Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Pkce implementation #2510

Merged
merged 26 commits into from Jul 27, 2020
Merged

Pkce implementation #2510

merged 26 commits into from Jul 27, 2020

Conversation

quaxsze
Copy link
Contributor

@quaxsze quaxsze commented Jul 6, 2020
edited

fix #2479

JulienParis
JulienParis reviewed Jul 10, 2020
View reviewed changes
udata/api/commands.py Outdated Show resolved Hide resolved
JulienParis
JulienParis reviewed Jul 10, 2020
View reviewed changes
udata/api/commands.py Outdated Show resolved Hide resolved
JulienParis
JulienParis reviewed Jul 10, 2020
View reviewed changes
udata/api/commands.py Outdated Show resolved Hide resolved
@JulienParis
Copy link
Contributor

JulienParis commented Jul 10, 2020
edited

just some notes I used to remember how to use the new oauth endpoints :

update udata libs

cd ../udata
source venv/bin/activate
pip install --update authlib
pip install -e .

create an oauth client

cd .../udata
source venv/bin/activate
udata api create-oauth-client -u my.udata.user.email@mail.com --uri=http://localhost:8080/login

# it should echo yout out your new client ID / client secret, something like
# New OAuth client
# Client ID 5f0blablablablabla1d
# Client secret eZvqvelbDOOblablablaVnX5nniOqGWFG7

# if your're developping locally so your client could use `http` and not only `https`
export AUTHLIB_INSECURE_TRANSPORT=1

@JulienParis
Copy link
Contributor

JulienParis commented Jul 10, 2020
edited

note for later, I'm having this for now when posting on /token

Access to fetch at 'http://dev.local:7000/oauth/token' from origin 'http://localhost:8080' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource. If an opaque response serves your needs, set the request's mode to 'no-cors' to fetch the resource with CORS disabled.

abulte
abulte reviewed Jul 13, 2020
View reviewed changes
udata/api/commands.py Outdated Show resolved Hide resolved
udata/api/oauth2.py Outdated Show resolved Hide resolved
udata/api/oauth2.py Show resolved Hide resolved
udata/api/oauth2.py Show resolved Hide resolved
udata/api/oauth2.py Show resolved Hide resolved
abulte
abulte approved these changes Jul 15, 2020
View reviewed changes
Copy link
Contributor

@abulte abulte left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good after https://github.com/opendatateam/udata/pull/2510/files#r454868936

It would be nice to write a little bit of doc too: what we support in term of OAuth flow and how to use it.

JulienParis
JulienParis reviewed Jul 20, 2020
View reviewed changes
udata/api/oauth2.py Outdated Show resolved Hide resolved
@quaxsze quaxsze merged commit f918ecd into opendatateam:master Jul 27, 2020
@quaxsze quaxsze deleted the pkceImplem branch July 27, 2020 08:31
@quaxsze quaxsze mentioned this pull request Jul 27, 2020
Closed
@quaxsze quaxsze mentioned this pull request Sep 15, 2020
Closed
@quaxsze quaxsze mentioned this pull request Jul 12, 2021
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@JulienParis JulienParis JulienParis left review comments

@abulte abulte abulte approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Implement PKCE via Authlib
3 participants
@quaxsze @JulienParis @abulte