Jason Grimes
e5a48c929b
Make determineAccessToken() public in order to check if an access token was sent before checking its validity.
2013-06-05 23:59:29 -04:00
Alex Bilbie
98be9ab252
Merge branch 'release/2.1.1'
2013-06-02 13:55:01 +01:00
Alex Bilbie
e0f4ccb775
Updated changelog
2013-06-02 13:54:54 +01:00
Alex Bilbie
dca0898c2f
Version bump
2013-06-02 13:54:47 +01:00
Alex Bilbie
7da9e1a9d7
Merge pull request #64 from alexmcroberts/develop
...
Conditional isValid flag to check for Authorization header only. Fixes #57
2013-06-02 05:46:45 -07:00
Alex McRoberts
a4a8f6e661
This fixes #57 . By passing in a conditional flag refering to headersOnly, the library would stil respect RFC6749 Section 7 and RFC6750 Section 2.
2013-05-27 21:27:30 -07:00
Alex Bilbie
a9ecca92fc
Fixed broken test
2013-05-27 19:38:07 +01:00
Alex Bilbie
47c24e3181
Corrected array key call. Fixes #63
2013-05-27 20:33:07 +02:00
Alex Bilbie
92b6ce3335
Added default value for final argument in ClientInterface::getClient(). Fixes #56
2013-05-14 09:00:36 +01:00
Alex Bilbie
ee9549287e
Updated docblocks
2013-05-14 08:59:53 +01:00
Alex Bilbie
4b3e0bf668
Fixed semantic meaning of requireScopeParam()
and requireStateParam()
by changing their default value to true
2013-05-10 23:01:54 -07:00
Alex Bilbie
05d4b68586
Optimised regex and re-added trim() following conversation in #52
2013-05-10 23:00:47 -07:00
Alex Bilbie
ec9c39c108
Merge branch 'release/2.1' into develop
2013-05-10 17:59:37 -07:00
Alex Bilbie
5d0b295a82
Merge branch 'release/2.1'
2013-05-10 17:59:29 -07:00
Alex Bilbie
9ec5442f90
Updated changelog
2013-05-10 17:59:08 -07:00
Alex Bilbie
4112913813
Version bump
2013-05-10 17:58:57 -07:00
Alex Bilbie
5eb4227709
Merge branch 'feature/auth-code-scopes' into develop. Fixes #44
2013-05-10 17:42:05 -07:00
Alex Bilbie
f5251a6080
Updated sessions
2013-05-10 17:39:29 -07:00
Alex Bilbie
86fb02d218
Added cascading relationship between oauth_sessions_authcodes and oauth_sessions
2013-05-10 17:32:39 -07:00
Alex Bilbie
ef4a138237
Fixed associateAuthCodeScope() query
2013-05-10 17:29:28 -07:00
Alex Bilbie
d531a37412
Don't add scope IDs
2013-05-10 17:26:23 -07:00
Alex Bilbie
ca599437f6
Added oauth_session_authcode_scopes
2013-05-10 17:24:46 -07:00
Alex Bilbie
252afddbd3
Updated oauth_session_authcodes table. Added id field, remove scope_ids field
2013-05-10 17:24:31 -07:00
Alex Bilbie
c57c4b1b4f
Fixed key name
2013-05-10 17:19:53 -07:00
Alex Bilbie
ba2dc90f3b
Altered associateScope logic
2013-05-10 17:08:20 -07:00
Alex Bilbie
7373f312da
Updated variable name
2013-05-10 17:08:10 -07:00
Alex Bilbie
a01810d8fa
Updated validateAuthCode in PDO Session
2013-05-10 17:07:29 -07:00
Alex Bilbie
3ea3eb5ebd
Implemented getAuthCodeScopes() in PDO Session
2013-05-10 17:07:06 -07:00
Alex Bilbie
11022e16ef
Updated validateAuthCode() in SessionInterface
2013-05-10 17:06:44 -07:00
Alex Bilbie
8d06a7b685
Updated getAuthCodeScopes() in SessionInterface
2013-05-10 17:06:05 -07:00
Alex Bilbie
c66c8092f9
Revert "Return the session_id for validateAuthCode instead of an array"
...
This reverts commit 51138f8738
.
2013-05-10 16:57:39 -07:00
Alex Bilbie
591139f44d
Added associateAuthCodeScope to PDO
2013-05-10 16:57:18 -07:00
Alex Bilbie
410ad09b5c
Updated PDO associateAuthCode
2013-05-10 16:56:38 -07:00
Alex Bilbie
51138f8738
Return the session_id for validateAuthCode instead of an array
2013-05-10 16:53:52 -07:00
Alex Bilbie
aa8d38108f
Associate scopes to auth codes in separate method. Creating an auth code now returns an ID
2013-05-10 16:53:21 -07:00
Alex Bilbie
9372cc85d0
Added getAuthCodeScopes() method
2013-05-10 16:50:34 -07:00
Alex Bilbie
accb80289f
Added associateAuthCodeScope() method
2013-05-10 16:50:13 -07:00
Alex Bilbie
e591fbb25c
Merge branch 'feature/refresh-token-rotation' into develop
2013-05-10 16:13:22 -07:00
Alex Bilbie
fdb89fb5e4
Updated tests
2013-05-10 16:13:11 -07:00
Alex Bilbie
ce51821043
If rotateRefreshTokens() is true then associate new access tokens
2013-05-10 16:13:06 -07:00
Alex Bilbie
eac33d50b3
Added missing semicolon
2013-05-10 16:12:43 -07:00
Alex Bilbie
2552b73b17
Added rotateRefreshTokens() method
2013-05-10 16:00:40 -07:00
Alex Bilbie
8c4019693b
Updated @ziege's patch to overcome awkward access token definition requirement (i.e. access token can have a space in it) and also optimised code. Fixes #52
2013-05-10 12:57:34 -07:00
ziege
b88ef82563
Fixed two probems in access token check
...
1) The method returned the wrong result in case when the access token itself contained the string "Bearer".
2) When using cURL, the request is sometimes send twice (in my case when the first request returned a 404 error), and the Authorization header of the second request is doubled, so that you get a "Authorization: Bearer XXX, Bearer XXX". This case is checked now. (BTW: Tested with the current PHP version 5.4.15 on Windows.)
2013-05-10 20:00:01 +02:00
Alex Bilbie
3e5b4a1735
Move zetacomponents/database to "suggest" in composer.json. Fixes #51
2013-05-10 10:13:17 -07:00
Alex Bilbie
41a7125370
Accidentally used PHP 5.4 style bracket
2013-05-09 11:48:21 -07:00
Alex Bilbie
c40484abb1
Merge branch 'feature/refresh-token-rewrite' into develop
2013-05-09 11:42:31 -07:00
Alex Bilbie
f4bcfee687
Update associated scopes if requested in refresh access token. Fixes #47
2013-05-09 11:42:28 -07:00
Alex Bilbie
6d8eb9d05e
Added removeRefreshToken method to SessionInterface
2013-05-09 11:40:29 -07:00
Alex Bilbie
76f2f6a5e1
Don't delete old sessions when issuing new access tokens using the Password or Client Credential grants. Fixes #32
2013-05-09 10:43:44 -07:00