diff options
author | Jonathan Huot <jonathan.huot@thomsonreuters.com> | 2019-01-07 10:22:22 +0100 |
---|---|---|
committer | Jonathan Huot <jonathan.huot@thomsonreuters.com> | 2019-01-07 10:22:22 +0100 |
commit | fa0b1549546d8c7dc1045ea637a8f8afd0d39a83 (patch) | |
tree | 77690d2dcdd22050e04f45205ab6514a2cde72ff | |
parent | 213a47cf5fc9672271d98b898683727dafe0570b (diff) | |
download | oauthlib-fa0b1549546d8c7dc1045ea637a8f8afd0d39a83.tar.gz |
Add Breaking Changes section & split Bugfixes3-release
-rw-r--r-- | CHANGELOG.rst | 15 |
1 files changed, 9 insertions, 6 deletions
diff --git a/CHANGELOG.rst b/CHANGELOG.rst index 3dea103..2cc0dd3 100644 --- a/CHANGELOG.rst +++ b/CHANGELOG.rst @@ -10,17 +10,20 @@ OAuth2.0 Provider - outstanding Features * RFC8414 OAuth2.0 Authorization Server Metadata support (#605) * RFC7636 PKCE support (#617 #624) -OAuth2.0 Provider - Bugfixes +OAuth2.0 Provider - API/Breaking Changes * Add "request" to confirm_redirect_uri #504 * confirm_redirect_uri/get_default_redirect_uri has a bit changed #445 -* empty scopes no longer raise exceptions for implicit and authorization_code #475 / #406 * invalid_client is now a FatalError #606 * Changed errors status code from 401 to 400: -- invalid_grant: #264 -- invalid_scope: #620 -- access_denied/unauthorized_client/consent_required/login_required #623 -- 401 must have WWW-Authenticate HTTP Header set. #623 + - invalid_grant: #264 + - invalid_scope: #620 + - access_denied/unauthorized_client/consent_required/login_required #623 + - 401 must have WWW-Authenticate HTTP Header set. #623 + +OAuth2.0 Provider - Bugfixes + +* empty scopes no longer raise exceptions for implicit and authorization_code #475 / #406 OAuth2.0 Client - Bugfixes / Changes: |