Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Merge branch 'master' into 613-oidc-dispatcher613-oidc-dispatcher | Jonathan Huot | 2018-11-23 | 3 | -0/+195 |
|\ | |||||
| * | Allow custom provider to override oauthlib valuesoauth-metadata | Jonathan Huot | 2018-11-21 | 1 | -6/+8 |
| | | | | | | | | See https://github.com/oauthlib/oauthlib/pull/605#discussion_r234438151 | ||||
| * | Merge branch 'master' into oauth-metadata | Omer Katz | 2018-11-01 | 1 | -1/+1 |
| |\ | |||||
| * | | Initial OAuth Authorization Server Metadata RFC8414 | Jonathan Huot | 2018-10-25 | 3 | -0/+193 |
| | | | |||||
* | | | Replaced distinct classes by a more unified one. | Jonathan Huot | 2018-11-20 | 2 | -25/+30 |
| | | | | | | | | | | | | "default_grant" and "oidc_grant" must be two generic attributes of OpenID Connect Dispatcher. We should not leave each Dispatcher implementation have this own attributes names. | ||||
* | | | Import OIDC main classes identically than OAuth2 | Jonathan Huot | 2018-11-20 | 2 | -0/+20 |
| |/ |/| | | | | | import oauthlib.oauth2.Server must be replaced with oauthlib.openid.Server | ||||
* | | Wrong Client is also a FatalClientError (#608) | Jonathan Huot | 2018-11-01 | 1 | -1/+1 |
|/ | | | FatalClientError is it SHOULD NOT be redirected to client (redirect_uri), but MUST be redirected to USERS (error_uri). | ||||
* | Bump version to prepare 3.0.0 | Jonathan Huot | 2018-10-05 | 1 | -1/+1 |
| | |||||
* | Merge branch 'master' into fix-585_client_id | Jonathan Huot | 2018-09-21 | 4 | -18/+22 |
|\ | |||||
| * | Fix OIDC tests (#565) | Pieter Ennes | 2018-09-21 | 3 | -17/+19 |
| | | | | | | | | | | | | | | | | | | | | | | | | * Unmute ignored OIDC tests. * Fix more import errors. * Remove recently invalidated test for id_token_hint. * Fix tested grants. * Fix import on py27. | ||||
| * | fixup! `invalid_grant` status code should be 400 | Free Duerinckx | 2018-09-20 | 1 | -0/+2 |
| | | |||||
| * | Merge branch 'master' into invalid-grant-should-respond-with-400 | Omer Katz | 2018-09-20 | 20 | -176/+398 |
| |\ | |||||
| * \ | Merge branch 'master' into invalid-grant-should-respond-with-400 | Jonathan Huot | 2018-08-13 | 2 | -0/+6 |
| |\ \ | |||||
| * \ \ | Merge branch 'master' into invalid-grant-should-respond-with-400 | Jonathan Huot | 2018-08-12 | 2 | -2/+2 |
| |\ \ \ | |||||
| * | | | | `invalid_grant` status code should be 400 | Free Duerinckx | 2018-07-04 | 1 | -1/+1 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | According to section 5.2 of rfc 6749 (https://tools.ietf.org/html/rfc6749#section-5.2) A server should respond with 400 in case of an invalid grant. The given grant is invalid and the client should give other data. A 401 is not applicable here because the client is required to give a suitable Authorization header field which doesn't make any sense if you are trying to acquire a grant authentication. According to sections 10.4.1 and 10.4.2 of rfc 2616 (https://tools.ietf.org/html/rfc2616#section-10.4.1) | ||||
* | | | | | * changed "function definition" to "function signature" in two docstrings | jonathan vanasco | 2018-09-20 | 2 | -14/+21 |
| | | | | | | | | | | | | | | | | | | | | | | | | | * fixed some formatting issues in `prepare_token_request` docstring * slightly altered `prepare_token_request` in handling nontruthy values for `client_secret`. | ||||
* | | | | | Merge branch 'fix-585_client_id' of github.com:jvanasco/oauthlib into ↵ | jonathan vanasco | 2018-09-17 | 5 | -16/+21 |
|\ \ \ \ \ | | | | | | | | | | | | | | | | | | | fix-585_client_id | ||||
| * \ \ \ \ | Merge branch 'master' into fix-585_client_id | Jonathan Huot | 2018-09-17 | 5 | -16/+21 |
| |\ \ \ \ \ | | | |_|_|/ | | |/| | | | |||||
| | * | | | | Merge branch 'master' into 431-customexception | Jonathan Huot | 2018-09-15 | 20 | -157/+375 |
| | |\ \ \ \ | |||||
| | | * | | | | Remove unnecessary workaround for bytes type | Jon Dufresne | 2018-09-14 | 4 | -16/+9 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The type 'bytes' is available on all supported Pythons. Likewise the byte literal b'...' is available on all supported Pythons. Use idiomatic Python and remove workaround for an issue that no longer exists. Makes the code more forward compatible with Python 3. | ||||
| | * | | | | | Fixed py27/pypy support | Jonathan Huot | 2018-09-10 | 1 | -1/+1 |
| | | | | | | | |||||
| | * | | | | | Add support of custom errors coming from providers | Jonathan Huot | 2018-09-10 | 1 | -0/+12 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fix #431. The inherent function "raise_from_error" is called when "error=" is found in the payload. So it MUST raise something, and until now, only RFC errors were raised. | ||||
* | | | | | | | migrated `include_client_id` to `prepare_request_token` | jonathan vanasco | 2018-09-17 | 5 | -11/+70 |
|/ / / / / / | |||||
* | | | | | | * added support for empty strings of `client_secret` | jonathan vanasco | 2018-09-17 | 2 | -0/+12 |
| | | | | | | | | | | | | | | | | | | | | | | | | * added LegacyApplicationClient tests to ensure the grant supports a variety of allowed methods | ||||
* | | | | | | standardized some test values | jonathan vanasco | 2018-09-14 | 1 | -1/+1 |
| | | | | | | | | | | | | | | | | | | | | | | | | integrated against requests_oauthlib idea | ||||
* | | | | | | * addresing ticket #585 | jonathan vanasco | 2018-09-13 | 6 | -15/+42 |
| |/ / / / |/| | | | | | | | | | | | | | | | | | | | | | | | | * `prepare_request_body` client_id is deprecated in favor of include_client_id * a new unit test `test_prepare_request_body` is added to ensure conformity of several use cases * the docstrings for the `body` param have been consolidated and standardized across multiple functions linked to `prepare_request_body` for clarity | ||||
* | | | | | fixed spacing | jonathan vanasco | 2018-09-11 | 1 | -1/+1 |
| | | | | | |||||
* | | | | | cleanup on docs fixes | jonathan vanasco | 2018-09-11 | 11 | -44/+53 |
| | | | | | |||||
* | | | | | redid the docstring fixes | jonathan vanasco | 2018-09-10 | 14 | -115/+331 |
|/ / / / | |||||
* | | | | Merge branch 'master' into master | Jonathan Huot | 2018-09-07 | 3 | -14/+11 |
|\ \ \ \ | |||||
| * | | | | Make scope optional for authorization code grant. | Theron Luhn | 2018-09-02 | 1 | -12/+0 |
| | | | | | |||||
| * | | | | Merge branch 'master' into 445_confirm_redirect | Jonathan Huot | 2018-08-20 | 1 | -1/+0 |
| |\ \ \ \ | |||||
| | * | | | | Remove headers from request attributes | Jonathan Huot | 2018-08-18 | 1 | -1/+0 |
| | | | | | | |||||
| * | | | | | Merge branch 'master' into 445_confirm_redirect445_confirm_redirect | Jonathan Huot | 2018-08-20 | 1 | -1/+0 |
| |\ \ \ \ \ | | |/ / / / | |||||
| | * | | | | client_id is not passed to save_bearer_token234-fixdoc | Jonathan Huot | 2018-08-16 | 1 | -1/+0 |
| | | |_|/ | | |/| | | |||||
| * | | | | Merge branch 'master' into 445_confirm_redirect | Jonathan Huot | 2018-08-15 | 4 | -2/+8 |
| |\ \ \ \ | | |/ / / | |||||
| * | | | | Call get_default_redirect_uri if no redirect_uri in token req | Jonathan Huot | 2018-07-30 | 1 | -0/+11 |
| | |/ / | |/| | | |||||
* | | | | Merge branch 'master' into master | Jonathan Huot | 2018-08-12 | 2 | -0/+6 |
|\ \ \ \ | | |/ / | |/| | | |||||
| * | | | Merge branch 'master' into get_default_redir | Jonathan Huot | 2018-08-12 | 3 | -2/+6 |
| |\ \ \ | |||||
| | * \ \ | Merge branch 'master' into 569_expires_in_implicit | Jonathan Huot | 2018-08-12 | 2 | -2/+2 |
| | |\ \ \ | | | | |/ | | | |/| | |||||
| | * | | | Implicit was not converting expires_in into integers | Jonathan Huot | 2018-08-06 | 1 | -0/+4 |
| | | |/ | | |/| | |||||
| * | | | Add syntax check of get_default_redirect_uri | Jonathan Huot | 2018-07-30 | 1 | -0/+2 |
| |/ / | | | | | | | | | | Authorization Code was missing this check, whereas Implicit was checking it. | ||||
* | | | Merge branch 'master' into master | Pieter Ennes | 2018-08-12 | 5 | -14/+12 |
|\ \ \ | | |/ | |/| | |||||
| * | | $ and ' are allowed to be unencoded in query strings (#564) | Chris Utz | 2018-08-12 | 1 | -1/+1 |
| | | | |||||
| * | | Added credits to Idan & team. | Jonathan Huot | 2018-08-10 | 1 | -1/+1 |
| |/ | |||||
| * | The id_token_hint parameter isn't required by the OIDC spec. (#559) | Pieter Ennes | 2018-07-02 | 1 | -6/+0 |
| | | |||||
| * | Remove handling of nonstandard parameter "expires" (#506) | Seth Davis | 2018-06-30 | 1 | -5/+2 |
| | | |||||
| * | Update save_bearer_token docs to mention how the token is passed in as a ↵ | claweyenuk | 2018-06-30 | 1 | -1/+8 |
| | | | | | | | | reference (#556) | ||||
* | | Merge branch 'master' into master | Jonathan Huot | 2018-06-26 | 24 | -387/+981 |
|\ \ | |/ | |||||
| * | OpenID Connect split (#525) | Wiliam Souza | 2018-06-05 | 20 | -355/+761 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Add command to clean up builds to makefile * Fix docs strings for endpoints pre_configured * Chnage grant_types.openid_connect to include a deprecation warning be a backward compatible * Fix doc string for rfc6749.request_validator * Remove unused import * Change import to be explicity * Move JWTTokenTestCase to openid.connect.core.test_token * Move JWTToken to oauthlib.openid.connect.core.tokens * Move to openid connect test * Move openid connect exceptions to its own file * Remove openid connect from oauth2 server * Remove JWTToken from oauth tokens * Remove grant_types.openid_connect file * Add oauthlib/openid estructure and tests |