oauth2-server

mirror of https://github.com/elyby/oauth2-server.git synced 2024-11-01 16:33:07 +05:30

Author	SHA1	Message	Date
sephster	894724c45b	Remove invalid commenting	2018-12-10 23:01:45 +00:00
sephster	fd65bf9e54	Streamline tests	2018-12-10 22:51:58 +00:00
Chris Tanaskoski	ec8a663a81	Added test for respondToAccessTokenRequest using Http Basic Auth for client credentials	2018-11-29 09:28:36 +01:00
sephster	685dc6edea	Update test	2018-11-13 18:19:20 +00:00
sephster	36bf4ff8f2	Fix accidental paste of code	2018-09-02 16:19:47 +01:00
sephster	5d3d9d95be	Remove extra line	2018-09-02 15:46:59 +01:00
sephster	de899fbe0a	Fix incorrect usage of isConfidential	2018-09-01 15:05:12 +01:00
sephster	3eabbafe5b	Client says if it is confidential instead of repository	2018-09-01 14:53:27 +01:00
sephster	060a090479	Change tests to use validClient instead of getClientEntity	2018-09-01 14:26:22 +01:00
sephster	74495cac49	Set proper confidential settings in existing tests	2018-08-16 12:59:10 +01:00
Andrew Millington	fb43801458	Change function name to setConfidential()	2018-08-15 21:40:41 +01:00
sephster	8ab27ede39	Add test to ensure public clients are asked to provide a code challenge	2018-08-13 22:54:12 +01:00
sephster	0105a20126	Reverted tests to remove isConfidential check	2018-08-13 22:00:34 +01:00
sephster	491852b521	Move code challenge check to auth code request	2018-08-13 21:47:53 +01:00
sephster	7f2fd7b22c	Add set confidential to clients for tests	2018-08-13 21:21:59 +01:00
Andrew Millington	abef682031	Add setIsConfidential to client stub for tests	2018-08-12 20:34:58 +01:00
Andrew Millington	5ad00b0e33	Remove enableCodeExchangeProof function	2018-07-29 22:34:37 +01:00
Andrew Millington	f49cc65c13	Change to store code challenge and method whenever sent for PKCE	2018-07-29 19:56:30 +01:00
Andrew Millington	574299d862	Fix tests	2018-06-24 13:38:55 +01:00
Andrew Millington	dad3b1e1c9	Remove unused test	2018-06-24 13:32:49 +01:00
Andrew Millington	61156ef8c7	Use __toString() for access token	2018-05-23 16:34:39 +01:00
Andrew Millington	33ce849617	Add tests for invalid client exception	2018-05-13 17:29:07 +01:00
Andrew Millington	c8b44ff5c7	Revert fix for client ID exception	2018-04-20 18:22:07 +01:00
Simon Hamp	6723aadfe8	Fix #837 Unifies how we fetch the client_id from the request and allows us to throw a more appropriate exception when the client_id parameter is missing. Improves the test method for this validation by checking the culpable method in this particular case. The test was missing this by calling the wrong method.	2018-02-26 15:56:28 +00:00
Andrew Millington	b78c012796	Change code challenge and verifier to be constants in test	2018-02-18 13:51:34 +00:00
Erick Torres	ce2662ece7	Merge branch 'master' of github.com:thephpleague/oauth2-server into fix-pkce-implementation # Conflicts: # tests/Grant/AuthCodeGrantTest.php	2018-02-05 15:32:15 -05:00
Sergio Gómez	1b692e2298	Fix S256 code challenge method According to [RFC7636#section-4.3](https://tools.ietf.org/html/rfc7636#section-4.3): If the "code_challenge_method" from Section 4.3 was "S256", the received "code_verifier" is hashed by SHA-256, base64url-encoded, and then compared to the "code_challenge", i.e.: BASE64URL-ENCODE(SHA256(ASCII(code_verifier))) == code_challenge So, the hash must be done before the base64_encode. The tests are modified to use example data from the [RFC7636#appendix-B](https://tools.ietf.org/html/rfc7636#appendix-B).	2018-01-18 05:31:44 +01:00
Erick Torres	01d21b2533	Update statement to generate codeChallenge in AuthCodeGrantTest	2017-12-29 12:32:12 -05:00
Andrew Millington	b6d9835281	Merge branch 'master' into fix-pkce-implementation	2017-12-28 16:37:37 +00:00
Andrew Millington	57ca83a8ba	Removing missing scope tests as temporarily reverted this functionality	2017-12-24 00:18:20 +00:00
Andrew Millington	41bba7f58c	Removing missing scope test Temporarily removing missing scope test as have reverted this functionality for version 6.1.1	2017-12-24 00:07:22 +00:00
Andrew Millington	dcae4af6ce	Remove missing scope test Temporarily removing missing scope test for the AuthGrant	2017-12-24 00:06:18 +00:00
Andrew Millington	1c36b70dab	Fixed ordering so we only hash after base64 encoding	2017-12-23 02:06:18 +00:00
Andrew Millington	f11e4c81cd	Merge pull request #697 from fkooman/fix-s256 Fix PKCE code verifier encoding to match specification	2017-12-23 01:52:33 +00:00
Gabriel Caruso	9ceafe5dd3	Refactoring tests	2017-12-06 18:24:42 -02:00
Sephster	b50c7622db	Add in validation for authorization requests. Fixes thephpleague/oauth2-server#677	2017-11-14 00:12:04 +00:00
Sephster	dc9c1a1023	Remove blank line to keep code consistent	2017-11-13 23:59:55 +00:00
Sephster	7878cf9c13	Merge remote-tracking branch 'upstream/master'	2017-11-13 23:52:36 +00:00
Sephster	1bcee9aaba	Add a test for a missing scope for the password grant	2017-11-13 23:16:30 +00:00
Sephster	1e3a84fc85	Add a test to ensure response requests fail without a scope specified	2017-11-13 23:00:27 +00:00
Sephster	a5c5929dc9	Change default scope to be basic	2017-11-13 22:34:12 +00:00
Sephster	65789e0f39	Fix tests to support default scopes for authorization requests	2017-11-13 22:20:42 +00:00
Gabriel Caruso	04f3d39b45	Use PHPUnit\Framework\TestCase instead of PHPUnit_Framework_TestCase	2017-11-08 16:07:07 -02:00
Andrew Millington	ce8248c10f	Remove erroneous character	2017-11-06 22:56:54 +00:00
Andrew Millington	13be557825	Re-add the complete testCompleteAuthorizationRequestNoUser()	2017-11-06 22:51:11 +00:00
Andrew Millington	0f08063864	Fixed use of default scope so it is only for authorization requests	2017-11-06 22:33:28 +00:00
Andrew Millington	bd2cdaf5da	Change missing scope test to check for invalid_scope exception	2017-10-31 23:01:19 +00:00
Andrew Millington	d0619385b8	Add a basic test to ensure we throw an exception when no scope is given	2017-10-31 21:00:14 +00:00
Andrew Millington	f9143b5163	Fix the refresh token grant test	2017-10-30 23:26:11 +00:00
Brian Retterer	23c7138d48	Apply fixes from StyleCI	2017-10-23 15:26:10 +00:00

1 2 3

112 Commits