Permalink
Commits on Nov 24, 2016
  1. Merge pull request #440 from fabfuel/ensure-request-client_id-from-re…

    …quest-client
    
    Ensure request.client_id in grant authorization_code
    thedrow committed on GitHub Nov 24, 2016
  2. Merge pull request #430 from richardasaurus/patch-1

    Run tests against python 3.6 dev
    thedrow committed on GitHub Nov 24, 2016
  3. Merge pull request #442 from mistermocha/master

    scrubbing rsa_key from __repr__
    thedrow committed on GitHub Nov 24, 2016
Commits on Nov 23, 2016
  1. Bump version to 2.0.1.

    thedrow committed Nov 23, 2016
  2. Merge pull request #450 from joelstevenson/master

    Normalize handling of request.scopes list
    thedrow committed on GitHub Nov 23, 2016
Commits on Nov 22, 2016
  1. Fix a typo

    joelstevenson committed Nov 22, 2016
Commits on Nov 21, 2016
  1. Normalize handling of request.scopes list

    Use the scope_to_list() util to initalize the request.scopes list from
    the request.scope request parameter in two place where it was instead
    being set to None.
    
    - AuthorizationEndpoint.validate_authorization_request()
    - TokenEndpoint.create_token_response()
    
    In both cases the Request should be properly populated before it is
    passed to the client's validator.
    
    In the case of the TokenEndpoint - there are OAuth2 workflows that
    allow an optional scope parameter so we should have been doing this
    for them anyway.
    
    Since scope_to_list() may return None, also update the openid_connect
    code to behave properly when this is the case.
    
    Fixes #436
    joelstevenson committed Nov 21, 2016
Commits on Oct 21, 2016
  1. scrubbing rsa_key from __repr__

    Brian Weber committed Oct 21, 2016
Commits on Oct 3, 2016
Commits on Sep 3, 2016
  1. Fix travis.

    thedrow committed Sep 3, 2016
  2. Bumped version.

    thedrow committed Sep 3, 2016
Commits on Aug 28, 2016
  1. Merge pull request #429 from vincent-kuwornu/docs-typo

    Fix typo in docstring.
    thedrow committed on GitHub Aug 28, 2016
  2. Small fix for #416

    Tuples are initialized faster on CPython.
    thedrow committed on GitHub Aug 28, 2016
  3. Merge pull request #416 from joelstevenson/openid_connect

    Openid connect
    thedrow committed on GitHub Aug 28, 2016
Commits on Aug 26, 2016
Commits on Aug 25, 2016
  1. AUTHORS file

    joelstevenson committed Aug 25, 2016
  2. Test for membership should be "not in".

    Commenting.
    joelstevenson committed Aug 25, 2016
Commits on Aug 18, 2016
  1. Move the claims handling into OpenIDConnectBase._inflate_claims() and…

    … a new AuthCodeGrantDispatcher to route requests to either the default AuthorizationCodeGrant or OpenIDConnectAuthCode depending on scope when the request's response_type is a simple (ambiguous) 'code'.
    
    Include basic docs about OpenID Connect auth flow support
    joelstevenson committed Aug 18, 2016
Commits on Jul 8, 2016
  1. Update tox.ini

    richardasaurus committed on GitHub Jul 8, 2016
  2. Update tox.ini

    richardasaurus committed on GitHub Jul 8, 2016
  3. Run tests against python 3.6

    richardasaurus committed on GitHub Jul 8, 2016
Commits on Jul 7, 2016
Commits on Jun 1, 2016
  1. Bumped version.

    thedrow committed Jun 1, 2016
  2. Updated changelog.

    thedrow committed Jun 1, 2016
Commits on May 31, 2016
  1. Convert readthedocs link for their .org -> .io migration for hosted p…

    …rojects (#427)
    
    As per [their blog post of the 27th April](https://blog.readthedocs.com/securing-subdomains/) ‘Securing subdomains’:
    
    > Starting today, Read the Docs will start hosting projects from subdomains on the domain readthedocs.io, instead of on readthedocs.org. This change addresses some security concerns around site cookies while hosting user generated data on the same domain as our dashboard.
    
    Test Plan: Manually visited all the links I’ve modified.
    adamchainz committed with lepture May 31, 2016
Commits on May 18, 2016
  1. Merge pull request #425 from parryjacob/master

    Cast body to a string for regex - fixes #424
    thedrow committed May 18, 2016
Commits on May 16, 2016
  1. Merge pull request #423 from r4fek/master

    Fix #422: Query strings should be able to include colons
    thedrow committed May 16, 2016
Commits on May 9, 2016
Commits on May 6, 2016
  1. Reworking the handling of claims. @bjmc was quite right to question t…

    …he haste-y inclusion in the Resource endpoint. It is an optional parameter to the Authorization Code endpoint and so needs to be stored with both the generated authorization code grant and any subsequent access token issued to that authorization code.
    joelstevenson committed May 6, 2016
Commits on May 2, 2016
  1. Minor cleanup

    joelstevenson committed May 2, 2016
  2. Pairing with the previous commit, revert the change related to respon…

    …se_type in AuthorizationEndpoint so that they must appear in the order specified in the spec. Just keeps the code clean and simple this way.
    joelstevenson committed May 2, 2016