Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Add CORS support for Refresh Token Grant. | Theron Luhn | 2022-02-15 | 1 | -0/+1 |
| | |||||
* | Fix RefreshTokenGrant modifiers | Nikos Sklikas | 2021-06-03 | 1 | -1/+1 |
| | | | | | The RefreshTokenGrant modifiers now take the same arguments as the AuthorizationCodeGrant modifiers | ||||
* | Remove Python 2 codes (#734) | Asif Saif Uddin | 2020-05-12 | 1 | -1/+0 |
| | | | | | | | | | * Update setup.py * remove un needed python 2 codes * remove un needed python 2 codes * remove un needed python 2 codes | ||||
* | Sorted oauthlib imports per isort 4.3.21 | Anton Ruhlov | 2020-04-10 | 1 | -1/+0 |
| | |||||
* | The future is now | Hugo | 2019-08-15 | 1 | -2/+0 |
| | |||||
* | Upgrade Python syntax with pyupgrade | Hugo | 2019-08-15 | 1 | -2/+2 |
| | |||||
* | Fix 652: removed "state" from /token response. | Jonathan Huot | 2019-02-20 | 1 | -1/+2 |
| | | | | | | Fix OIDC /token flow where &state=None was always returned, and fix OAuth2.0 /token flow where &state=foobar was returned if &state=foobar was present in the token request. Remove "save_token" from create_token() signature cuz it was not used internally. Deprecated the option to let upstream libraries have a chance to remove it, if ever used. | ||||
* | Merge branch 'master' into dry-up-code | Omer Katz | 2018-12-17 | 1 | -0/+2 |
|\ | |||||
| * | Used WWW-Authenticate and auth-param values as RFC6750 described it. | Jonathan Huot | 2018-12-12 | 1 | -2/+1 |
| | | | | | | | | It misses the possibility to add scope= and realm= at the moment, but it should be a step forward into the right direction. | ||||
| * | Handle 401 with WWW-Authenticate. Moved wrong 401 into 400. | Jonathan Huot | 2018-12-04 | 1 | -0/+3 |
| | | | | | | | | access_denied/unauthorized_client/consent_required/login_required MUST be 400, and not 401. Also, 401 MUST have WWW-Authenticate when set. It could have an impact of processing those in webframeworks. | ||||
* | | Extract default grant headers to helper method. | Omer Katz | 2018-12-17 | 1 | -5/+1 |
|/ | |||||
* | cleanup on docs fixes | jonathan vanasco | 2018-09-11 | 1 | -1/+1 |
| | |||||
* | redid the docstring fixes | jonathan vanasco | 2018-09-10 | 1 | -0/+9 |
| | |||||
* | Rtd docs fix (#515) | Jonathan Huot | 2018-02-28 | 1 | -4/+4 |
| | | | | | | | | | | | | | | | | | | | | | | * Added sphinx build for developers Rationale is to build docs locally to prevent RTD to break later. * Replace manual sphinx into make * Renamed idan URL to oauthlib community * Renamed http into https URLs since http is returning 302 * python requests library renamed its home URL * Add ignore list for "make linkcheck" linkcheck is doing requests to github with anonymous access, however creating an issue require an logged-in account * virtualenv changed its homepage and website. * Fixed broken link | ||||
* | Sorted imports. | Omer Katz | 2017-09-17 | 1 | -2/+2 |
| | |||||
* | Refactor custom validators registration | Brendan McCollam | 2016-12-22 | 1 | -2/+2 |
| | |||||
* | Move custom validator registration onto GrantTypeBase | Brendan McCollam | 2016-12-22 | 1 | -7/+13 |
| | |||||
* | Prevent save_token() from being called twice within create_token_response(). ↵ | Joel Stevenson | 2016-04-29 | 1 | -1/+1 |
| | | | | We call save_token() after any token modifiers have run so we can tell the token_handler's create_token() method not to save the token and do that explicitly ourselves. | ||||
* | Remove some comments related to new code for OIDC feature. | Joel Stevenson | 2016-04-26 | 1 | -4/+2 |
| | |||||
* | Add token modifier and save to refresh token grant as well. | Ib Lundgren | 2016-04-14 | 1 | -0/+11 |
| | |||||
* | Set issue_new_refresh_tokens in RefreshTokenGrant.__init__ | Rafał Furmański | 2016-03-30 | 1 | -4/+1 |
| | |||||
* | Remove redundant "state=request.state" parameters | Rodney Richardson | 2014-10-07 | 1 | -2/+1 |
| | |||||
* | Auto pep8 changes throughout the code base. | Ib Lundgren | 2014-09-24 | 1 | -8/+9 |
| | |||||
* | Change logging namespace to a tiered one. | Ib Lundgren | 2014-09-24 | 1 | -2/+4 |
| | | | | | | | Rather than have all logging under oauthlib we now have it per file using __name__. Users who wish to enable or disable all logging can still do so by enabling or disabling the oauthlib logging namespace. | ||||
* | Use 401 status code for some OAuth 2 errors | Anders Steinlein | 2014-04-30 | 1 | -2/+2 |
| | |||||
* | is_within_original_scope method for refresh token grant (Issue #220) | Jan Wrobel | 2013-11-05 | 1 | -1/+3 |
| | |||||
* | Fix all application/json mimetypes. | Hsiaoming Yang | 2013-10-12 | 1 | -1/+1 |
| | |||||
* | ask validator if client has to be authenticated | Massimiliano Pippi | 2013-09-17 | 1 | -6/+10 |
| | |||||
* | #200 First attempt at API cleanup to match OAuth1. | Tyler Jones | 2013-08-01 | 1 | -2/+2 |
| | |||||
* | Validator confirm_scopes becomes get_original_scopes. #182, #183 | Ib Lundgren | 2013-06-21 | 1 | -2/+15 |
| | |||||
* | Add initial refresh token grant tests. Fix #182. | Ib Lundgren | 2013-06-20 | 1 | -3/+2 |
| | |||||
* | Fix scope validation on refresh token grant. | Ib Lundgren | 2013-06-20 | 1 | -15/+1 |
| | |||||
* | Correct error responses on refresh token grant. Fix #177. | Ib Lundgren | 2013-06-09 | 1 | -10/+10 |
| | |||||
* | Split OAuth2 large modules into smaller ones. #168. | Ib Lundgren | 2013-05-30 | 1 | -0/+113 |