31febd5606
#20 Quick implementation of the https://api.minecraftservices.com/minecraft/profile endpoint [deploy dev]
2022-01-21 21:09:46 +01:00
f69ebf8221
Add types to the ApiController
2021-06-13 21:28:13 +02:00
202099bf84
Implemented missing endpoint for the authlib injector
2021-06-13 21:21:25 +02:00
e6b6f3f169
Allow users to manually decline auth request even when an application was authenticated before
2021-03-29 04:51:37 +02:00
7a80c44cab
Alternative implementation of passing totp to the legacy Minecraft authorization protocol to not break the yggdrasil's protocol [deploy]
2021-03-08 22:21:10 +01:00
9a3534ea2b
Add totp field for Minecraft auth protocol to login into accounts, protected with 2FA [deploy]
2021-03-08 11:26:47 +01:00
1aed8f59cb
Return user field when requestUser param received on authentication/refresh endpoint [deploy]
2021-03-06 10:37:58 +01:00
077db4f328
Remove authserver module restriction [deploy]
2021-03-05 16:07:55 +01:00
4856695940
Resolves #2 . Implemented authlib-injector support
2021-03-03 15:04:42 +01:00
9c6d9409ea
Fixes #11 . Strip slashes from profile UUID in the authserver's response
2021-02-18 00:41:38 +01:00
356518c5b5
Merge branch 'authorized_clients_management'
2021-02-14 19:01:19 +01:00
c64f386365
Fix incorrect response in case when user's profile for provided UUID can't be found
2020-12-18 11:12:34 +01:00
5fc97fdd7a
Implemented oauth session revocation notification.
...
Reworked webhooks notifications constructors
2020-10-01 01:40:28 +03:00
b904d5d314
Implemented features to revoke access for previously authorized OAuth 2.0 clients
2020-09-30 20:30:04 +03:00
17f1794a4e
Covered all cases, fixed CS, added a new TODO
2020-06-13 01:55:02 +03:00
0183e54442
Implemented account deletion. Not all cases covered with tests [skip ci]
2020-06-12 00:27:02 +03:00
39d7cad8b5
Fix CS
2020-06-10 17:42:02 +03:00
666213afc7
Rework email_activation model, get rid of behaviors, use json column to store additional data
2019-12-21 01:23:58 +03:00
1c76d2386e
Fixes ACCOUNTS-5Z9. Add import statement for Permissions class
2019-12-15 18:33:15 +03:00
299637cc13
Strip keys from the scopes list
2019-12-15 17:20:29 +03:00
e8b71d33d0
Get rid of mockery library. Still have some troubles with functional tests for api
2019-12-14 00:16:05 +03:00
d9ef27b745
Cleanup code, improve typings
2019-12-13 22:27:13 +03:00
830a17612b
Get rid of ThisShouldNotHappenException
2019-12-13 20:48:13 +03:00
26f7d6213f
Update dependencies
2019-12-13 20:37:37 +03:00
40eca5b8b6
Remove expires_in field when the access_token isn't expiring
2019-12-13 16:00:51 +03:00
274d56aa40
Set expires_in value for issue access token response
2019-12-11 19:44:55 +03:00
d27070630c
Fix revokation validation. Add additional tests cases
2019-12-10 22:51:11 +03:00
016a193263
Introduce revokation mechanism
2019-12-10 01:38:09 +03:00
ba7fad84a0
Remove refresh_token from OAuth2 result. Return the same access_token as a refresh_token in case when it's requested. Make access_tokens to live forever.
2019-12-09 19:31:54 +03:00
c3ffb08c4a
Cleanup session server module
2019-12-05 01:15:45 +03:00
25f1ca912c
Fix tests
2019-12-05 00:52:36 +03:00
a81ef5cac2
Replace separate minecraft access tokens with JWT
2019-12-04 21:10:15 +03:00
72cbf16c97
Merge branch 'master' into oauth_jwt_tokens
...
# Conflicts:
# api/components/OAuth2/Entities/AccessTokenEntity.php
# api/components/OAuth2/Entities/RefreshTokenEntity.php
# api/components/OAuth2/Grants/RefreshTokenGrant.php
# api/components/OAuth2/Storage/SessionStorage.php
# api/components/User/OAuth2Identity.php
2019-12-04 01:17:12 +03:00
22ef41ac7c
Fixes ACCOUNTS-5V9. Handle case when access token don't have associated account
2019-12-02 21:15:18 +03:00
da318ef2ed
Merge branch 'master' into oauth_jwt_tokens
2019-11-07 00:00:26 +03:00
c722c46ad5
Add support for the legacy refresh tokens, make the new refresh tokens non-expire [skip ci]
2019-09-22 02:42:08 +03:00
5536c34b9c
Restore full functionality of OAuth2 server [skip ci]
2019-09-22 00:19:11 +03:00
45101d6453
Completely restored authorization_code grant for user side.
...
Reworked oauth_sessions table.
Added extension to use MariaDB's JSON columns.
Rewritten tests for authorization_code grant for client side.
Deprecate some old shit.
[skip ci]
2019-09-18 02:15:12 +03:00
8a1d7148d0
Implemented public scopes repository. Fix some auth cases [skip ci]
2019-09-13 01:19:03 +03:00
4dc2a3025b
Rewrite tests for OAuth2 validate and auth code complete steps [skip ci]
2019-09-06 02:33:16 +03:00
29fc267148
Do not delete minecraft access token after its validation
2019-09-01 23:10:47 +03:00
0b63dc2d84
Upgrade oauth2-server to 8.0.0 version, rewrite repositories and entities, start rewriting tests. Intermediate commit [skip ci]
2019-08-23 11:28:04 +03:00
f2ab7346aa
Fixed almost everything, but all functional tests are broken at the last minute :(
2019-08-02 03:29:20 +03:00
3dbf29d34c
Translate all code comments from Russian to English [skip ci]
2019-07-15 01:59:56 +03:00
31069562b3
Update Yii2 framework to the latest version
2019-06-18 02:37:04 +03:00
b20825a051
Update ely/php-code-style and run updated CS fixer
2019-02-26 02:26:02 +03:00
b05dc6816e
Rework tests structure. Upgrade codeception to 2.5.3. Merge params configuration into app configuration.
2019-02-20 22:58:52 +03:00
918501da81
Implemented the ability to get information about the current account by 0 id
2019-01-24 19:29:46 +03:00
3646bfcb64
Fixes ACCOUNTS-54A. Include deleted applications in the lookup for exists applications.
2018-11-11 13:48:23 +03:00
c0aa78d156
Implemented WebHooks delivery queue.
...
Completely removed usage of the RabbitMQ. Queue now based on Redis channels.
Worker process now extracted as separate docker container.
Base image upgraded to the 1.8.0 version (PHP 7.2.7 and pcntl extension).
2018-07-08 18:20:19 +03:00
