delta/python-packages/oauthlib.git - github.com: idan/oauthlib.git

	Commit message (Collapse)	Author	Age	Files	Lines
*	Merge branch 'master' into dry-up-codedry-up-code	Jonathan Huot	2018-12-20	1	-9/+33
\|\
\| *	Merge branch 'master' into add-metadata-doc	Jonathan Huot	2018-12-16	7	-18/+276
\| \|\
\| * \|	Add OAuth2.0 Authorization Server Metadata documentation	Jonathan Huot	2018-12-13	1	-9/+33
\| \| \|
* \| \|	Fix typo.	Omer Katz	2018-12-17	3	-3/+3
\| \| \|
* \| \|	Merge branch 'master' into dry-up-code	Omer Katz	2018-12-17	12	-31/+318
\|\ \ \ \| \| \|/ \| \|/\|
\| * \|	Fixed OAuth2 Metadata when using PKCE and OIDC.Server601-pkce-support	Jonathan Huot	2018-12-14	1	-1/+6
\| \| \|
\| * \|	Fix issue when using Metadata Endpoint with OIDC PreConfigured server.	Jonathan Huot	2018-12-14	1	-2/+4
\| \| \|
\| * \|	Merge remote-tracking branch 'upstream/master' into 601-pkce-support	Jonathan Huot	2018-12-14	1	-1/+3
\| \|\ \
\| \| * \|	Update comments regarding OAuth Request Body Hash. (#628)	Omer Katz	2018-12-13	1	-1/+3
\| \| \|/
\| * \|	Fixed typo	Jonathan Huot	2018-12-13	1	-1/+1
\| \| \|
\| * \|	Merge branch 'master' into 601-pkce-support	Jonathan Huot	2018-12-13	12	-19/+57
\| \|\ \ \| \| \|/
\| \| *	Merge branch 'master' into 264-status401	Jonathan Huot	2018-12-13	5	-6/+15
\| \| \|\
\| \| * \|	Add Content-Type and Cache headers to introspect/revocation errors	Jonathan Huot	2018-12-13	2	-7/+14
\| \| \| \|
\| \| * \|	Add double-quotes to the key/values in WWW-Authenticate264-status401	Jonathan Huot	2018-12-12	1	-3/+3
\| \| \| \|
\| \| * \|	Used WWW-Authenticate and auth-param values as RFC6750 described it.	Jonathan Huot	2018-12-12	7	-14/+27
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	It misses the possibility to add scope= and realm= at the moment, but it should be a step forward into the right direction.
\| \| * \|	Handle 401 with WWW-Authenticate. Moved wrong 401 into 400.	Jonathan Huot	2018-12-04	7	-6/+15
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	access_denied/unauthorized_client/consent_required/login_required MUST be 400, and not 401. Also, 401 MUST have WWW-Authenticate when set. It could have an impact of processing those in webframeworks.
\| * \| \|	Add details on grant_type & implicit special case.	Jonathan Huot	2018-12-13	1	-0/+12
\| \| \| \|
\| * \| \|	Replace temporary list by using clearer "extend" method	Jonathan Huot	2018-12-13	1	-1/+1
\| \| \| \|
\| * \| \|	Merge pull request #624 from oauthlib/preconf-server-metadata	Jonathan Huot	2018-12-11	1	-3/+9
\| \|\ \ \ \| \| \| \| \| \| \| \| \| \|	Preconf server metadata
\| \| * \| \|	Add Server metadata test and fix metadata.	Jonathan Huot	2018-11-30	1	-3/+9
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Fix grant_types_supported which must include "implicit" even if it is not a grant_type in oauthlib sense. Removed internal "none" field value from the list of response_types.
\| * \| \| \|	Merge branch 'master' into 601-pkce-support	Jonathan Huot	2018-12-11	1	-1/+3
\| \|\ \ \ \ \| \| \|/ / / \| \|/\| / / \| \| \|/ /
\| * \| \|	Add OAuth2 Provider Server Metadata for PKCE.	Jonathan Huot	2018-11-30	1	-0/+2
\| \| \| \|
\| * \| \|	Initial OAuth2.0/PKCE Provider support	Jonathan Huot	2018-11-29	4	-12/+241
\| \| \| \|
* \| \| \|	Extract raising on unsupported token.	Omer Katz	2018-12-17	3	-11/+10
\| \| \| \|
* \| \| \|	Extract raising error on client auth failure.	Omer Katz	2018-12-17	3	-21/+15
\| \| \| \|
* \| \| \|	Raise error on missing token.	Omer Katz	2018-12-17	3	-9/+11
\| \| \| \|
* \| \| \|	Extract redirect handling to a common method.	Omer Katz	2018-12-17	3	-70/+59
\| \| \| \|
* \| \| \|	Extract default grant headers to helper method.	Omer Katz	2018-12-17	5	-21/+13
\| \|_\|/ \|/\| \|
* \| \|	change: response_type as attribute	mlboy	2018-12-12	1	-1/+3
\| \| \|
* \| \|	change: grant_type as attribute	mlboy	2018-12-12	1	-1/+2
\| \| \| \| \| \| \| \| \|	use refresh_token_key as attribute
* \| \|	change: grant_type as attribute	mlboy	2018-12-12	1	-1/+3
\| \| \|
* \| \|	change: grant_type as attribute	mlboy	2018-12-12	1	-1/+3
\| \| \|
* \| \|	change: grant_type as attribute	mlboy	2018-12-12	1	-2/+4
\| \|/ \|/\|
* \|	`invalid_scope` status code should be 400	Benjamin Pereto	2018-12-03	1	-1/+3
\|/
*	Merge branch 'master' into 613-oidc-dispatcher613-oidc-dispatcher	Jonathan Huot	2018-11-23	3	-0/+195
\|\
\| *	Allow custom provider to override oauthlib valuesoauth-metadata	Jonathan Huot	2018-11-21	1	-6/+8
\| \| \| \| \| \| \| \|	See https://github.com/oauthlib/oauthlib/pull/605#discussion_r234438151
\| *	Merge branch 'master' into oauth-metadata	Omer Katz	2018-11-01	1	-1/+1
\| \|\
\| * \|	Initial OAuth Authorization Server Metadata RFC8414	Jonathan Huot	2018-10-25	3	-0/+193
\| \| \|
* \| \|	Replaced distinct classes by a more unified one.	Jonathan Huot	2018-11-20	2	-25/+30
\| \| \| \| \| \| \| \| \| \| \| \|	"default_grant" and "oidc_grant" must be two generic attributes of OpenID Connect Dispatcher. We should not leave each Dispatcher implementation have this own attributes names.
* \| \|	Import OIDC main classes identically than OAuth2	Jonathan Huot	2018-11-20	2	-0/+20
\| \|/ \|/\| \| \| \| \|	import oauthlib.oauth2.Server must be replaced with oauthlib.openid.Server
* \|	Wrong Client is also a FatalClientError (#608)	Jonathan Huot	2018-11-01	1	-1/+1
\|/ \| \|	FatalClientError is it SHOULD NOT be redirected to client (redirect_uri), but MUST be redirected to USERS (error_uri).
*	Bump version to prepare 3.0.0	Jonathan Huot	2018-10-05	1	-1/+1
\|
*	Merge branch 'master' into fix-585_client_id	Jonathan Huot	2018-09-21	4	-18/+22
\|\
\| *	Fix OIDC tests (#565)	Pieter Ennes	2018-09-21	3	-17/+19
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	* Unmute ignored OIDC tests. * Fix more import errors. * Remove recently invalidated test for id_token_hint. * Fix tested grants. * Fix import on py27.
\| *	fixup! `invalid_grant` status code should be 400	Free Duerinckx	2018-09-20	1	-0/+2
\| \|
\| *	Merge branch 'master' into invalid-grant-should-respond-with-400	Omer Katz	2018-09-20	20	-176/+398
\| \|\
\| * \	Merge branch 'master' into invalid-grant-should-respond-with-400	Jonathan Huot	2018-08-13	2	-0/+6
\| \|\ \
\| * \ \	Merge branch 'master' into invalid-grant-should-respond-with-400	Jonathan Huot	2018-08-12	2	-2/+2
\| \|\ \ \
\| * \| \| \|	`invalid_grant` status code should be 400	Free Duerinckx	2018-07-04	1	-1/+1
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	According to section 5.2 of rfc 6749 (https://tools.ietf.org/html/rfc6749#section-5.2) A server should respond with 400 in case of an invalid grant. The given grant is invalid and the client should give other data. A 401 is not applicable here because the client is required to give a suitable Authorization header field which doesn't make any sense if you are trying to acquire a grant authentication. According to sections 10.4.1 and 10.4.2 of rfc 2616 (https://tools.ietf.org/html/rfc2616#section-10.4.1)
* \| \| \| \|	* changed "function definition" to "function signature" in two docstrings	jonathan vanasco	2018-09-20	2	-14/+21
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	* fixed some formatting issues in `prepare_token_request` docstring * slightly altered `prepare_token_request` in handling nontruthy values for `client_secret`.