Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
branch: master
Commits on Nov 18, 2014
  1. @bipthelin

    Merge branch 'bt-6.0'

    bipthelin authored
  2. @bipthelin

    Change types

    bipthelin authored
Commits on Nov 14, 2014
  1. @bipthelin

    Typo in map-tests

    bipthelin authored
Commits on Nov 13, 2014
  1. @bipthelin

    Add RefreshTokenExpiresIn

    bipthelin authored
  2. @bipthelin

    Typo

    bipthelin authored
  3. @bipthelin
  4. @bipthelin
  5. @bipthelin

    Change verify_resowner_scope

    bipthelin authored
Commits on Nov 12, 2014
  1. @bipthelin

    Refactor for 0.6

    bipthelin authored
  2. @bipthelin
  3. @bipthelin

    Adds response_type/grant_type parameter to API

    bipthelin authored
    WARNING: Breaks the compatibility with any code using the library
    The specification of Authorization Code Grant and Implicit Grant
    requires that unsupported_response_type errors are sent to the redirect
    URI if this is valid (see 4.1.2.1 and 4.2.2.1). In order to facilitate
    this, authorize_code_request and authorize_password have been modified
    to return unsupported_response_type when response_type in the request is
    wrong but client and redirect_uri are valid.
    response_type or grant_type parameters have been added to every other
    API function for the shake of consistency.
    See an example of how this API could be used in
    
    https://github.com/IvanMartinez/oauth2_webmachine/tree/test
Commits on Aug 20, 2014
  1. @bipthelin

    Pass around the right AppCtx

    bipthelin authored
  2. @bipthelin

    Roll a new tag

    bipthelin authored
Commits on Aug 19, 2014
  1. @bipthelin

    Add functions for implicit grant

    bipthelin authored
    Added `authorize_password/7` to aid in implementing `implicit_grant`(4.2)
    To validate a public client(just validate the redirection_uri) and a
    authenticate a user and issue a token use:
    
    ```erlang
    {ok, {Ctx, Auth}} =
        oauth2:authorize_password( CLIENT_ID
                                 , CLIENT_SECRET
                                 , CLIENT_REDIR_URI
                                 , UNAME
                                 , UPWD
                                 , USCOPE
                                 , CONTEXT ),
    {ok, {Ctx, Response}} = oauth2:issue_token(Auth, Ctx),
    ```
Commits on Aug 18, 2014
  1. @bipthelin

    Prepare 0.5.1

    bipthelin authored
  2. @bipthelin

    Merge pull request #42 from synlay/feature/oauth2_response_to_map_con…

    bipthelin authored
    …venience_function
    
    Introduce new convenience function oauth2_response:to_map/1
Commits on Aug 11, 2014
  1. @bipthelin
  2. @bipthelin
Commits on Aug 4, 2014
  1. @bipthelin
  2. @bipthelin
Commits on Jun 11, 2014
  1. @drobakowski
  2. @drobakowski
  3. @bipthelin

    Merge pull request #41 from synlay/feature/scope_to_proplist_fix

    bipthelin authored
    Fix oauth2_response:to_proplist/1 for correct scoping according to RFC6749 section 3.3
Commits on Jun 3, 2014
  1. @drobakowski
Commits on May 30, 2014
  1. @drobakowski

    Fix oauth2_response:to_proplist/1 for correct scoping according to RF…

    drobakowski authored
    …C6749 section 3.3
    
    Scopes should be expressed as a list of space-delimited, case-sensitive strings.
    Also refactored oauth2_response_tests:to_proplist_test/0 to a property-based PropEr test.
Commits on May 7, 2014
  1. @bipthelin

    Merge pull request #39 from synlay/feature/client_authentication_with…

    bipthelin authored
    …in_authorize_password
    
    Add additional oauth2:authorize_password/6 with previous client authentication and fix for #38
Commits on May 6, 2014
  1. @bipthelin

    Merge pull request #40 from synlay/feature/otp_17.0_dependency_update

    bipthelin authored
    Add Erlang/OTP 17.0 to the Travis CI test matrix and update meck dependency
  2. @drobakowski

    Add Erlang/OTP 17.0 to the Travis CI test matrix and update meck depe…

    drobakowski authored
    …ndency
    
    Missing Erlang/OTP R16B01 - R16B03-01 are also added to the test matrix.
Commits on May 5, 2014
  1. @drobakowski

    Add additional oauth2:authorize_password/6 with previous client authe…

    drobakowski authored
    …ntication and fix for #38
    
    WARNING: Breaks the compatibility with existing backend implementations
    
    The client can now be authenticated before the resource owner's
    credentials. See RFC6749 / Section 4.3.2 for more details.
    In addition to AppCtx and Scope, oauth2_backend:verify_resowner_scope/3
    now returns the ClientIdentity so that oauth2:authorize_resource_owner/3
    can set the client for the #authorization{} record and
    oauth2:refresh_access_token/5 can be successfully executed.
Commits on Jan 27, 2014
  1. @bipthelin

    Merge pull request #36 from synlay/feature/dialyzer_tweaks

    bipthelin authored
    Export types auth/0 and priv_set/0 for a better analyzing of backend implementations
Commits on Jan 23, 2014
  1. @bipthelin

    Merge pull request #35 from danielwhite/authorize-resource-owner

    bipthelin authored
    Allow authorization with a previously authenticated resource owner
  2. @danielwhite

    Allow authorization with a previously authenticated resource owner

    danielwhite authored
    This adds a new function `authorize_resource_owner/3` for establishing
    authorization where the resource owner has already been authenticated.
    Useful in the case where the Authentication Server is separate to the
    Authorization Server.
Commits on Jan 22, 2014
  1. @drobakowski
Commits on Jan 20, 2014
  1. @bipthelin

    Bump version 0.5.0

    bipthelin authored
  2. @bipthelin

    Merge pull request #34 from danielwhite/fix-binary-expiration-values

    bipthelin authored
    Fix binary encoded expiration values
Something went wrong with that request. Please try again.