Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Improvement in extract authorization token #28

Closed
nggary opened this issue Feb 13, 2018 · 1 comment
Closed

Improvement in extract authorization token #28

nggary opened this issue Feb 13, 2018 · 1 comment
Assignees
@lepture
Labels
bug
Milestone
Version 0.6

Comments

@nggary
Copy link

nggary commented Feb 13, 2018

In urls.py

def extract_basic_authorization(token):
    """Extract token from Basic Authorization."""
    query = to_unicode(base64.b64decode(token))
    if ':' in query:
        return query.split(':', 1)
    return query, None

If user pass the invalid token will cause internal server error, could you use try catch to catch the exception?
@lepture lepture self-assigned this Feb 13, 2018
@lepture lepture added this to the Version 0.6 milestone Feb 13, 2018
@lepture
Copy link
Owner

lepture commented Feb 13, 2018

@nggary Thanks for your reporting, it is fixed in the master.

@lepture lepture added the bug label Feb 28, 2018
coopfeathy added a commit to coopfeathy/authlib-django that referenced this issue Dec 11, 2022
@coopfeathy
Refactor OAuth2Request. Use OAuth2Request in revocation.
6d907b8 
Also fixed lepture/authlib#28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@lepture lepture

Labels
bug
Projects
None yet
Milestone
Version 0.6
Development

No branches or pull requests
2 participants
@lepture @nggary