summaryrefslogtreecommitdiff
path: root/oauthlib/oauth2/rfc6749
Commit message (Collapse)AuthorAgeFilesLines
* Allow custom provider to override oauthlib valuesoauth-metadataJonathan Huot2018-11-211-6/+8
| | | | See https://github.com/oauthlib/oauthlib/pull/605#discussion_r234438151
* Merge branch 'master' into oauth-metadataOmer Katz2018-11-011-1/+1
|\
| * Wrong Client is also a FatalClientError (#608)Jonathan Huot2018-11-011-1/+1
| | | | | | FatalClientError is it SHOULD NOT be redirected to client (redirect_uri), but MUST be redirected to USERS (error_uri).
* | Initial OAuth Authorization Server Metadata RFC8414Jonathan Huot2018-10-252-0/+192
|/
* Merge branch 'master' into fix-585_client_idJonathan Huot2018-09-211-1/+3
|\
| * fixup! `invalid_grant` status code should be 400Free Duerinckx2018-09-201-0/+2
| |
| * Merge branch 'master' into invalid-grant-should-respond-with-400Omer Katz2018-09-2011-126/+323
| |\
| * \ Merge branch 'master' into invalid-grant-should-respond-with-400Jonathan Huot2018-08-132-0/+6
| |\ \
| * | | `invalid_grant` status code should be 400Free Duerinckx2018-07-041-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | According to section 5.2 of rfc 6749 (https://tools.ietf.org/html/rfc6749#section-5.2) A server should respond with 400 in case of an invalid grant. The given grant is invalid and the client should give other data. A 401 is not applicable here because the client is required to give a suitable Authorization header field which doesn't make any sense if you are trying to acquire a grant authentication. According to sections 10.4.1 and 10.4.2 of rfc 2616 (https://tools.ietf.org/html/rfc2616#section-10.4.1)
* | | | * changed "function definition" to "function signature" in two docstringsjonathan vanasco2018-09-202-14/+21
| | | | | | | | | | | | | | | | | | | | * fixed some formatting issues in `prepare_token_request` docstring * slightly altered `prepare_token_request` in handling nontruthy values for `client_secret`.
* | | | Merge branch 'fix-585_client_id' of github.com:jvanasco/oauthlib into ↵jonathan vanasco2018-09-171-0/+12
|\ \ \ \ | | | | | | | | | | | | | | | fix-585_client_id
| * \ \ \ Merge branch 'master' into fix-585_client_idJonathan Huot2018-09-171-0/+12
| |\ \ \ \ | | | |_|/ | | |/| |
| | * | | Merge branch 'master' into 431-customexceptionJonathan Huot2018-09-1511-108/+300
| | |\ \ \
| | * | | | Fixed py27/pypy supportJonathan Huot2018-09-101-1/+1
| | | | | |
| | * | | | Add support of custom errors coming from providersJonathan Huot2018-09-101-0/+12
| | | | | | | | | | | | | | | | | | | | | | | | Fix #431. The inherent function "raise_from_error" is called when "error=" is found in the payload. So it MUST raise something, and until now, only RFC errors were raised.
* | | | | | migrated `include_client_id` to `prepare_request_token`jonathan vanasco2018-09-175-11/+70
|/ / / / /
* | | | | * added support for empty strings of `client_secret`jonathan vanasco2018-09-172-0/+12
| | | | | | | | | | | | | | | | | | | | * added LegacyApplicationClient tests to ensure the grant supports a variety of allowed methods
* | | | | standardized some test valuesjonathan vanasco2018-09-141-1/+1
| | | | | | | | | | | | | | | | | | | | integrated against requests_oauthlib idea
* | | | | * addresing ticket #585jonathan vanasco2018-09-136-15/+42
| |/ / / |/| | | | | | | | | | | | | | | | | | | * `prepare_request_body` client_id is deprecated in favor of include_client_id * a new unit test `test_prepare_request_body` is added to ensure conformity of several use cases * the docstrings for the `body` param have been consolidated and standardized across multiple functions linked to `prepare_request_body` for clarity
* | | | fixed spacingjonathan vanasco2018-09-111-1/+1
| | | |
* | | | cleanup on docs fixesjonathan vanasco2018-09-1111-44/+53
| | | |
* | | | redid the docstring fixesjonathan vanasco2018-09-109-82/+265
|/ / /
* | | Merge branch 'master' into masterJonathan Huot2018-09-072-13/+11
|\ \ \
| * | | Make scope optional for authorization code grant.Theron Luhn2018-09-021-12/+0
| | | |
| * | | Merge branch 'master' into 445_confirm_redirect445_confirm_redirectJonathan Huot2018-08-201-1/+0
| |\ \ \
| | * | | client_id is not passed to save_bearer_token234-fixdocJonathan Huot2018-08-161-1/+0
| | | |/ | | |/|
| * | | Merge branch 'master' into 445_confirm_redirectJonathan Huot2018-08-152-0/+6
| |\ \ \ | | |/ /
| * | | Call get_default_redirect_uri if no redirect_uri in token reqJonathan Huot2018-07-301-0/+11
| | |/ | |/|
* | | Merge branch 'master' into masterJonathan Huot2018-08-122-0/+6
|\ \ \ | | |/ | |/|
| * | Merge branch 'master' into get_default_redirJonathan Huot2018-08-121-0/+4
| |\ \
| | * | Implicit was not converting expires_in into integersJonathan Huot2018-08-061-0/+4
| | |/
| * | Add syntax check of get_default_redirect_uriJonathan Huot2018-07-301-0/+2
| |/ | | | | | | Authorization Code was missing this check, whereas Implicit was checking it.
* | Merge branch 'master' into masterPieter Ennes2018-08-122-6/+10
|\ \ | |/
| * Remove handling of nonstandard parameter "expires" (#506)Seth Davis2018-06-301-5/+2
| |
| * Update save_bearer_token docs to mention how the token is passed in as a ↵claweyenuk2018-06-301-1/+8
| | | | | | | | reference (#556)
* | Merge branch 'master' into masterJonathan Huot2018-06-269-654/+252
|\ \ | |/
| * OpenID Connect split (#525)Wiliam Souza2018-06-056-633/+36
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Add command to clean up builds to makefile * Fix docs strings for endpoints pre_configured * Chnage grant_types.openid_connect to include a deprecation warning be a backward compatible * Fix doc string for rfc6749.request_validator * Remove unused import * Change import to be explicity * Move JWTTokenTestCase to openid.connect.core.test_token * Move JWTToken to oauthlib.openid.connect.core.tokens * Move to openid connect test * Move openid connect exceptions to its own file * Remove openid connect from oauth2 server * Remove JWTToken from oauth tokens * Remove grant_types.openid_connect file * Add oauthlib/openid estructure and tests
| * Merge branch 'master' into oauth2-introspectPieter Ennes2018-05-2619-128/+258
| |\
| | * Add missing NotImplementedError (#499)Grey Li2018-05-261-0/+1
| | |
| | * Check that the Bearer header is properly formatted (#491)Mattia Procopio2018-05-261-15/+25
| | |
| * | Improved doc by adding links to RFC and list of claims.Jonathan Huot2017-12-191-5/+25
| | |
| * | Added default supported_token_types for MobileJonathan Huot2017-12-191-1/+2
| | |
| * | Added initial introspect supportJonathan Huot2017-12-185-11/+174
| | |
* | | Merge branch 'master' into masterJonathan Huot2018-05-256-12/+24
|\ \ \ | | |/ | |/|
| * | Backward compatibility fix for requests-oauthlib. (#546)Pieter Ennes2018-05-183-6/+12
| | |
| * | Avoid populating spurious token credentials (#542)Pieter Ennes2018-05-083-9/+14
| | |
| * | Fixed some copy and paste typos (#535)paulie42018-04-131-2/+2
| | | | | | | | | Fixed some copy and paste typos, see issue #532.
| * | Add request argument to confirm_redirect_uri (#504) (#504)Jimmy Thrasibule2018-04-132-2/+3
| | |
* | | Merge branch 'master' into masterJonathan Huot2018-03-2926-210/+432
|\ \ \ | |/ /
| * | Rtd docs fix (#515)Jonathan Huot2018-02-2817-103/+103
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * Added sphinx build for developers Rationale is to build docs locally to prevent RTD to break later. * Replace manual sphinx into make * Renamed idan URL to oauthlib community * Renamed http into https URLs since http is returning 302 * python requests library renamed its home URL * Add ignore list for "make linkcheck" linkcheck is doing requests to github with anonymous access, however creating an issue require an logged-in account * virtualenv changed its homepage and website. * Fixed broken link
View Lorry Controller Status