Alex Bilbie
|
198f4c4b6f
|
Merge branch 'token_from_repo' of https://github.com/frederikbosch/oauth2-server into frederikbosch-token_from_repo
# Conflicts:
# tests/Grant/AuthCodeGrantTest.php
# tests/Grant/ImplicitGrantTest.php
# tests/Grant/RefreshTokenGrantTest.php
|
2016-04-09 14:12:06 +01:00 |
|
Alex Bilbie
|
6f0a0cca4e
|
Merge pull request #498 from frederikbosch/client_user_id_replaced
Client identifier passed where user identifier is expected
|
2016-04-09 13:55:16 +01:00 |
|
Alex Bilbie
|
1ccfd9be32
|
Applied fixes from StyleCI
|
2016-04-09 08:53:29 -04:00 |
|
Alex Bilbie
|
a83c56f570
|
Comment improvement
|
2016-04-09 13:53:14 +01:00 |
|
Alex Bilbie
|
d7dd07cf18
|
Merge branch 'v5-fix' of https://github.com/assembledadam/oauth2-server into assembledadam-v5-fix
|
2016-04-09 13:51:57 +01:00 |
|
Alex Bilbie
|
0fed56a265
|
Merge branch 'V5-WIP' of https://github.com/frederikbosch/oauth2-server into frederikbosch-V5-WIP
# Conflicts:
# src/Entities/Interfaces/ClientEntityInterface.php
|
2016-04-09 13:48:53 +01:00 |
|
Alex Bilbie
|
39281a6f38
|
Merge branch 'repository_on_response' of https://github.com/juliangut/oauth2-server into juliangut-repository_on_response
# Conflicts:
# tests/ResponseTypes/BearerResponseTypeTest.php
|
2016-04-09 13:43:33 +01:00 |
|
Alex Bilbie
|
656a8d7a56
|
Merge pull request #502 from juliangut/passphrase
V5 - Handle RSA key passphrase
|
2016-04-09 13:40:28 +01:00 |
|
Alex Bilbie
|
6c942f25f4
|
Merge pull request #503 from juliangut/mac_token_interface
V5 - Remove unused mac token interface
|
2016-04-09 13:37:54 +01:00 |
|
Alex Bilbie
|
8274c56fc2
|
Allow multiple client redirect URIs. Fixes #511
|
2016-04-09 13:36:08 +01:00 |
|
Frederik Bosch
|
de8f6ff539
|
add getNewAccessToken getNewRefreshToken and getNewAuthCode to repositories
|
2016-04-04 10:37:06 +02:00 |
|
Adam McCann
|
8f69f4f9a9
|
Access denied on token expiry (or value before nbf/not before) - issue #506
|
2016-03-31 18:50:36 +01:00 |
|
Julián Gutiérrez
|
4d2ccac8ed
|
remove unused mac token interface
|
2016-03-29 09:31:34 +02:00 |
|
Julián Gutiérrez
|
197657f2b9
|
handle RSA key passphrase
|
2016-03-28 16:42:34 +02:00 |
|
Julián Gutiérrez
|
e513b42117
|
remove access token repository from response types
|
2016-03-28 12:10:51 +02:00 |
|
Frederik Bosch
|
b1ce1f872b
|
client identifier passed where user identifier is expected
|
2016-03-25 17:11:13 +01:00 |
|
Alex Bilbie
|
1c47ec51f8
|
Merge pull request #494 from frederikbosch/double_persis
prevent double persist of token when doing refresh grant
|
2016-03-24 17:34:47 +00:00 |
|
Frederik Bosch
|
fbf4388b01
|
prevent double persist of token when doing refresh grant
|
2016-03-24 17:24:17 +01:00 |
|
Alex Bilbie
|
b1cf6a8436
|
Fix for bad hint
|
2016-03-24 14:51:44 +00:00 |
|
Frederik Bosch
|
d8e1e0e00e
|
remove unnecessary methods from interfaces
|
2016-03-24 15:01:55 +01:00 |
|
Alex Bilbie
|
fe0ed765a5
|
Added setTemplateRenderer method
|
2016-03-24 13:56:31 +00:00 |
|
Alex Bilbie
|
630a92b45f
|
Applied fixes from StyleCI
|
2016-03-24 06:07:20 -04:00 |
|
Alex Bilbie
|
115237bc1a
|
Added missing return statement
|
2016-03-24 10:04:48 +00:00 |
|
Alex Bilbie
|
6383a58755
|
Updated scope validation
|
2016-03-24 10:04:15 +00:00 |
|
Alex Bilbie
|
267bd3c5d4
|
Applied fixes from StyleCI
|
2016-03-23 14:50:27 -04:00 |
|
Alex Bilbie
|
a18b8c57b2
|
Fix broken tests
|
2016-03-23 18:50:14 +00:00 |
|
Alex Bilbie
|
55ff59edf4
|
Merge branch 'V5-WIP' of github.com:thephpleague/oauth2-server into V5-WIP
|
2016-03-23 18:36:49 +00:00 |
|
Alex Bilbie
|
a49c762683
|
Remove injected array of scopes
|
2016-03-23 18:36:43 +00:00 |
|
Alex Bilbie
|
b5b5d9f347
|
Added finalizeScopes method to ScopeRepositoryInterface
|
2016-03-23 18:36:23 +00:00 |
|
Alex Bilbie
|
864a27f2c8
|
Applied fixes from StyleCI
|
2016-03-23 08:54:30 -04:00 |
|
Alex Bilbie
|
a698a4da7e
|
Added RequestEvent
|
2016-03-23 12:54:17 +00:00 |
|
Alex Bilbie
|
95cdaae17f
|
Removed unused method
|
2016-03-22 17:07:30 +00:00 |
|
Alex Bilbie
|
61986db5ee
|
Merge branch 'V5-WIP' of github.com:thephpleague/oauth2-server into V5-WIP
|
2016-03-22 16:29:08 +00:00 |
|
Alex Bilbie
|
878afeb9f9
|
ClientRepository implementations are now responsible for dealing with client secret
|
2016-03-22 16:29:04 +00:00 |
|
Alex Bilbie
|
945731cb39
|
Applied fixes from StyleCI
|
2016-03-22 11:11:39 -04:00 |
|
Alex Bilbie
|
09770dc537
|
Inject client into getUserEntityByUserCredentials method
|
2016-03-22 15:11:20 +00:00 |
|
Alex Bilbie
|
ca54a387c8
|
Merge branch 'V5-WIP' of github.com:thephpleague/oauth2-server into V5-WIP
|
2016-03-22 14:45:14 +00:00 |
|
Alex Bilbie
|
e27b13ee7d
|
Accept scopes as reference
|
2016-03-22 14:44:21 +00:00 |
|
Alex Bilbie
|
8685006743
|
Applied fixes from StyleCI
|
2016-03-22 10:18:21 -04:00 |
|
Alex Bilbie
|
400eae153b
|
Added grant and scopes to UserRepository getUserEntityByUserCredentials method
|
2016-03-22 14:18:02 +00:00 |
|
Julián Gutiérrez
|
4b775fe241
|
include CryptTrait tests, allow Server::respondToRequest trhow exceptions and fix ResposeType tests
|
2016-03-18 00:25:32 +01:00 |
|
Julián Gutiérrez
|
8196f5c832
|
code against interface
|
2016-03-17 21:33:04 +01:00 |
|
Julián Gutiérrez
|
890fdeba16
|
CryptTrait tests
|
2016-03-17 21:18:28 +01:00 |
|
Alex Bilbie
|
51a1a75d37
|
Applied fixes from StyleCI
|
2016-03-17 10:37:48 -04:00 |
|
Alex Bilbie
|
251190d828
|
Fix #468 and #473
|
2016-03-17 14:37:21 +00:00 |
|
Alex Bilbie
|
3af75729b8
|
Applied fixes from StyleCI
|
2016-03-17 07:22:59 -04:00 |
|
Alex Bilbie
|
7b8d9c9af3
|
Added missing RendererInterface
|
2016-03-17 11:22:04 +00:00 |
|
Alex Bilbie
|
15b6506644
|
No need to use Zend\Diactoros\Stream
|
2016-03-17 11:21:53 +00:00 |
|
Alex Bilbie
|
bd12c8b1a9
|
Fix exception usage
|
2016-03-17 11:18:59 +00:00 |
|
Alex Bilbie
|
c3c49c83f9
|
Merge pull request #472 from juliangut/templating
V5 - Template renderer holds template related information
|
2016-03-17 10:49:14 +01:00 |
|
Alex Bilbie
|
2f459b6470
|
Merge pull request #470 from juliangut/clarify
V5 - Clarify names and return types
|
2016-03-16 17:35:39 +01:00 |
|
Julián Gutiérrez
|
ee91072455
|
template renderer holds template related information
|
2016-03-16 12:32:21 +01:00 |
|
Alex Bilbie
|
d635b3484b
|
Fix broken code
|
2016-03-15 21:30:18 +00:00 |
|
Alex Bilbie
|
3365f3d733
|
Moved client secret validation to abstract grant. Fixes #460
|
2016-03-15 21:30:13 +00:00 |
|
Alex Bilbie
|
c7a5a57304
|
Added getSecret method to ClientEntityInterface
|
2016-03-15 21:29:35 +00:00 |
|
Julián Gutiérrez
|
ae0edc40aa
|
clarify names and return types
|
2016-03-15 22:25:28 +01:00 |
|
Alex Bilbie
|
7159352108
|
Applied fixes from StyleCI
|
2016-03-15 17:21:21 -04:00 |
|
Alex Bilbie
|
a70bc2360a
|
Merge branch 'V5-WIP' of github.com:thephpleague/oauth2-server into V5-WIP
|
2016-03-15 21:21:08 +00:00 |
|
Alex Bilbie
|
472ec68bbe
|
Removed validateAccessToken from abstract response type
|
2016-03-15 21:20:59 +00:00 |
|
Alex Bilbie
|
e946c1e106
|
Remove old MAC output type
|
2016-03-15 21:20:46 +00:00 |
|
Julián Gutiérrez
|
66e473b1f0
|
clean use statment
|
2016-03-15 20:57:32 +01:00 |
|
Julián Gutiérrez
|
91c8daeb99
|
normalize repositories visibility
|
2016-03-15 20:54:59 +01:00 |
|
Julián Gutiérrez
|
9e04da01de
|
unused use statements
|
2016-03-15 01:18:54 +01:00 |
|
Julián Gutiérrez
|
592f60de70
|
allways extract scopes from repository
|
2016-03-15 01:10:47 +01:00 |
|
Alex Bilbie
|
5ae9827d67
|
Merge pull request #461 from juliangut/extract_scopes
V5 - scopes extraction from querystring on auth_code and implicit grants
|
2016-03-14 12:36:17 +01:00 |
|
Julián Gutiérrez
|
9b665f494f
|
convert JWT to string for http_build_query
|
2016-03-14 01:00:06 +01:00 |
|
Julián Gutiérrez
|
ced63e2051
|
allow scopes extraction on GET requests for auth_code and implicit grants
|
2016-03-14 00:12:14 +01:00 |
|
Julián Gutiérrez
|
a0402f1994
|
throw exception instead of return Response
|
2016-03-11 00:01:19 +01:00 |
|
Alex Bilbie
|
4ab9c52767
|
Merge pull request #448 from juliangut/validate_authenticated_request
V5 - rename validateRequest
|
2016-03-10 17:47:28 +00:00 |
|
Alex Bilbie
|
2b2d4a3df7
|
Merge pull request #444 from juliangut/secure_body_params_access
V5 - Secure access to body params
|
2016-03-10 17:47:20 +00:00 |
|
Alex Bilbie
|
4c55b6879d
|
Merge pull request #457 from juliangut/renderer
V5 - Allow different template engines
|
2016-03-10 17:43:20 +00:00 |
|
Alex Bilbie
|
edf0ee8622
|
Removed unused code
|
2016-03-10 17:34:25 +00:00 |
|
Alex Bilbie
|
3b4a8cf5f3
|
Added code coverage ignore comments
|
2016-03-10 17:22:10 +00:00 |
|
Alex Bilbie
|
5074ad9a6c
|
Fixed request attribute
|
2016-03-10 15:50:04 +00:00 |
|
Alex Bilbie
|
01517bb57a
|
Added missing namespace
|
2016-03-10 15:09:56 +00:00 |
|
Julián Gutiérrez
|
320d9e65d5
|
StyleCI always watching upon us
|
2016-03-09 12:44:47 +01:00 |
|
Julián Gutiérrez
|
1218cede79
|
allow different template engines
|
2016-03-09 12:32:01 +01:00 |
|
Julián Gutiérrez
|
1bdeb71efb
|
make StyleCI happy
|
2016-03-08 21:59:10 +01:00 |
|
Julián Gutiérrez
|
1632b80631
|
Merge branch 'V5-WIP' into secure_body_params_access
|
2016-03-08 21:57:43 +01:00 |
|
Alex Bilbie
|
997d390f3d
|
Applied fixes from StyleCI
|
2016-02-22 03:00:50 -05:00 |
|
Alex Bilbie
|
e2794c47af
|
First commit of the implicit grant
|
2016-02-22 07:59:17 +00:00 |
|
Alex Bilbie
|
0d0aaa8764
|
Use the new access token covertToJWT method
|
2016-02-22 07:58:59 +00:00 |
|
Alex Bilbie
|
ad270f7d9d
|
Redirect either with query string parameters or fragment parameters
|
2016-02-22 07:58:44 +00:00 |
|
Alex Bilbie
|
a1bdaae9a9
|
Access token can now return a JWT from itself
|
2016-02-22 07:58:25 +00:00 |
|
Alex Bilbie
|
e08669d50c
|
Doc improvements
|
2016-02-22 07:58:12 +00:00 |
|
Alex Bilbie
|
d02437dd73
|
Improved testing
|
2016-02-21 18:13:39 +00:00 |
|
Alex Bilbie
|
eedcfe115c
|
Bug fixes
|
2016-02-21 17:09:12 +00:00 |
|
Alex Bilbie
|
2488cbd55d
|
Bug fixes
|
2016-02-21 17:08:49 +00:00 |
|
Alex Bilbie
|
7f539f8736
|
Removed unused exception parameters
|
2016-02-21 16:40:01 +00:00 |
|
Alex Bilbie
|
d0878300d0
|
Bug fix for AuthCodeGrant
|
2016-02-21 14:32:16 +00:00 |
|
Alex Bilbie
|
97c138bb0b
|
Removed unused SecureKey class
|
2016-02-20 10:05:15 +00:00 |
|
Alex Bilbie
|
a2460886f6
|
Applied fixes from StyleCI
|
2016-02-19 18:09:39 -05:00 |
|
Julián Gutiérrez
|
a644eacea7
|
Merge branch 'V5-WIP' into move_identifier_generation
|
2016-02-18 18:14:59 +01:00 |
|
Alex Bilbie
|
e8a01c3bcd
|
Fix for logic
|
2016-02-18 12:07:36 +00:00 |
|
Alex Bilbie
|
064eb85f4e
|
AbstractGrant now handles persisting tokens
|
2016-02-18 12:07:23 +00:00 |
|
Alex Bilbie
|
704e114568
|
Updated AuthCodeGrant
|
2016-02-18 10:49:39 +00:00 |
|
Alex Bilbie
|
3b36ae9000
|
Rewrote validateClient method to progressively test client secret and redirect URI
|
2016-02-18 10:49:05 +00:00 |
|
Alex Bilbie
|
7f67000d53
|
Provided implementation of new client entity methods
|
2016-02-18 10:48:23 +00:00 |
|
Alex Bilbie
|
de000b72a4
|
Updated ClientEntityInterface with additional methods
|
2016-02-18 10:48:12 +00:00 |
|
Alex Bilbie
|
0d8cb0d06f
|
Fixes for RefreshTokenGrant
|
2016-02-18 10:47:30 +00:00 |
|
Alex Bilbie
|
fc53d636f5
|
Updated getClientEntity now just requires the client ID and the grant type
|
2016-02-18 10:47:06 +00:00 |
|
Julián Gutiérrez
|
dbcaaa1f35
|
rename determineAccessTokenInHeader
|
2016-02-13 14:38:23 +01:00 |
|
Julián Gutiérrez
|
5d6634aa9f
|
Merge branch 'V5-WIP' into move_identifier_generation
|
2016-02-13 14:11:38 +01:00 |
|
Julián Gutiérrez
|
099c9ce41b
|
move token identifier generation
|
2016-02-13 14:07:09 +01:00 |
|
Alex Bilbie
|
335630f150
|
Added code coverage ignore docblocks
|
2016-02-12 18:08:27 +00:00 |
|
Alex Bilbie
|
e20c529f39
|
Added isExpired method to refresh token
|
2016-02-12 17:53:42 +00:00 |
|
Alex Bilbie
|
7f2fd69d0a
|
Removed respondsWith from interface
|
2016-02-12 17:52:37 +00:00 |
|
Alex Bilbie
|
29068dd84c
|
Removed responseWith method
|
2016-02-12 17:51:59 +00:00 |
|
Alex Bilbie
|
9a8b7ec898
|
Removed old codecept tests
|
2016-02-12 17:46:30 +00:00 |
|
Julián Gutiérrez
|
1f6bb40952
|
correcting param access mistake
|
2016-02-12 18:45:47 +01:00 |
|
Julián Gutiérrez
|
2f914a0aa3
|
secure params access on authcode grant
|
2016-02-12 18:32:09 +01:00 |
|
Julián Gutiérrez
|
95e3c1d1a2
|
Merge branch 'V5-WIP' into secure_body_params_access
|
2016-02-12 17:10:52 +01:00 |
|
Alex Bilbie
|
655f6b9771
|
Merge pull request #445 from juliangut/abstract_token_validation
V5 - Abstract access token validation
|
2016-02-12 14:31:18 +00:00 |
|
Alex Bilbie
|
d95958bae4
|
Small fixes
|
2016-02-12 14:28:24 +00:00 |
|
Alex Bilbie
|
85b9412813
|
Multiple fixes
|
2016-02-12 14:18:52 +00:00 |
|
Alex Bilbie
|
1a5030200a
|
The response may be a PSR response which is valid
|
2016-02-12 14:18:45 +00:00 |
|
Alex Bilbie
|
796106b6c1
|
Fix for non-imported namespace
|
2016-02-12 14:18:34 +00:00 |
|
Alex Bilbie
|
4234b69f3a
|
Fix for method calls
|
2016-02-12 14:18:10 +00:00 |
|
Alex Bilbie
|
0115c41eea
|
Numerous bug fixes
|
2016-02-12 13:32:58 +00:00 |
|
Julián Gutiérrez
|
f314154216
|
abstract access token validation
|
2016-02-12 14:19:47 +01:00 |
|
Alex Bilbie
|
5e326d9e45
|
First commit of respondToAccessTokenRequest
|
2016-02-12 13:01:25 +00:00 |
|
Julián Gutiérrez
|
d2760e4ec7
|
secure access to body params
|
2016-02-12 13:56:14 +01:00 |
|
Alex Bilbie
|
2025749fa4
|
Updated respondToAuthorizationRequest to use Plates templates instead of custom ResponseType
|
2016-02-12 11:55:41 +00:00 |
|
Alex Bilbie
|
1c913fe75e
|
Added default basic HTML login + authorise templates
|
2016-02-12 11:32:09 +00:00 |
|
Alex Bilbie
|
ac9955b393
|
Removed response type interfaces for auth code login + authorize because they were a stupid idea
|
2016-02-12 11:30:59 +00:00 |
|
Alex Bilbie
|
fccb06ed67
|
First commit of updated AuthCodeGrant with respondToAuthorizationRequest method completed
|
2016-02-12 10:01:15 +00:00 |
|
Alex Bilbie
|
f29703ea24
|
Updated Docblock
|
2016-02-12 10:00:41 +00:00 |
|
Alex Bilbie
|
dcc3f5d856
|
First commit of new ResponseTypes
|
2016-02-12 10:00:32 +00:00 |
|
Alex Bilbie
|
264eba9f20
|
Updated AuthCodeRepositoryInterface
|
2016-02-12 10:00:22 +00:00 |
|
Alex Bilbie
|
c2c199cf98
|
Added issueAuthCode method
|
2016-02-12 10:00:10 +00:00 |
|
Alex Bilbie
|
0b6bcad9fb
|
Added getCookieParameter method
|
2016-02-12 09:59:59 +00:00 |
|
Alex Bilbie
|
38a7e53cb5
|
Added optional redirectUri parameter to accessDenied method
|
2016-02-12 09:59:47 +00:00 |
|
Alex Bilbie
|
f4b83baf74
|
Fix getClientEntity method call
|
2016-02-12 09:09:39 +00:00 |
|
Alex Bilbie
|
5a08a0cbe2
|
Merge branch 'V5-WIP' into V5-AuthCode
# Conflicts:
# src/Grant/AbstractGrant.php
|
2016-02-12 09:06:28 +00:00 |
|
Alex Bilbie
|
7a628409db
|
Validate client can now optionally validate secret + redirectUri, and actually validate the redirectUri
|
2016-02-12 09:03:35 +00:00 |
|
Alex Bilbie
|
c6d806d3f7
|
Docblock updates
|
2016-02-12 09:02:33 +00:00 |
|
Alex Bilbie
|
bfcf7af4d8
|
Added getQueryStringParameter method
|
2016-02-12 09:02:17 +00:00 |
|
Alex Bilbie
|
d96f57d27f
|
Got rid of mystery $identifier class property, moved it to the getIdentifier method
|
2016-02-12 08:33:59 +00:00 |
|
Julián Gutiérrez
|
8b185e0580
|
Merge branch 'V5-WIP' into minor_merge
|
2016-02-12 00:12:56 +01:00 |
|
Alex Bilbie
|
ca776e83a2
|
Fix for header writing
|
2016-02-11 17:58:35 +00:00 |
|
Alex Bilbie
|
ddf3f1b890
|
Merge branch 'V5-WIP' into V5-AuthCode
|
2016-02-11 17:50:08 +00:00 |
|
Alex Bilbie
|
a40ac5d77b
|
Minor fixes
|
2016-02-11 17:49:41 +00:00 |
|
Alex Bilbie
|
4bc89f3fc2
|
Removed unused import
|
2016-02-11 17:49:31 +00:00 |
|
Alex Bilbie
|
11d25eb5a1
|
Removed old exceptions
|
2016-02-11 17:49:24 +00:00 |
|
Alex Bilbie
|
770bda8f10
|
Merge pull request #431 from juliangut/redirectUri
V5 - use Psr\Http\Message\UriInterface
|
2016-02-11 17:35:33 +00:00 |
|
Alex Bilbie
|
7a8c92b3d9
|
Merge pull request #435 from juliangut/exception_middleware
V5 - Exception based access token check
|
2016-02-11 17:34:31 +00:00 |
|
Alex Bilbie
|
92a101f263
|
First commit of AuthCode rewrite
|
2016-02-11 17:30:01 +00:00 |
|
Julián Gutiérrez
|
b85f81c429
|
configurable refresh token TTL per grant
|
2016-01-21 18:11:53 +01:00 |
|
Julián Gutiérrez
|
8fb64041df
|
client secret can be null
|
2016-01-20 12:50:23 +01:00 |
|
Julián Gutiérrez
|
44155a8efc
|
allow refresh token ttl assign
|
2016-01-20 12:21:44 +01:00 |
|