| Commit message (Collapse) | Author | Age | Files | Lines |
... | |
| | |
|
| | |
|
| |
| |
| |
| |
| |
| |
| | |
Cryptography has adopted a firefox-style versioning system where new
feature releases always have new major versions even if they don't have
backwards incompatible changes. This means that an upper bound on the
dependency does not make sense.
|
| | |
|
| | |
|
|\ \
| |/
|/| |
Oidc refresh
|
| | |
|
| | |
|
| | |
|
| | |
|
|/
|
|
|
| |
The RefreshTokenGrant modifiers now take the same arguments as the
AuthorizationCodeGrant modifiers
|
|\
| |
| | |
3.1.1 release
|
| |
| |
| |
| | |
It allows retagging in case of error, without being blocked by pypi because of the release already published. It is also not recommended at all to delete a pypi release, while github release is doable
|
| | |
|
| |\
| |/
|/| |
|
|\ \
| | |
| | | |
3.1.1 release
|
| | | |
|
| | | |
|
| | | |
|
| |/ |
|
|/ |
|
|\
| |
| | |
Issue759/check authz type
|
| | |
|
| | |
|
| | |
|
|/ |
|
|\
| |
| | |
Remove typo in TokenEndpoint docstring
|
|/ |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Use better regex for IPv6 to allow a lot more valid IPv6 addresses
* Adding some unit tests for is_absolute_uri in uri_validate
* Make unit tests Python 3.6 compatible
* Remove redundant import after unit test simplification for py36
* update Changelog
* Remove redundant coding line
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Bump pyjwt and cryptography versions
Bump PyJWT to v2. No backward incompatible changes in the new version
affects oauthlib.
Bump minimum cryptography version to 3. PyJWT bumps cryptography as
well plus older versions don't support newer versions of openssl.
* Remove python 3.5 support; add python 3.8 support
- Python 3.5 has reached end-of-life.
- Add support for Python 3.8
- Move dist to bionic (xenial is EOL in April)
- Upgrade pip in travis.yml's `before_install`. this should install a wheel
for pyca/cryptography
- Install rust for pypy builds. It is a requirement for cryptography as no
pypy wheels exist.
Co-authored-by: Asif Saif Uddin <auvipy@gmail.com>
|
|
|
|
|
|
|
|
|
|
| |
Like with the implicit grant, we need to override add_id_token to pass
the nonce from the current request to GrantBase.add_id_token in order
for the ID token to have the correct nonce.
Add test that the nonce is in ID token from hybrid OIDC flow.
Fixes: #746
|
|
|
|
|
|
|
|
|
|
| |
- Python 3.5 has reached end-of-life.
- Add support for Python 3.8
- Move dist to bionic (xenial is EOL in April)
- Upgrade pip in travis.yml's `before_install`. this should install a wheel
for pyca/cryptography
- Install rust for pypy builds. It is a requirement for cryptography as no
pypy wheels exist.
|
|
|
|
|
| |
Fix of a couple of typing mistakes in pydoc text:
- Usage of " to surround "application/x-form-urlencoded" instead of `` (as in the rest of the documentation)
- "presence" written with "c"
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Adding support for RSA-SHA256.
* Added support for HMAC-SHA512, RSA-SHA256 and RSA-SHA512 signature methods.
* Made version dependencies consistent.
* Updated OAuth1 signature tests.
* Fixed parsing of netloc/host. Deprecated old functions.
* Refactored and expanded tests to include signature validate.
* Update docs for HMAC-SHA512, RSA-SHA256 and RSA-SHA512 signature methods.
* Updated code comments in oauth1 signatures module.
* Updated changelog.
* Update docs/feature_matrix.rst
Co-Authored-By: Omer Katz <omer.drow@gmail.com>
* Used parenthesis instead of backslash to break lines.
* Fixed typo
Co-authored-by: Omer Katz <omer.drow@gmail.com>
Co-authored-by: Omer Katz <omer.drow@gmail.com>
|
|
|
|
|
|
|
|
|
| |
* Update setup.py
* remove un needed python 2 codes
* remove un needed python 2 codes
* remove un needed python 2 codes
|
|\
| |
| | |
Update requirements.txt
|
|/ |
|
|\ |
|
| |\
| |/
|/| |
|
|\ \ |
|
| |\ \
| |/ /
|/| | |
|
|\ \ \ |
|
| |\ \ \
| |/ / /
|/| | | |
|
| |\ \ \ |
|
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | |
| | | | | |
SkeletonValidator was seemingly written to not support public clients at
all. Its authenticate_client_id() explicitly returned `False`, rather than
`pass`-ing like the other methods, and client_authentication_required()
was missing entirely (the default implementation always returns `True`).
This opinionated approach is confusing, especially when writing an
implementation that allows public clients.
The comment on the authenticate_client_id() method is particularly
confusing. Unlike the comments on other methods, which explain the method,
it explains the implementation (returning `False`). As a result, it appears
to say the method should return `False` for public clients, when it should
actually return `False` for confidential clients (and `True` for valid
public clients).
To reduce this confusion, include a client_authentication_required() stub,
`pass` rather than returning `False` in authenticate_client_id(), and
update its comment to describe the method.
|
| | | | | |
|
| | | | |\
| |_|_|_|/
|/| | | | |
|
|\ \ \ \ \ |
|