward Authorization header to remote instances

* Update security package to .NET10

* Resolve new obsolete APIs due to .NET10 upgrade

* Fix auth issue with service-to-service call audit-count

---------

Co-authored-by: Jason Taylor <[email protected]>
Co-authored-by: Jason Taylor <[email protected]>
Co-authored-by: Warwick Schroeder <[email protected]>

Co-authored-by: internalautomation[bot] <85681268+internalautomation[bot]@users.noreply.github.com>

…hell (#5288)

* Remove unneeded AWSSDK.SecurityToken reference

* Sort packages

* Clean up packages

* Clean up pinned transitive references

* Remove unused testing app

* Format SetupInstanceTests stuff