Bump Katana to 4.2.3 and use the new IAppBuilder.GetDefaultCookieManager() extension

Directory.Packages.props

@@ -39,7 +39,7 @@
     <PackageVersion Include="Microsoft.IdentityModel.Protocols"                               Version="8.12.0"          />
     <PackageVersion Include="Microsoft.IdentityModel.Tokens"                                  Version="8.12.0"          />
     <PackageVersion Include="Microsoft.Net.Http.Headers"                                      Version="2.3.0"           />
-    <PackageVersion Include="Microsoft.Owin.Security"                                         Version="4.2.2"           />
+    <PackageVersion Include="Microsoft.Owin.Security"                                         Version="4.2.3"           />
     <PackageVersion Include="Microsoft.Windows.SDK.Contracts"                                 Version="10.0.17763.1000" />
     <PackageVersion Include="MongoDB.Bson"                                                    Version="3.4.0"           />
     <PackageVersion Include="MongoDB.Driver"                                                  Version="3.4.0"           />
@@ -55,7 +55,7 @@
     <PackageVersion Include="MartinCostello.Logging.XUnit"                                    Version="0.6.0"           />
     <PackageVersion Include="Microsoft.AspNetCore.TestHost"                                   Version="2.3.0"           />
     <PackageVersion Include="Microsoft.Extensions.DependencyInjection"                        Version="8.0.1"           />
-    <PackageVersion Include="Microsoft.Owin.Testing"                                          Version="4.2.2"           />
+    <PackageVersion Include="Microsoft.Owin.Testing"                                          Version="4.2.3"           />
     <PackageVersion Include="Moq"                                                             Version="4.18.4"          />
     <PackageVersion Include="System.Linq.Async"                                               Version="6.0.1"           />
 
@@ -85,9 +85,9 @@
     <PackageVersion Include="Microsoft.EntityFrameworkCore.Sqlite"                            Version="2.3.0"           />
     <PackageVersion Include="Microsoft.Extensions.Hosting"                                    Version="8.0.1"           />
     <PackageVersion Include="Microsoft.Net.Compilers.Toolset"                                 Version="4.14.0"          />
-    <PackageVersion Include="Microsoft.Owin.Host.SystemWeb"                                   Version="4.2.2"           />
-    <PackageVersion Include="Microsoft.Owin.Security.Cookies"                                 Version="4.2.2"           />
-    <PackageVersion Include="Microsoft.Owin.Security.OAuth"                                   Version="4.2.2"           />
+    <PackageVersion Include="Microsoft.Owin.Host.SystemWeb"                                   Version="4.2.3"           />
+    <PackageVersion Include="Microsoft.Owin.Security.Cookies"                                 Version="4.2.3"           />
+    <PackageVersion Include="Microsoft.Owin.Security.OAuth"                                   Version="4.2.3"           />
     <PackageVersion Include="Microsoft.Web.Infrastructure"                                    Version="2.0.1"           />
     <PackageVersion Include="Newtonsoft.Json"                                                 Version="13.0.3"          />
     <PackageVersion Include="Quartz.Extensions.Hosting"                                       Version="3.14.0"          />

sandbox/OpenIddict.Sandbox.AspNet.Client/Web.config

@@ -55,7 +55,7 @@
     <assemblyBinding xmlns="urn:schemas-microsoft-com:asm.v1">
       <dependentAssembly>
         <assemblyIdentity name="Microsoft.Owin" culture="neutral" publicKeyToken="31bf3856ad364e35" />
-        <bindingRedirect oldVersion="0.0.0.0-4.2.2.0" newVersion="4.2.2.0" />
+        <bindingRedirect oldVersion="0.0.0.0-4.2.3.0" newVersion="4.2.3.0" />
       </dependentAssembly>
     </assemblyBinding>
     <assemblyBinding xmlns="urn:schemas-microsoft-com:asm.v1">

sandbox/OpenIddict.Sandbox.AspNet.Server/Web.config

@@ -61,25 +61,25 @@
     <assemblyBinding xmlns="urn:schemas-microsoft-com:asm.v1">
       <dependentAssembly>
         <assemblyIdentity name="Microsoft.Owin" culture="neutral" publicKeyToken="31bf3856ad364e35" />
-        <bindingRedirect oldVersion="0.0.0.0-4.2.2.0" newVersion="4.2.2.0" />
+        <bindingRedirect oldVersion="0.0.0.0-4.2.3.0" newVersion="4.2.3.0" />
       </dependentAssembly>
     </assemblyBinding>
     <assemblyBinding xmlns="urn:schemas-microsoft-com:asm.v1">
       <dependentAssembly>
         <assemblyIdentity name="Microsoft.Owin.Security" culture="neutral" publicKeyToken="31bf3856ad364e35" />
-        <bindingRedirect oldVersion="0.0.0.0-4.2.2.0" newVersion="4.2.2.0" />
+        <bindingRedirect oldVersion="0.0.0.0-4.2.3.0" newVersion="4.2.3.0" />
       </dependentAssembly>
     </assemblyBinding>
     <assemblyBinding xmlns="urn:schemas-microsoft-com:asm.v1">
       <dependentAssembly>
         <assemblyIdentity name="Microsoft.Owin.Security.Cookies" culture="neutral" publicKeyToken="31bf3856ad364e35" />
-        <bindingRedirect oldVersion="0.0.0.0-4.2.2.0" newVersion="4.2.2.0" />
+        <bindingRedirect oldVersion="0.0.0.0-4.2.3.0" newVersion="4.2.3.0" />
       </dependentAssembly>
     </assemblyBinding>
     <assemblyBinding xmlns="urn:schemas-microsoft-com:asm.v1">
       <dependentAssembly>
         <assemblyIdentity name="Microsoft.Owin.Security.OAuth" culture="neutral" publicKeyToken="31bf3856ad364e35" />
-        <bindingRedirect oldVersion="0.0.0.0-4.2.2.0" newVersion="4.2.2.0" />
+        <bindingRedirect oldVersion="0.0.0.0-4.2.3.0" newVersion="4.2.3.0" />
       </dependentAssembly>
     </assemblyBinding>
     <assemblyBinding xmlns="urn:schemas-microsoft-com:asm.v1">

src/OpenIddict.Client.Owin/OpenIddictClientOwinConfiguration.cs

@@ -54,8 +54,7 @@ public void PostConfigure(string? name, OpenIddictClientOwinOptions options)
         options.CookieManager ??= _provider.GetService<IAppBuilder>() switch
         {
             // See https://github.com/aspnet/AspNetKatana/pull/486 for more information.
-            IAppBuilder builder when builder.Properties.TryGetValue("infrastructure.CookieManager",
-                out object? property) && property is ICookieManager manager => manager,
+            IAppBuilder builder => builder.GetDefaultCookieManager(),
 
             _ => new CookieManager()
         };
@@ -69,9 +68,9 @@ IAppBuilder builder when builder.Properties.TryGetValue("infrastructure.CookieMa
         {
             foreach (var (provider, registrations) in _provider.GetRequiredService<IOptionsMonitor<OpenIddictClientOptions>>()
                 .CurrentValue.Registrations
-                .Where(registration => !string.IsNullOrEmpty(registration.ProviderName))
-                .GroupBy(registration => registration.ProviderName)
-                .Select(group => (ProviderName: group.Key, Registrations: group.ToList())))
+                .Where(static registration => !string.IsNullOrEmpty(registration.ProviderName))
+                .GroupBy(static registration => registration.ProviderName)
+                .Select(static group => (ProviderName: group.Key, Registrations: group.ToList())))
             {
                 // If an explicit mapping was already added, don't overwrite it.
                 if (options.ForwardedAuthenticationTypes.Exists(type =>