Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
OIDC/OAuth Revocation improvements part 2 #4771
This the second and last part of my work on the OAuth/OIDC revocation process. I still have to add tests & doc for the new revocation endpoints but I thought it would be easier for you to start reviewing from now.
Here the changelog:
Take your time to review and let me know if you need any further information.
* Revocation is now supported inside the /oauth2.0 url instead of /oidc only * add support for public clients * Fix a bug which allow a client to revoke a token from another client * Refresh token revocation new revoke all Access Token related to the Refresh Token submitted
@@ Coverage Diff @@ ## master #4771 +/- ## ===================================================== - Coverage 51.67306% 49.35356% -2.31949% + Complexity 8520 8196 -324 ===================================================== Files 2661 2668 +7 Lines 54750 54916 +166 Branches 4398 4423 +25 ===================================================== - Hits 28291 27103 -1188 - Misses 24214 25502 +1288 - Partials 2245 2311 +66
I appreciate your commitment, thank you.