Skip to content
This repository was archived by the owner on Jun 23, 2023. It is now read-only.

Certification testing - bug fixes#125

Merged
rohe merged 41 commits intodevelopfrom
certification
Sep 16, 2021
Merged

Certification testing - bug fixes#125
rohe merged 41 commits intodevelopfrom
certification

Conversation

@rohe
Copy link
Collaborator

@rohe rohe commented Sep 7, 2021

Bugs/wrong behaviour found doing certification testing:

  • Client registration endpoint should return a 201 on successful client registration
  • Default token lifetime set to 30 minutes (was none)
  • Userinfo endpoint should support POST
  • Authorization error response MUST contain 'state' if present in request
  • Cookies was not picked properly - looked for wrong name.
  • Cookies was picked twice. Supposed to be only once
  • Honor max_age set in authentication request
  • invalid_grant instead of invalid_request when wrong token was used.
  • Revoke all tokens minted based on an authorization_code on seconds usage of the authorization_code.
  • Verify that the user of a token was actually the owner of the same.
  • prompt=login in authentication request SHOULD force re-authentication.

rohe added 30 commits August 31, 2021 09:58
@rohe
Client registration endpoint should return a 201 HTTP response code o…
bbc7929 
…n successful registration.
@rohe
Default token lifetime should not be 0 (zero). Changed to be 30 minut…
178ca74 
…es (1800 seconds).
@rohe
Userinfo endpoint should support POST.
ce142a8
@rohe
Authorization error response MUST contain 'state' if it is present in…
6f87892 
… the request.
@rohe
Authorization error response MUST contain 'state' if it is present in…
32640c1 
… the request.
@rohe
Cookie handling - bug, wrong name.
a158741
@rohe
Cookie handling - bug, wrong name.
e7303bc
@rohe
Cookie handling - bug, wrong name.
f2b8ea2
@rohe
Cookie handling - bug, wrong name.
0003078
@rohe
Cookie handling - bug, wrong name.
fcfd63b
@rohe
Cookie handling - bug, wrong name.
6659459
@rohe
Cookie handling - bug, wrong name.
71c77b6
@rohe
parse_cookie twice.
5cfa289
@rohe
parse_cookie twice.
f384d20
@rohe
parse_cookie twice.
5146010
@rohe
parse_cookie twice.
c57bd80
@rohe
parse_cookie twice.
031cd28
@rohe
More logging
93e9589
@rohe
More logging
cc6337a
@rohe
Too old authentication
bf595db
@rohe
Too old authentication - logging
c0607d5
@rohe
Too old authentication
bef128e
@rohe
Cookie info
f7cc53a
@rohe
Cookie info
0ea0cea
@rohe
Wrong error code.
ff35728
@rohe
Revoke tokens that has been minted using a code that then is used onc…
93eb7a7 
…e more.
@rohe
Undefined max age
fc59033
@rohe
Correct user.
007fc0e
@rohe
logging
9188cac
@rohe
logging
88da05a
@rohe rohe requested review from nsklikas and peppelinux September 7, 2021 08:44
@rohe
Copy link
Collaborator Author

rohe commented Sep 7, 2021

I'll fix the build errors.
But not until later today. Have to do other stuff for a while.

@peppelinux
Copy link
Member

peppelinux commented Sep 7, 2021

I would like to ask you to rebase all those duplicated commits, but don't worry, I won't 😸

@rohe
Fixed cookie_info().
3abbb14 
Added tests and fixed a test result.
@rohe rohe merged commit 9a2f6cf into develop Sep 16, 2021
@peppelinux peppelinux mentioned this pull request Oct 11, 2021
Merged
@rohe rohe deleted the certification branch February 1, 2022 16:32
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@peppelinux peppelinux Awaiting requested review from peppelinux

1 more reviewer

@nsklikas nsklikas nsklikas approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@rohe @peppelinux @nsklikas