| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
|
| |
type (#838)
* Modify pre-configured OIDC server to use OIDC Refresh Token grant type
* Add test coverage for OIDC refresh token grant type
* Use longer variable names
|
|\
| |
| | |
Improve test coverage of IPv6 parsing
|
| | |
|
| | |
|
| | |
|
|\ \
| |/ |
|
| |
| |
| |
| |
| | |
tox runs isort, whicn pointed multiple errors.
Fixed them in this PR
|
|/ |
|
| |
|
|
|
|
|
| |
* Allow non-HTTPS issuer when OAUTHLIB_INSECURE_TRANSPORT.
* Add unit test for validating issuer.
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* rfc8628: Add client implementation for token retrieval
This change adds an implementation of the Device Authorization flow
client from RFC8628. The initial structure is derived from the
existing BackendApplicationClient with the addition of the device_code
in the client.
This change does not provide the support necessary for querying the
device code endpoint in order to generate the initial device_code and
URL that is required for completing the full end to end device
authorization process.
* Add device token fetch URI generator
In order to perform the full device authorization flow it's necessary
to first generate the device code and get the authorization flow URL.
prepare_request_uri() allows us to do this while providing scopes and
additional parameters.
* Remove encoding lines
These lines are not required for python3
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Added pkce on client side for authorization grant flow. Test cases added
* added new args before kwargs
* updating docstrings with clarification on PKCE params
* adding additional clarification on PKCE parameters
* adding initial function to create code_verifier and tests
* using re.compile for code_verifier allowed characters
* adding initial function to create code_challenge with tests
* replacing appropriate chars for base64 URL
Co-authored-by: Aman Singh Solanki <amans330@gmail.com>
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
| |
* verify that expires_at is an int before casting it as such.
* casting expires_at as int within try catch with test.
Co-authored-by: Scott Gifford <sgifford@activecampaign.com>
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Use better regex for IPv6 to allow a lot more valid IPv6 addresses
* Adding some unit tests for is_absolute_uri in uri_validate
* Make unit tests Python 3.6 compatible
* Remove redundant import after unit test simplification for py36
* update Changelog
* Remove redundant coding line
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Like with the implicit grant, we need to override add_id_token to pass
the nonce from the current request to GrantBase.add_id_token in order
for the ID token to have the correct nonce.
Add test that the nonce is in ID token from hybrid OIDC flow.
Fixes: #746
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* Adding support for RSA-SHA256.
* Added support for HMAC-SHA512, RSA-SHA256 and RSA-SHA512 signature methods.
* Made version dependencies consistent.
* Updated OAuth1 signature tests.
* Fixed parsing of netloc/host. Deprecated old functions.
* Refactored and expanded tests to include signature validate.
* Update docs for HMAC-SHA512, RSA-SHA256 and RSA-SHA512 signature methods.
* Updated code comments in oauth1 signatures module.
* Updated changelog.
* Update docs/feature_matrix.rst
Co-Authored-By: Omer Katz <omer.drow@gmail.com>
* Used parenthesis instead of backslash to break lines.
* Fixed typo
Co-authored-by: Omer Katz <omer.drow@gmail.com>
Co-authored-by: Omer Katz <omer.drow@gmail.com>
|
| |
|
|
|
|
|
|
| |
Replace the use of external 'mock' package with built-in Python
unittest.mock (present since py3.3). This also fixes all test failures
for me.
|
|\ |
|
| |
| |
| |
| | |
signature_base_string test. Fixes python 2.7 test failure.
|
| |
| |
| |
| |
| |
| | |
examples and expected results set out in the RFC doc.
Fixes https://github.com/oauthlib/oauthlib/issues/695
|
| | |
|
| | |
|
| | |
|
| | |
|
|/ |
|
|\ |
|
| |\ |
|
| | | |
|
| |\ \
| | |/ |
|
| | | |
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
RevocationEndpoint
- Add validation checks for HTTP method in TokenEndpoint, IntrospectEndpoint and RevocationEndpoint.
- CHANGE DEFAULT HTTP method for TokenEndpoint from 'GET' to 'POST'.
- Add tests + Fix an old test in . It used to send query params to TokenEndpoint which is not allowed anymore. Fixed it so payload is sent as POST body.
|
| | | |
|
| | | |
|
| | |
| | |
| | |
| | | |
Closes #672
|
| |/
|/| |
|
|\ \ |
|
| |\ \ |
|
| | |\ \ |
|
| | | |/ |
|