summaryrefslogtreecommitdiff
path: root/docs
Commit message (Collapse)AuthorAgeFilesLines
* Merge branch 'master' into docs-flows-hooksdocs-flows-hooksJonathan Huot2019-08-011-0/+1
|\
| * Add UserInfoEndpoint to the OIDC Provider support.Jonathan Huot2019-05-131-0/+1
| |
* | Merge branch 'master' into docs-flows-hooksJonathan Huot2019-07-091-8/+9
|\ \ | |/
| * Merge branch 'master' into oidc-hashesJonathan Huot2019-04-263-1/+10
| |\
| * | Renamed fill into finalize to add clarityJonathan Huot2019-03-261-3/+3
| | |
| * | Add technicals fields of `id_token` in oauthlib OIDC supportJonathan Huot2019-02-281-8/+9
| | | | | | | | | | | | A new RequestValidator `fill_id_token` has been introduced to replace `get_id_token`. It aims to have the bare minimum amount of fields to complete a full OIDC id_token support. `get_id_token` is still valid but optional, and if it is implemented, `fill_id_token` will not be called. The current `fill_id_token` came with full support of `aud`, `iat`, `nonce`, `at_hash` and `c_hash`. More could come in the future e.g. `auth_time`, ...
| * | Removed duplicated OIDC members in OAuth2.RequestValidatorJonathan Huot2019-02-281-2/+4
| | |
* | | Add hooks to highlight the possibilities of the frameworkJonathan Huot2019-04-301-18/+69
| |/ |/| | | | | The grey color has been used to show that's optional, and a loop arrow to represent that multiple hooks can be stacked. We can distinctly see three kind of hooks: 1) pre/post+token/auth 2) generate access/refresh tokens 3) code/token modifiers. Also, I have added the optional RequestValidator.rotate_refresh_token callback.
* | Update documentationAbhishek Patel2019-04-233-1/+10
| |
* | Removed duplicated OIDC members in OAuth2.RequestValidatorJonathan Huot2019-02-281-2/+4
|/
* Fixed graphviz/dot graph & improved clarity (#642)Jonathan Huot2019-01-082-27/+80
| | | | | | I fixed graphviz missing output to web responses (see image of https://github.com/oauthlib/oauthlib/pull/639), and I have added a fixed rank (`rank=same`) when functions are achieving an identical goal. E.g. `validate_client_id`, `validate_user`, `validate_bearer_token` are unique for each flows, or, e.g. `confirm_redirect_uri`, `validate_redirect_uri` together, and so on. ![graphviz-0cc58e8637b94d7402eda45a1fef6e68889bd8e1](https://user-images.githubusercontent.com/820496/50830407-042ad600-1348-11e9-936a-03d07f42494f.png)
* Replace latest occurences of Gazit w/ new communityJonathan Huot2018-12-281-3/+3
|
* Bump to 2019Jonathan Huot2018-12-281-1/+1
|
* Add OAuth2 Provider oauthlib-flowJonathan Huot2018-12-285-9/+271
|
* Merge branch 'master' into add-metadata-docadd-metadata-docOmer Katz2018-12-201-2/+2
|\
| * Merge branch 'master' into 631-use-pytestJonathan Huot2018-12-172-3/+17
| |\
| * | Use pytest as test frameworkFlorent Captier2018-12-161-2/+2
| | | | | | | | | | | | Closes #631
* | | Merge branch 'master' into add-metadata-docJonathan Huot2018-12-162-3/+17
|\ \ \ | | |/ | |/|
| * | challenge can have a length of 128 when using maximum size of verifier+plain.Jonathan Huot2018-12-131-1/+1
| | |
| * | Initial OAuth2.0/PKCE Provider supportJonathan Huot2018-11-292-3/+17
| |/
* | Add metadata documentation with quick exampleJonathan Huot2018-12-131-0/+72
| |
* | Add OAuth2.0 Authorization Server Metadata documentationJonathan Huot2018-12-131-2/+4
|/
* Add OIDC and id_token as JWT exampleoidc-docJonathan Huot2018-11-234-21/+96
|
* Merge branch 'master' into masterJonathan Huot2018-10-044-5/+57
|\
| * Correct capitalization of PyPIJon Dufresne2018-09-161-1/+1
| | | | | | | | As spelled on https://pypi.org/.
| * Remove last remaining G+ reference. (#598)Pieter Ennes2018-09-152-4/+4
| | | | | | (Cherry picked from f3ae98cef91e140b10d25fbd496622d879cc0c0c)
| * idea for documentation in contributing.rstjonathan vanasco2018-09-111-0/+52
| |
* | Mention `oauth_body_hash` in OAuth1 client docsJordan2018-08-301-3/+11
|/ | | | | While the previous documentation was not wrong in that non-formencoded data are not included in the signature for traditional OAuth1 service providers, the library does still include an `oauth_body_hash` for non-formencoded data. Update the documentation to include mention of the `oauth_body_hash` with a notice that validation of said parameter may not be supported by all service providers, but will nevertheless provide an additional integrity check for those that do support it.
* Replaced NCoC with Django CoCJonathan Huot2018-08-171-4/+7
|
* Merge branch 'master' into community_rulesJonathan Huot2018-08-134-11/+131
|\
| * Merge branch 'master' into docs-jwtJonathan Huot2018-08-106-18/+33
| |\
| * | Added access_token as JWT examples, and updated JWT grant sectionJonathan Huot2018-08-104-11/+131
| | | | | | | | | | | | A confusion between JWT as token and as authentication mechanism was introduced long-time back and I tried to make a bit of clarity to not confuse again the newcomers.
* | | Add NCoC and Code of meritJonathan Huot2018-08-131-0/+22
| |/ |/|
* | Fixed bad copy/pasteJonathan Huot2018-08-101-2/+2
| |
* | Updated python versionsJonathan Huot2018-08-101-1/+1
| |
* | Added upstream test as best practiceJonathan Huot2018-08-101-0/+11
| |
* | Mention our "extra" flags somewhere.Jonathan Huot2018-08-101-2/+6
| |
* | Removed last occurences of G+ with GitterJonathan Huot2018-08-103-7/+7
| |
* | Fixed typoJonathan Huot2018-08-101-5/+5
| |
* | Added credits to Idan & team.Jonathan Huot2018-08-101-1/+1
|/
* Merge branch 'master' into oauth2-introspectPieter Ennes2018-05-2615-33/+49
|\
| * Use secrets module in Python 3.6 and later (#533)Olaf Conradi2018-04-131-5/+7
| | | | | | | | | | | | | | | | | | The secrets module should be used for generating cryptographically strong random numbers suitable for managing data such as passwords, account authentication, security tokens, and related secrets. In particularly, secrets should be used in preference to the default pseudo-random number generator in the random module, which is designed for modelling and simulation, not security or cryptography.
| * Fix ReadTheDocs build (#521)Jonathan Huot2018-03-181-2/+1
| |
| * Rtd docs fix (#515)Jonathan Huot2018-02-2813-19/+21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Added sphinx build for developers Rationale is to build docs locally to prevent RTD to break later. * Replace manual sphinx into make * Renamed idan URL to oauthlib community * Renamed http into https URLs since http is returning 302 * python requests library renamed its home URL * Add ignore list for "make linkcheck" linkcheck is doing requests to github with anonymous access, however creating an issue require an logged-in account * virtualenv changed its homepage and website. * Fixed broken link
| * Added bottle-oauthlib (#509)Jonathan Huot2018-01-023-7/+20
| |
* | Added initial introspect supportJonathan Huot2017-12-183-1/+32
|/
* Sorted imports.Omer Katz2017-09-171-2/+4
|
* Documented PyJWT dependency for RSA-SHA1 signatures.Hoylen Sue2017-08-012-8/+9
|
* Fixed client.rstAj2017-03-061-1/+1
| | | Fixed grammar on line 7.
* Updated docs for custom validatorsBrendan McCollam2016-12-222-1/+7
|
View Lorry Controller Status