From bd2e8edf8313aebd99a0bcf752ff4a7e2c1769a0 Mon Sep 17 00:00:00 2001 From: Jonathan Huot Date: Sat, 29 Jan 2022 22:46:53 +0100 Subject: Changelog of 3.2.0 --- CHANGELOG.rst | 27 +++++++++++++++++++-------- docs/feature_matrix.rst | 21 +++++++++++---------- 2 files changed, 30 insertions(+), 18 deletions(-) diff --git a/CHANGELOG.rst b/CHANGELOG.rst index c67f4da..d7882e9 100644 --- a/CHANGELOG.rst +++ b/CHANGELOG.rst @@ -1,11 +1,27 @@ Changelog ========= -3.2.0 (TBD) +3.2.0 (2022-01-29) ------------------ +OAuth2.0 Client: +* #795: Add Device Authorization Flow for Web Application +* #786: Add PKCE support for Client +* #783: Fallback to none in case of wrong expires_at format. + +OAuth2.0 Provider: +* #790: Add support for CORS to metadata endpoint. +* #791: Add support for CORS to token endpoint. +* #787: Remove comma after Bearer in WWW-Authenticate + +OAuth2.0 Provider - OIDC: + * #755: Call save_token in Hybrid code flow + * #751: OIDC add support of refreshing ID Tokens with `refresh_id_token` + * #751: The RefreshTokenGrant modifiers now take the same arguments as the + AuthorizationCodeGrant modifiers (`token`, `token_handler`, `request`). -In Progress - +General: + * Added Python 3.9, 3.10, 3.11 + * Improve Travis & Coverage 3.1.1 (2021-05-31) ------------------ @@ -13,9 +29,6 @@ OAuth2.0 Provider - Bugfixes * #753: Fix acceptance of valid IPv6 addresses in URI validation -OAuth2.0 Provider - Features - * #751: OIDC add support of refreshing ID Tokens - OAuth2.0 Client - Bugfixes * #730: Base OAuth2 Client now has a consistent way of managing the `scope`: it consistently @@ -34,8 +47,6 @@ OAuth2.0 Provider - Bugfixes * #746: OpenID Connect Hybrid - fix nonce not passed to add_id_token * #756: Different prompt values are now handled according to spec (e.g. prompt=none) * #759: OpenID Connect - fix Authorization: Basic parsing - * #751: The RefreshTokenGrant modifiers now take the same arguments as the - AuthorizationCodeGrant modifiers (`token`, `token_handler`, `request`). General * #716: improved skeleton validator for public vs private client diff --git a/docs/feature_matrix.rst b/docs/feature_matrix.rst index 56d0cf3..f9309f9 100644 --- a/docs/feature_matrix.rst +++ b/docs/feature_matrix.rst @@ -1,8 +1,8 @@ -Supported features and platforms -================================ +Features and platforms +====================== -Features --------- +.. contents:: + :local: OAuth 1.0a .......... @@ -39,16 +39,16 @@ OAuth 2.0 client and provider support for: - `RFC 6749 section-6`_: Refresh Tokens - `RFC 6750`_: Bearer Tokens - `RFC 7009`_: Token Revocation +- `RFC 7636`_: Proof Key for Code Exchange by OAuth Public Clients (PKCE) +- `RFC 8628`_: OAuth2.0 Device Authorization Grant - `RFC Draft`_ Message Authentication Code (MAC) Tokens + +Partial implementations (any help/PR are welcomed to complete the list): + - OAuth2.0 Provider: `OpenID Connect Core`_ -- OAuth2.0 Provider: `RFC 7636`_: Proof Key for Code Exchange by OAuth Public Clients (PKCE) - OAuth2.0 Provider: `RFC 7662`_: Token Introspection - OAuth2.0 Provider: `RFC 8414`_: Authorization Server Metadata - -Features to be implemented (any help/PR are welcomed): - - OAuth2.0 **Client**: `OpenID Connect Core`_ -- OAuth2.0 **Client**: `RFC 7636`_: Proof Key for Code Exchange by OAuth Public Clients (PKCE) - OAuth2.0 **Client**: `RFC 7662`_: Token Introspection - OAuth2.0 **Client**: `RFC 8414`_: Authorization Server Metadata - SAML2 @@ -59,7 +59,7 @@ Features to be implemented (any help/PR are welcomed): - ...and more Platforms ---------- +......... OAuthLib is mainly developed and tested on 64-bit Linux. It works on Unix and Unix-like operating systems (including macOS), as well as @@ -85,5 +85,6 @@ additional packages: see the installation instructions for details. .. _`RFC 7009`: https://tools.ietf.org/html/rfc7009 .. _`RFC 7662`: https://tools.ietf.org/html/rfc7662 .. _`RFC 7636`: https://tools.ietf.org/html/rfc7636 +.. _`RFC 8628`: https://tools.ietf.org/html/rfc8628 .. _`OpenID Connect Core`: https://openid.net/specs/openid-connect-core-1_0.html .. _`RFC 8414`: https://tools.ietf.org/html/rfc8414 -- cgit v1.2.1