From e74e5061d873c673c10a2ba7c4d9519d881945a9 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 22 Feb 2013 13:31:05 +0000 Subject: [PATCH 1/3] Added tutorial links --- README.md | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index 663a6608..24c58653 100644 --- a/README.md +++ b/README.md @@ -29,10 +29,14 @@ The authorization server is a flexible class and following core specification gr * client credentials ([section 2.3.1](http://tools.ietf.org/html/rfc6749#section-2.3.1)) * password (user credentials) ([section 4.3](http://tools.ietf.org/html/rfc6749#section-4.3)) +A tutorial on how to use the authorization server can be found at [http://alexbilbie.com/2013/02/developing-an-oauth2-authorization-server/](http://alexbilbie.com/2013/02/developing-an-oauth2-authorization-server/). + ### Resource Server The resource server allows you to secure your API endpoints by checking for a valid OAuth access token in the request and ensuring the token has the correct permission to access resources. +A tutorial on how to use the resource server can be found at [http://alexbilbie.com/2013/02/securing-your-api-with-oauth-2/](http://alexbilbie.com/2013/02/securing-your-api-with-oauth-2/). + ## Future Goals ### Authorization Server @@ -49,4 +53,4 @@ This code was principally developed by [Alex Bilbie](http://alexbilbie.com/) ([T Valuable contribtions have been made by the following: * [Dan Horrigan](http://dandoescode.com) ([Twitter](https://twitter.com/dandoescode)|[Github](https://github.com/dandoescode)) -* [Nick Jackson](http://nickjackson.me) ([Twitter](https://twitter.com/jacksonj04)|[Github](https://github.com/jacksonj04)) \ No newline at end of file +* [Nick Jackson](http://nickjackson.me) ([Twitter](https://twitter.com/jacksonj04)|[Github](https://github.com/jacksonj04)) From ffac434bcca827f7fd03f7104999100e1dd76890 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 22 Feb 2013 15:38:47 +0000 Subject: [PATCH 2/3] Added missing state parameter --- src/OAuth2/AuthServer.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/OAuth2/AuthServer.php b/src/OAuth2/AuthServer.php index 927ecea9..1cdb182b 100644 --- a/src/OAuth2/AuthServer.php +++ b/src/OAuth2/AuthServer.php @@ -249,7 +249,7 @@ class AuthServer public function checkAuthoriseParams($inputParams = array()) { // Auth params - $authParams = self::getParam(array('client_id', 'redirect_uri', 'response_type', 'scope'), 'get', $inputParams); + $authParams = self::getParam(array('client_id', 'redirect_uri', 'response_type', 'scope', 'state'), 'get', $inputParams); if (is_null($authParams['client_id'])) { throw new Exception\ClientException(sprintf(self::$exceptionMessages['invalid_request'], 'client_id'), 0); From eceb84b97875b3b952727ff43ab223400913def2 Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Fri, 22 Feb 2013 15:42:32 +0000 Subject: [PATCH 3/3] Version bump --- CHANGELOG.md | 5 +++++ composer.json | 4 ++-- 2 files changed, 7 insertions(+), 2 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 1c3669d3..8792e1e5 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,5 +1,10 @@ # Changelog +## 1.0.6 (released 2013-02-) + +* Added links to tutorials in the README +* Added missing `state` parameter request to the `checkAuthoriseParams()` method. + ## 1.0.5 (released 2013-02-21) * Fixed the SQL example for SessionInterface::getScopes() diff --git a/composer.json b/composer.json index 31e049a9..fe7ff0e3 100644 --- a/composer.json +++ b/composer.json @@ -1,7 +1,7 @@ { "name": "lncd/oauth2", - "description": "OAuth 2.0 Framework", - "version": "1.0.5", + "description": "A lightweight and powerful OAuth 2.0 authoriation and resource server library with support for all the core specification grants", + "version": "1.0.6", "homepage": "https://github.com/lncd/OAuth2", "license": "MIT", "require": {