Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | OAuth 1.0a signature methods: RSA-SHA256, RSA-SHA512 and HMAC-SHA512 (#723) | Hoylen Sue | 2020-06-03 | 4 | -59/+166 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Adding support for RSA-SHA256. * Added support for HMAC-SHA512, RSA-SHA256 and RSA-SHA512 signature methods. * Made version dependencies consistent. * Updated OAuth1 signature tests. * Fixed parsing of netloc/host. Deprecated old functions. * Refactored and expanded tests to include signature validate. * Update docs for HMAC-SHA512, RSA-SHA256 and RSA-SHA512 signature methods. * Updated code comments in oauth1 signatures module. * Updated changelog. * Update docs/feature_matrix.rst Co-Authored-By: Omer Katz <omer.drow@gmail.com> * Used parenthesis instead of backslash to break lines. * Fixed typo Co-authored-by: Omer Katz <omer.drow@gmail.com> Co-authored-by: Omer Katz <omer.drow@gmail.com> | ||||
* | Merge branch 'master' into doc-sponsor | Jonathan Huot | 2020-04-22 | 14 | -25/+273 |
|\ | |||||
| * | Merge branch 'master' into doc-oidc | Jonathan Huot | 2020-01-29 | 5 | -11/+126 |
| |\ | |||||
| | * | Update server.rst docs to include request uri in auth code (#714) | Jonathan Huot | 2020-01-29 | 1 | -0/+11 |
| | |\ | | | | | | | | | Update server.rst docs to include request uri in auth code | ||||
| | | * | update server.rst docs necessary auth code fields | Dan Piet | 2020-01-13 | 1 | -0/+11 |
| | | | | |||||
| | * | | Removed newline/autoformatting mistake fixed | Jonathan Huot | 2020-01-15 | 1 | -2/+2 |
| | | | | |||||
| | * | | Improve clarity around howto define a grant. | Jonathan Huot | 2019-10-28 | 1 | -26/+41 |
| | | | | |||||
| | * | | Add custom grant example | Jonathan Huot | 2019-10-25 | 1 | -6/+20 |
| | | | | |||||
| | * | | Added clarity about ROPC & usage from RFC | Jonathan Huot | 2019-10-25 | 1 | -2/+4 |
| | | | | |||||
| | * | | Initial custom grant type documentation. | Jonathan Huot | 2019-10-18 | 4 | -11/+84 |
| | |/ | | | | | | | | | | Improved Grant Type section to let developers create or implement their own custom grant type. Or also help them implementing new RFC. | ||||
| * | | Improved OIDC documentationdoc-oidc | Jonathan Huot | 2019-10-28 | 9 | -14/+147 |
| |/ | |||||
* | | Add sponsoring section/fix FUNDING.ymldoc-sponsor | Jonathan Huot | 2019-10-29 | 1 | -2/+15 |
|/ | |||||
* | Merge branch 'master' into rm-2.7 | Omer Katz | 2019-08-29 | 1 | -7/+11 |
|\ | |||||
| * | Drop Python 3.4 support (#699) | Omer Katz | 2019-08-29 | 1 | -9/+12 |
| | | | | | | | | | | | | | | | | | | | | * Drop Python 3.4 support. * Exclude Python 3.4 as a supported runtime. * Update contributing.rst * Update supported Python versions in README file. | ||||
* | | Drop the dot https://twitter.com/pytestdotorg/status/753767547866972160 | Hugo | 2019-08-15 | 1 | -2/+2 |
| | | |||||
* | | Upgrade Python syntax with pyupgrade | Hugo | 2019-08-15 | 1 | -8/+8 |
| | | |||||
* | | Drop support for legacy Python 2.7 | Hugo | 2019-08-15 | 1 | -3/+1 |
|/ | |||||
* | Add logo to RTD docs & upgraded tox -e readme build to twine. | Jonathan Huot | 2019-08-06 | 11 | -1/+1 |
| | |||||
* | Add the ReadTheDocs theme to dev builds "i.e tox -e docs".release-3.1.0 | Jonathan Huot | 2019-08-06 | 1 | -1/+1 |
| | |||||
* | Merge branch 'master' into docs-flows-hooksdocs-flows-hooks | Jonathan Huot | 2019-08-01 | 1 | -0/+1 |
|\ | |||||
| * | Add UserInfoEndpoint to the OIDC Provider support. | Jonathan Huot | 2019-05-13 | 1 | -0/+1 |
| | | |||||
* | | Merge branch 'master' into docs-flows-hooks | Jonathan Huot | 2019-07-09 | 1 | -8/+9 |
|\ \ | |/ | |||||
| * | Merge branch 'master' into oidc-hashes | Jonathan Huot | 2019-04-26 | 3 | -1/+10 |
| |\ | |||||
| * | | Renamed fill into finalize to add clarity | Jonathan Huot | 2019-03-26 | 1 | -3/+3 |
| | | | |||||
| * | | Add technicals fields of `id_token` in oauthlib OIDC support | Jonathan Huot | 2019-02-28 | 1 | -8/+9 |
| | | | | | | | | | | | | A new RequestValidator `fill_id_token` has been introduced to replace `get_id_token`. It aims to have the bare minimum amount of fields to complete a full OIDC id_token support. `get_id_token` is still valid but optional, and if it is implemented, `fill_id_token` will not be called. The current `fill_id_token` came with full support of `aud`, `iat`, `nonce`, `at_hash` and `c_hash`. More could come in the future e.g. `auth_time`, ... | ||||
| * | | Removed duplicated OIDC members in OAuth2.RequestValidator | Jonathan Huot | 2019-02-28 | 1 | -2/+4 |
| | | | |||||
* | | | Add hooks to highlight the possibilities of the framework | Jonathan Huot | 2019-04-30 | 1 | -18/+69 |
| |/ |/| | | | | | The grey color has been used to show that's optional, and a loop arrow to represent that multiple hooks can be stacked. We can distinctly see three kind of hooks: 1) pre/post+token/auth 2) generate access/refresh tokens 3) code/token modifiers. Also, I have added the optional RequestValidator.rotate_refresh_token callback. | ||||
* | | Update documentation | Abhishek Patel | 2019-04-23 | 3 | -1/+10 |
| | | |||||
* | | Removed duplicated OIDC members in OAuth2.RequestValidator | Jonathan Huot | 2019-02-28 | 1 | -2/+4 |
|/ | |||||
* | Fixed graphviz/dot graph & improved clarity (#642) | Jonathan Huot | 2019-01-08 | 2 | -27/+80 |
| | | | | | | I fixed graphviz missing output to web responses (see image of https://github.com/oauthlib/oauthlib/pull/639), and I have added a fixed rank (`rank=same`) when functions are achieving an identical goal. E.g. `validate_client_id`, `validate_user`, `validate_bearer_token` are unique for each flows, or, e.g. `confirm_redirect_uri`, `validate_redirect_uri` together, and so on. ![graphviz-0cc58e8637b94d7402eda45a1fef6e68889bd8e1](https://user-images.githubusercontent.com/820496/50830407-042ad600-1348-11e9-936a-03d07f42494f.png) | ||||
* | Replace latest occurences of Gazit w/ new community | Jonathan Huot | 2018-12-28 | 1 | -3/+3 |
| | |||||
* | Bump to 2019 | Jonathan Huot | 2018-12-28 | 1 | -1/+1 |
| | |||||
* | Add OAuth2 Provider oauthlib-flow | Jonathan Huot | 2018-12-28 | 5 | -9/+271 |
| | |||||
* | Merge branch 'master' into add-metadata-docadd-metadata-doc | Omer Katz | 2018-12-20 | 1 | -2/+2 |
|\ | |||||
| * | Merge branch 'master' into 631-use-pytest | Jonathan Huot | 2018-12-17 | 2 | -3/+17 |
| |\ | |||||
| * | | Use pytest as test framework | Florent Captier | 2018-12-16 | 1 | -2/+2 |
| | | | | | | | | | | | | Closes #631 | ||||
* | | | Merge branch 'master' into add-metadata-doc | Jonathan Huot | 2018-12-16 | 2 | -3/+17 |
|\ \ \ | | |/ | |/| | |||||
| * | | challenge can have a length of 128 when using maximum size of verifier+plain. | Jonathan Huot | 2018-12-13 | 1 | -1/+1 |
| | | | |||||
| * | | Initial OAuth2.0/PKCE Provider support | Jonathan Huot | 2018-11-29 | 2 | -3/+17 |
| |/ | |||||
* | | Add metadata documentation with quick example | Jonathan Huot | 2018-12-13 | 1 | -0/+72 |
| | | |||||
* | | Add OAuth2.0 Authorization Server Metadata documentation | Jonathan Huot | 2018-12-13 | 1 | -2/+4 |
|/ | |||||
* | Add OIDC and id_token as JWT exampleoidc-doc | Jonathan Huot | 2018-11-23 | 4 | -21/+96 |
| | |||||
* | Merge branch 'master' into master | Jonathan Huot | 2018-10-04 | 4 | -5/+57 |
|\ | |||||
| * | Correct capitalization of PyPI | Jon Dufresne | 2018-09-16 | 1 | -1/+1 |
| | | | | | | | | As spelled on https://pypi.org/. | ||||
| * | Remove last remaining G+ reference. (#598) | Pieter Ennes | 2018-09-15 | 2 | -4/+4 |
| | | | | | | (Cherry picked from f3ae98cef91e140b10d25fbd496622d879cc0c0c) | ||||
| * | idea for documentation in contributing.rst | jonathan vanasco | 2018-09-11 | 1 | -0/+52 |
| | | |||||
* | | Mention `oauth_body_hash` in OAuth1 client docs | Jordan | 2018-08-30 | 1 | -3/+11 |
|/ | | | | | While the previous documentation was not wrong in that non-formencoded data are not included in the signature for traditional OAuth1 service providers, the library does still include an `oauth_body_hash` for non-formencoded data. Update the documentation to include mention of the `oauth_body_hash` with a notice that validation of said parameter may not be supported by all service providers, but will nevertheless provide an additional integrity check for those that do support it. | ||||
* | Replaced NCoC with Django CoC | Jonathan Huot | 2018-08-17 | 1 | -4/+7 |
| | |||||
* | Merge branch 'master' into community_rules | Jonathan Huot | 2018-08-13 | 4 | -11/+131 |
|\ | |||||
| * | Merge branch 'master' into docs-jwt | Jonathan Huot | 2018-08-10 | 6 | -18/+33 |
| |\ |