Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Remove check on empty scopes for implicit grant flow #475

Merged
merged 7 commits into from
Sep 7, 2018
Merged

Remove check on empty scopes for implicit grant flow #475

merged 7 commits into from
Sep 7, 2018

Conversation

akira-dev
Copy link
Contributor

@akira-dev akira-dev commented Apr 26, 2017
edited
Loading

I don't know why this test is made only in implicit grant type flow. Because in all others grant type flow if you don't provide scopes to get a token, token is generated with default_scopes of the client without errors. Moreover if you don't make this test in implicit grant type flow the behavior of this flow is the same as other grant type flows: it generate token with client default_scopes.

@akira-dev akira-dev changed the title remove check on empty scopes remove check on empty scopes for implicit grant flow Apr 26, 2017
@wiliamsouza
Copy link
Member

Hi, if you take a look in the following test cases list you will see that this is not covered by any test:

https://github.com/idan/oauthlib/blob/master/tests/oauth2/rfc6749/grant_types/test_implicit.py#L28-L41
https://github.com/idan/oauthlib/blob/master/tests/oauth2/rfc6749/grant_types/test_authorization_code.py#L103-L136
https://github.com/idan/oauthlib/blob/master/tests/oauth2/rfc6749/grant_types/test_openid_connect.py#L141-L168
https://github.com/idan/oauthlib/blob/master/tests/oauth2/rfc6749/grant_types/test_resource_owner_password.py#L33-L90
https://github.com/idan/oauthlib/blob/master/tests/oauth2/rfc6749/grant_types/test_client_credentials.py#L50-L60

Add this tests is important to this PR can you provide that? Ensure the existence of a test that in the case of not providing a scope the default defined in RequestValidator is used.

@JonathanHuot JonathanHuot mentioned this pull request Mar 15, 2018
Closed
@duaneking
Copy link
Member

@akira-dev This build is failing. If you are still interested in this contribution please update your base and merge so that tests pass. If not. let us know and we will include it in our cleanup. Thanks!

@skion skion added this to the 3.0.0 milestone Jun 30, 2018
skion
skion approved these changes Jun 30, 2018
View reviewed changes
Copy link
Member

@skion skion left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'd be happy to merge this as is for 3.0.0.

@skion skion changed the title remove check on empty scopes for implicit grant flow Remove check on empty scopes for implicit grant flow Jul 1, 2018
@JonathanHuot JonathanHuot mentioned this pull request Jul 3, 2018
Closed
@luhn luhn mentioned this pull request Sep 2, 2018
Merged
@JonathanHuot JonathanHuot merged commit 36e7f50 into oauthlib:master Sep 7, 2018
@JonathanHuot JonathanHuot added Bug OAuth2-Provider This impact the provider part of OAuth2 labels Dec 3, 2018
@JonathanHuot JonathanHuot mentioned this pull request Dec 3, 2018
Closed
23 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@skion skion skion approved these changes

Assignees
No one assigned
Labels
Bug OAuth2-Provider This impact the provider part of OAuth2
Projects
None yet
Milestone
3.0.0
Development

Successfully merging this pull request may close these issues.
5 participants
@akira-dev @wiliamsouza @duaneking @skion @JonathanHuot