Version 2.0 #63
Merged
Version 2.0 #63
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Fix bug related to the control of claims in tokens
…s is not used - removed.
Removed the parameter 'lev' in serialization/deserialization functions/methods
Properly handle expired tokens on introspection endpoint
fix: default extended configuration, removed warning
Make token.JWTToken use RFC9068 as model for payload.
Various client authentication related fixes
Introduce various token exchange enhancements
Fix SessionManager constructor call
Signed-off-by: Kostis Triantafyllakis <ctriant@admin.grnet.gr>
This is about going from what the software can do and what the admin wants it to do to what is actually used.
Deal with policy expressed in two claims: metadata and metadata_policy.
…ed names must be used.
Signed-off-by: Kostis Triantafyllakis <kostastriantaf@gmail.com>
…ning flows: client credentials and resource owner password credentials.
…ning flows: client credentials and resource owner password credentials.
Moved display_values_supported to client.oauth2/oidc.claims to copy what ctriant did.
Added support for the flows Resource Owner Password Credentials and Client Credentials
Signed-off-by: Kostis Triantafyllakis <kostastriantaf@gmail.com>
Enforce aud restrictions
Fix registration after fedservice refactor
Fix scopes_handler after fedservice refactor
Signed-off-by: Kostis Triantafyllakis <kostastriantaf@gmail.com>
Signed-off-by: Kostis Triantafyllakis <kostastriantaf@gmail.com>
Fix refresh grant on access token helper after fedservice
Signed-off-by: Kostis Triantafyllakis <kostastriantaf@gmail.com>
Support code_challenge_methods_supported
Replace the name callable with function.
Signed-off-by: Kostis Triantafyllakis <kostastriantaf@gmail.com>
Signed-off-by: Kostis Triantafyllakis <kostastriantaf@gmail.com>
Introduce userinfo policy
Ignore PKCE for client credentials grant
ctriant
approved these changes
May 4, 2023
peppelinux
approved these changes
May 4, 2023
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Some major rewrites to make the code more consistent.