From 947d533d3408be89f0344bcbdace01513bdb16d6 Mon Sep 17 00:00:00 2001 From: Jonathan Huot Date: Sat, 29 Jan 2022 22:46:26 +0100 Subject: Set python3.7 since RTD has switched to python3.7 --- tox.ini | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/tox.ini b/tox.ini index 8e77f3b..c072450 100644 --- a/tox.ini +++ b/tox.ini @@ -9,9 +9,9 @@ commands= # tox -e docs to mimick readthedocs build. -# as of today, RTD is using python3.6 and doesn't run "setup.py install" +# as of today, RTD is using python3.7 and doesn't run "setup.py install" [testenv:docs] -basepython=python3.6 +basepython=python3.7 skipsdist=True deps= sphinx -- cgit v1.2.1 From bd2e8edf8313aebd99a0bcf752ff4a7e2c1769a0 Mon Sep 17 00:00:00 2001 From: Jonathan Huot Date: Sat, 29 Jan 2022 22:46:53 +0100 Subject: Changelog of 3.2.0 --- CHANGELOG.rst | 27 +++++++++++++++++++-------- docs/feature_matrix.rst | 21 +++++++++++---------- 2 files changed, 30 insertions(+), 18 deletions(-) diff --git a/CHANGELOG.rst b/CHANGELOG.rst index c67f4da..d7882e9 100644 --- a/CHANGELOG.rst +++ b/CHANGELOG.rst @@ -1,11 +1,27 @@ Changelog ========= -3.2.0 (TBD) +3.2.0 (2022-01-29) ------------------ +OAuth2.0 Client: +* #795: Add Device Authorization Flow for Web Application +* #786: Add PKCE support for Client +* #783: Fallback to none in case of wrong expires_at format. + +OAuth2.0 Provider: +* #790: Add support for CORS to metadata endpoint. +* #791: Add support for CORS to token endpoint. +* #787: Remove comma after Bearer in WWW-Authenticate + +OAuth2.0 Provider - OIDC: + * #755: Call save_token in Hybrid code flow + * #751: OIDC add support of refreshing ID Tokens with `refresh_id_token` + * #751: The RefreshTokenGrant modifiers now take the same arguments as the + AuthorizationCodeGrant modifiers (`token`, `token_handler`, `request`). -In Progress - +General: + * Added Python 3.9, 3.10, 3.11 + * Improve Travis & Coverage 3.1.1 (2021-05-31) ------------------ @@ -13,9 +29,6 @@ OAuth2.0 Provider - Bugfixes * #753: Fix acceptance of valid IPv6 addresses in URI validation -OAuth2.0 Provider - Features - * #751: OIDC add support of refreshing ID Tokens - OAuth2.0 Client - Bugfixes * #730: Base OAuth2 Client now has a consistent way of managing the `scope`: it consistently @@ -34,8 +47,6 @@ OAuth2.0 Provider - Bugfixes * #746: OpenID Connect Hybrid - fix nonce not passed to add_id_token * #756: Different prompt values are now handled according to spec (e.g. prompt=none) * #759: OpenID Connect - fix Authorization: Basic parsing - * #751: The RefreshTokenGrant modifiers now take the same arguments as the - AuthorizationCodeGrant modifiers (`token`, `token_handler`, `request`). General * #716: improved skeleton validator for public vs private client diff --git a/docs/feature_matrix.rst b/docs/feature_matrix.rst index 56d0cf3..f9309f9 100644 --- a/docs/feature_matrix.rst +++ b/docs/feature_matrix.rst @@ -1,8 +1,8 @@ -Supported features and platforms -================================ +Features and platforms +====================== -Features --------- +.. contents:: + :local: OAuth 1.0a .......... @@ -39,16 +39,16 @@ OAuth 2.0 client and provider support for: - `RFC 6749 section-6`_: Refresh Tokens - `RFC 6750`_: Bearer Tokens - `RFC 7009`_: Token Revocation +- `RFC 7636`_: Proof Key for Code Exchange by OAuth Public Clients (PKCE) +- `RFC 8628`_: OAuth2.0 Device Authorization Grant - `RFC Draft`_ Message Authentication Code (MAC) Tokens + +Partial implementations (any help/PR are welcomed to complete the list): + - OAuth2.0 Provider: `OpenID Connect Core`_ -- OAuth2.0 Provider: `RFC 7636`_: Proof Key for Code Exchange by OAuth Public Clients (PKCE) - OAuth2.0 Provider: `RFC 7662`_: Token Introspection - OAuth2.0 Provider: `RFC 8414`_: Authorization Server Metadata - -Features to be implemented (any help/PR are welcomed): - - OAuth2.0 **Client**: `OpenID Connect Core`_ -- OAuth2.0 **Client**: `RFC 7636`_: Proof Key for Code Exchange by OAuth Public Clients (PKCE) - OAuth2.0 **Client**: `RFC 7662`_: Token Introspection - OAuth2.0 **Client**: `RFC 8414`_: Authorization Server Metadata - SAML2 @@ -59,7 +59,7 @@ Features to be implemented (any help/PR are welcomed): - ...and more Platforms ---------- +......... OAuthLib is mainly developed and tested on 64-bit Linux. It works on Unix and Unix-like operating systems (including macOS), as well as @@ -85,5 +85,6 @@ additional packages: see the installation instructions for details. .. _`RFC 7009`: https://tools.ietf.org/html/rfc7009 .. _`RFC 7662`: https://tools.ietf.org/html/rfc7662 .. _`RFC 7636`: https://tools.ietf.org/html/rfc7636 +.. _`RFC 8628`: https://tools.ietf.org/html/rfc8628 .. _`OpenID Connect Core`: https://openid.net/specs/openid-connect-core-1_0.html .. _`RFC 8414`: https://tools.ietf.org/html/rfc8414 -- cgit v1.2.1 From 4e01008da0ef0de88f4ebe648cdc564117beced8 Mon Sep 17 00:00:00 2001 From: Jonathan Huot Date: Sat, 29 Jan 2022 22:47:54 +0100 Subject: Fixed code documentation --- oauthlib/oauth2/rfc8628/clients/device.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/oauthlib/oauth2/rfc8628/clients/device.py b/oauthlib/oauth2/rfc8628/clients/device.py index df7ff68..95c4f5a 100644 --- a/oauthlib/oauth2/rfc8628/clients/device.py +++ b/oauthlib/oauth2/rfc8628/clients/device.py @@ -79,7 +79,7 @@ class DeviceClient(Client): the ``grant_type`` parameter set to ``urn:ietf:params:oauth:grant-type:device_code``:: - >>> from oauthlib.oauth2 import BackendApplicationClient + >>> from oauthlib.oauth2 import DeviceClient >>> client = DeviceClient('your_id', 'your_code') >>> client.prepare_request_body(scope=['hello', 'world']) 'grant_type=urn:ietf:params:oauth:grant-type:device_code&scope=hello+world' -- cgit v1.2.1 From 864bd932a1a17a82cfe98078634fb38ec222dfc6 Mon Sep 17 00:00:00 2001 From: Jonathan Huot Date: Sat, 29 Jan 2022 22:55:27 +0100 Subject: Add contributors to AUTHORS file. --- AUTHORS | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) diff --git a/AUTHORS b/AUTHORS index bbffe14..c820d6d 100644 --- a/AUTHORS +++ b/AUTHORS @@ -30,3 +30,22 @@ Jonathan Huot Pieter Ennes Olaf Conradi Tom Evans +Bella Woo +Alan Crosswell +Nikos Sklikas +Paul Dekkers +Jason com4 +Aman Singh Solanki +uy-rrodriguez +Sylvain MariƩ +Hoylen Sue +Christian Clauss +Mike Kelly +Xpyder +Theron Luhn +Alexander Freeman1981 +Jon Velando +Scott Gifford +Hugo van Kemenade +Richard Connon +Karim Kanso -- cgit v1.2.1 From d4d0a9dea44d98f44de2dab5a903aa790b4cbec7 Mon Sep 17 00:00:00 2001 From: Jonathan Huot Date: Sat, 29 Jan 2022 22:55:57 +0100 Subject: Fixed the version --- oauthlib/__init__.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/oauthlib/__init__.py b/oauthlib/__init__.py index 46c4a92..5dbffc9 100644 --- a/oauthlib/__init__.py +++ b/oauthlib/__init__.py @@ -12,7 +12,7 @@ import logging from logging import NullHandler __author__ = 'The OAuthlib Community' -__version__ = '3.2.0-dev' +__version__ = '3.2.0' logging.getLogger('oauthlib').addHandler(NullHandler()) -- cgit v1.2.1 From 112404878bdc8b492764e133c388afb978392e09 Mon Sep 17 00:00:00 2001 From: Jonathan Huot Date: Sat, 29 Jan 2022 23:04:08 +0100 Subject: Changed docs to python37 --- .travis.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.travis.yml b/.travis.yml index 6b195b6..b2dad7a 100644 --- a/.travis.yml +++ b/.travis.yml @@ -8,9 +8,9 @@ jobs: - python: "3.6" env: TOXENV=py36 - python: "3.7" - env: TOXENV=py37 + env: TOXENV=py37,docs - python: "3.8" - env: TOXENV=py38,bandit,docs,readme + env: TOXENV=py38,bandit,readme - python: "3.9" env: TOXENV=py39 - python: "3.10.2" -- cgit v1.2.1