Skip to content
Commits on Sep 10, 2014
  1. Update

  2. Update

Commits on Jul 7, 2013
  1. Update

  2. Remove legacy files.

  3. Create

Commits on Apr 16, 2013
  1. Regenerate doxygen for draft10.

Commits on Jan 25, 2011
  1. * introduce Drupal style getVariable() and setVariable, replace legac…

    …y variable get/set functions.
    * remove hardcode PHP display_error and errror_reporting, as this should be manually implement within 3rd party integration.
    * make verbose error as configurable and default disable, as this should be manually enable within 3rd party integration.
    * add lib/ and lib/ for client-side implementation.
Commits on Dec 18, 2010
  1. * add MIT LICENSE.txt.

    * add CHANGELOG.txt.
  2. * more documents.

    * add config.doxy for doxygen default setup.
Commits on Dec 17, 2010
  1. * update all documents.

    * restructure @ingroup.
    * rename checkRestrictedClientResponseTypes() as checkRestrictedAuthResponseType().
    * rename checkRestrictedClientGrantTypes() as checkRestrictedGrantType().
    * rename error() as errorJsonResponse().
    * rename errorCallback() as errorDoRedirectUriCallback().
    * rename send401Unauthorized() as errorWWWAuthenticateResponseHeader(), update support with different HTTP status code.
    * update __construct() with array input.
    * update finishClientAuthorization() with array input.
    * add get/set functions for $access_token_lifetime, $auth_code_lifetime and $refresh_token_lifetime.
    * fix a lots of typos.
Commits on Dec 16, 2010
  1. * update part of documents.

    * change expirseRefreshToken() as unsetRefreshToken().
    * update token and auth code generation as md5() result, simpler for manual debug with web browser.
  2. * update call function call naming.

    * coding style clean up.
  3. * rename constants with OAUTH2_ prefix, prevent 3rd party integration…

    … conflict.
    * remove HTTP 400 response constant, as useless refer to draft v10.
    * merge ERROR_INVALID_CLIENT_ID and ERROR_UNAUTHORIZED_CLIENT as OAUTH2_ERROR_INVALID_CLIENT, as refer to that of draft v9 to v10 changes.
  4. * code cleanup with indent and spacing.

    * code cleanup true/false/null with TRUE/FALSE/NULL.
Commits on Dec 14, 2010
  1. * issue #5: Wrong variable name in get_access_token() in pdo_oatuh.php.

    * issue #6: mysql_create_tables.sql should allow scope to be NULL.
    * issue #7: authorize_client_response_type() is never used.
    * issue #9: Change "redirect_uri" filtering from FILTER_VALIDATE_URL to FILTER_SANITIZE_URL.
    * better coding syntax for error() and callback_error().
    * better pdo_oauth2.php variable naming with change to mysql_create_tables.sql.
    * change REGEX_CLIENT_ID as 3-32 characters long, so will work with md5() result directly.
    * debug linkage to oauth2.php during previous commit.
    * debug redirect_uri check for AUTH_CODE_GRANT_TYPE, clone from get_authorize_params().
    * update mysql_create_tables.sql with phpmyadmin export format.
  2. * cleanup tabs and trailing whitespace at the end.

    * remove server/examples/mongo/lib/oauth.php and server/examples/pdo/lib/oauth.php, so only keep single copy as lib/oauth.php.
Commits on Sep 4, 2010
  1. @aaronpk

    Fixes for issues #2 and #4, updates oauth lib in the example folders …

    aaronpk committed
    …to the latest version in the 'lib' folder.
Commits on Aug 4, 2010
  1. @aaronpk

    * Updates server library to revision 10 of the OAuth 2.0 spec

    aaronpk committed
    * Adds an option for more verbose error messages to be returned in the JSON response
    * Adds method to be overridden for expiring used refresh tokens
    * Fixes bug checking token expiration
    * Makes some more methods protected instead of private so they can be overridden
    * Fixes issue #1
Commits on Jun 29, 2010
  1. @opendining
  2. @opendining
  3. @opendining

    corrected an error in assertion grant type

    opendining committed
    updated for IETF draft v9:
    big changes:
    get_redirect_uri must now return false if the client does not exist, to support new OAuth error
    changed client type to response type
    error messages overhauled
    cleaned up URI parsing to add query and fragment params
    added hooks for:
    	supporting only selected response types (get_supported_auth_response_types)
    	listing supported scope values (get_supported_scopes)
    	authorizing clients to use particular response types (authorize_client_response_type)
  4. @opendining

    corrected "false" return result on get_stored_auth_code

    opendining committed
    implemented PDO example adapter
Commits on Jun 28, 2010
  1. @opendining
  2. @opendining
  3. @opendining
  4. @opendining

    Initial commit

    opendining committed
Something went wrong with that request. Please try again.