Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Auth: OAuth 2.0 #1003

Open
helloanoop opened this issue Nov 20, 2023 · 55 comments
Open

Auth: OAuth 2.0 #1003

helloanoop opened this issue Nov 20, 2023 · 55 comments

Comments

@helloanoop
Copy link
Contributor

Parent Issue: #119

Support OAuth 2.0
@helloanoop helloanoop mentioned this issue Nov 20, 2023
Open
8 tasks
@fuxx
Copy link

fuxx commented Nov 20, 2023

Really important feature <3

@and-rose
Copy link
Contributor

and-rose commented Dec 2, 2023

So far this is the only thing keeping me attached to Postman. Really keen to see this implemented.

@Rens660
Copy link

Rens660 commented Dec 5, 2023

We would love to move to Bruno as well, but since we are requiring grant_type=authorization_code we can't yet. Is there maybe a progress update on this feature? 🙌

@tsteckenborn
Copy link

Dependend on what you need you might want to check this as a workaround for e.g. the Client Credentials flow.

@Rens660 - I've got quite a similar one for Authorization Code. You'll need to do one manual step in the browser, but atleast it returns e.g. the corresponding link as part of an error message. Would you be interested in that?

@Rens660
Copy link

Rens660 commented Dec 11, 2023

Hi @tsteckenborn,
Unfortunately I am stuck with using Authorization Code, but if you would share your workaround for if, I am definitely interested, thanks!

@helloanoop
Copy link
Contributor Author

I will be building OAuth 2.0 functionality in this upcoming live coding stream with Hussain on Dec 16th
https://www.youtube.com/watch?v=ZtNGbglTjps

@tsteckenborn
Copy link

Hi @tsteckenborn, Unfortunately I am stuck with using Authorization Code, but if you would share your workaround for if, I am definitely interested, thanks!

Take a look if that helps to ease the usage

helloanoop pushed a commit that referenced this issue Dec 17, 2023
feat(#1003): oauth 2.0 client credentials
5649f7c
@42shadow42
Copy link

Pretty much the only thing tying me to insomnia. We use the implicit flow on our end.

@mjschlosser8
Copy link

Can't wait for this!

@andifalk
Copy link

andifalk commented Jan 9, 2024

Pretty much the only thing tying me to insomnia. We use the implicit flow on our end.

FYI: Implicit flow is deprecated, should not be used any more (replaced by Authorization code + PKCE)

@42shadow42
Copy link

Pretty much the only thing tying me to insomnia. We use the implicit flow on our end.

FYI: Implicit flow is deprecated, should not be used any more (replaced by Authorization code + PKCE)

Thanks for the heads up, though I don't see Authorization code + PKCE supported here yet either. I'll have to check to see if we have migration plans from Implicit flow.

@billbrinck
Copy link

Is there any progress on the OAuth2 support?

@fuxx
Copy link

fuxx commented Jan 11, 2024

Is there any progress on the OAuth2 support?

@helloanoop can you give any news on your progress or estimation when you continue on OAuth 2 support? The past weeks were very quiet around OAuth 2 😢

@helloanoop
Copy link
Contributor Author

@fuxx

Thanks for your patience.

I was a bit tied up in working on the lang improvements that will be needed to unblock some other features in the pipeline. Given the immense pain point and upvotes on this feature, I will spend some time on this week on this ticket and will share some updates towards the end of this week.

@fuxx
Copy link

fuxx commented Feb 1, 2024

Hej @helloanoop :)

Some weeks passed by and i guess the implementation could be more complicated then expected. Have you gained more insights on how you can proceed?

@helloanoop
Copy link
Contributor Author

Hey @fuxx Appreciate your patience.

A big blocker was the Bru Lang design which I wanted to complete. This was very important to ensure that we have a way forward to introduce more features in the future and seamlessly allow folks to migrate to the new format (expected to be available by end of Feb)

Now there are two things in my pipeline

  1. File Uploads - expected to be launched this week
  2. OAuth 2.0 - expected to launched by next week

I am not touching any other feature (except critical bugs) unless above 2 are launched.

@glitchracer
Copy link

Any news about OAuth 2.0 support?

lohxt1 pushed a commit to lohxt1/bruno that referenced this issue Feb 23, 2024
@lohit-1
feat(usebruno#1003): oauth2 support - resourceOwnerPasswordCredential…
c690363 
…s, authorization code, client credentials
lohxt1 pushed a commit to lohxt1/bruno that referenced this issue Feb 23, 2024
@lohit-1
feat(usebruno#1003): updated bru files
2248611
lohxt1 pushed a commit to lohxt1/bruno that referenced this issue Feb 23, 2024
@lohit-1
feat(usebruno#1003): oauth2 support
87d21ef
lohxt1 pushed a commit to lohxt1/bruno that referenced this issue Feb 23, 2024
@lohit-1
feat(usebruno#1003): bru files cleanup
1802cf7
lohxt1 pushed a commit to lohxt1/bruno that referenced this issue Feb 23, 2024
@lohit-1
feat(usebruno#1003): bru files cleanup
c8b9272
lohxt1 pushed a commit to lohxt1/bruno that referenced this issue Feb 23, 2024
@lohit-1
feat(usebruno#1003): created collection_oauth2 collection
9e1e5f1
helloanoop pushed a commit that referenced this issue Feb 26, 2024
@lohxt1
feat(#1003): oauth2 support - resourceOwnerPasswordCredentials, autho…
9f81e6d 
…rization code, client credentials (#1654)

* feat(#1003): oauth2 support
Co-authored-by: lohit-1 <lohit@usebruno.com>
@helloanoop
Copy link
Contributor Author

We're on the verge of completing OAuth2 integration, just polishing up the last details.
Set to release tomorrow.

image

lohxt1 added a commit to lohxt1/bruno that referenced this issue Feb 27, 2024
@lohxt1
feat(usebruno#1003): oauth2 code cleanup, styling fixes..
0fd255c
lohxt1 added a commit to lohxt1/bruno that referenced this issue Feb 27, 2024
@lohxt1
feat(usebruno#1003): styling fixes for auth input fields, undefined v…
244f8ba 
…alue issue fix
lohxt1 added a commit to lohxt1/bruno that referenced this issue Feb 27, 2024
@lohxt1
feat(usebruno#1003): auth mode dropdown order
dd2b524
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 14, 2024
@pietrygamat
Include resolved oauth2 authorization details in req object to be usa…
6043b9a 
…ble by scripts

The new variable 'credentials' is now available in 'req' object. It is added automatically during request preparation if oauth2 method is used and is value is either evaluated or retrieved from collection oauth2 cache.

usebruno#1999
usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 14, 2024
@pietrygamat
Do not make axios request when executing collection level Get Access …
6511ac6 
…Token action

The actual the authorization request is part of request preparation

usebruno#1999
usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 14, 2024
@pietrygamat
fix: Collection level Get Access Token action executes script block t…
85600d8 
…wice

usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 14, 2024
@pietrygamat
Store OAuth2 authorization information
2be77b1 
usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 14, 2024
@pietrygamat
Include resolved oauth2 authorization details in req object to be usa…
b28027a 
…ble by scripts

The new variable 'credentials' is now available in 'req' object. It is added automatically during request preparation if oauth2 method is used and is value is either evaluated or retrieved from collection oauth2 cache.

usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 14, 2024
@pietrygamat
Do not make axios request when executing collection level Get Access …
d06362f 
…Token action

The actual the authorization request is part of request preparation

usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 14, 2024
@pietrygamat
fix: Collection level Get Access Token action executes script block t…
7c246e9 
…wice

usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 14, 2024
@pietrygamat
Do not make axios request when executing collection level Get Access …
0257ef9 
…Token action

The actual the authorization request is part of request preparation

usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 14, 2024
@pietrygamat
Do not make axios request when executing collection level Get Access …
4e97648 
…Token action

The actual the authorization request is part of request preparation

usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 14, 2024
@pietrygamat
Fix typo: rename OAuth2PasswordCredentials component
526a15e 
usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 14, 2024
@pietrygamat
Fix typo: Use the same name for AuthMode - OAuth 2.0 in collection an…
3e113aa 
…d request level

usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 14, 2024
@pietrygamat
Feat: UI for OAuth2 Credentials independent of the Request Output pane
8462d73 
usebruno#1999
usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 14, 2024
@pietrygamat
Feat: UI for OAuth2 Credentials independent of the Request Output pane
cfe79d1 
usebruno#1999
usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 15, 2024
@pietrygamat
Feat: UI for OAuth2 Credentials independent of the Request Output pan…
31d29eb 
…e - sort tokens first. Blur unfocused tokens for privacy.

usebruno#1999
usebruno#1003
helloanoop pushed a commit that referenced this issue Apr 15, 2024
@pietrygamat
fix: Oauth2: Reuse TLS Certifcate valiadation and custom CA settings …
12263a7 
…from preferences when accessing Auth and Token URLs (#2071)

#1684
#1003
pietrygamat pushed a commit to pietrygamat/bruno that referenced this issue Apr 15, 2024
@pietrygamat
OAuth2: Implement OAuth 2.0 Implicit Grant
3d35373 
usebruno#2056
usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 15, 2024
@pietrygamat
Fix: OAuth2 auth is successful but token endpoint is returned instead…
92a7d87 
… of api endpoint

usebruno#1999
usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 15, 2024
@pietrygamat
Store OAuth2 authorization information
d177bbd 
usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 15, 2024
@pietrygamat
Include resolved oauth2 authorization details in req object to be usa…
326dc8a 
…ble by scripts

The new variable 'credentials' is now available in 'req' object. It is added automatically during request preparation if oauth2 method is used and is value is either evaluated or retrieved from collection oauth2 cache.

usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 15, 2024
@pietrygamat
Do not make axios request when executing collection level Get Access …
897fd24 
…Token action

The actual the authorization request is part of request preparation

usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 15, 2024
@pietrygamat
Fix typo: rename OAuth2PasswordCredentials component
59277b3 
usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 15, 2024
@pietrygamat
Fix typo: Use the same name for AuthMode - OAuth 2.0 in collection an…
1d85b1a 
…d request level

usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 15, 2024
@pietrygamat
Feat: UI for OAuth2 Credentials independent of the Request Output pane
2c933cd 
usebruno#1999
usebruno#1003
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 15, 2024
@pietrygamat
Feat: UI for OAuth2 Credentials independent of the Request Output pan…
ec1c0e7 
…e - sort tokens first. Blur unfocused tokens for privacy.

usebruno#1999
usebruno#1003
@m-schrepel m-schrepel mentioned this issue Apr 17, 2024
Open
5 tasks
pietrygamat added a commit to pietrygamat/bruno that referenced this issue Apr 18, 2024
@pietrygamat
Fix: OAuth 2.0 Grant Type Authorization: "invalid_client" error / URL…
f5acd0f 
… Encode of Client ID

usebruno#2115
usebruno#1003
This was referenced Apr 18, 2024
Open
Open
lizziemac pushed a commit to lizziemac/bruno that referenced this issue May 4, 2024
@lohxt1 @lizziemac
fix(usebruno#1003): content type issue for client credentials & pass…
655d91d 
…word credentials grant types -- missing client id & secret for password grant type (usebruno#2051)

* fix(usebruno#1003): content type for client_credentials & password grant types
* feature(usebruno#1003): added client is & secret for password credentials grant type
lizziemac pushed a commit to lizziemac/bruno that referenced this issue May 4, 2024
@pietrygamat @lizziemac
fix: Oauth2: Reuse TLS Certifcate valiadation and custom CA settings …
781d76c 
…from preferences when accessing Auth and Token URLs (usebruno#2071)

usebruno#1684
usebruno#1003
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests