Wojciech Bartosiak
5a4292677b
Merge pull request #147 from uhavin/feature-granttype-password
...
Feature granttype password
2017-03-28 10:02:06 +01:00
Wojciech Bartosiak
9e70b9597e
Merge pull request #134 from ByteInternet/switch_debug_to_error_when_server_encounters_error
...
Log create_uri_response exceptions to logger.exception
2017-03-27 17:37:39 +01:00
Juan Ignacio Fiorentino
b1bf9072d0
Merge pull request #150 from wojtek-fliposports/uri_fragment_fix
...
Uri fragment fix.
2017-01-25 10:30:46 -03:00
Wojciech Bartosiak
78845a7b9d
fix URI fragment
...
example not working URL `http://localhost:8100/#/auth/callback/ `
2017-01-25 11:02:54 +01:00
Niels van Huijstee
7b9f08c46c
Add id_token to response
2016-12-21 15:58:37 +01:00
Niels van Huijstee
39111a8388
Better tests for errors, disable grant type password by default
2016-12-13 13:40:14 +01:00
Niels van Huijstee
0633b664a0
Password Grant -Response according to specification
2016-12-07 11:51:24 +01:00
Niels van Huijstee
a58e54d55f
Support grant type password - basics
2016-12-05 10:19:58 +01:00
Bono
80441aaf32
Log create_uri_response exceptions to logger.exception
2016-11-18 18:08:37 +01:00
Ignacio Fiorentino
53166fb9ea
Fix TypeError Unicode when using hashlib.
2016-11-04 15:56:51 -03:00
Ignacio Fiorentino
ecba16ed36
Fix bug with id_token without openid scope.
2016-10-31 16:37:51 -03:00
Ignacio Fiorentino
50e5287b48
Initial Session Management version.
2016-10-28 15:25:52 -03:00
Ignacio Fiorentino
38e37e7c47
Merge branch 'v0.4.x' of https://github.com/wojtek-fliposports/django-oidc-provider into wojtek-fliposports-v0.4.x
2016-10-11 11:52:31 -03:00
Ignacio Fiorentino
74b5390daa
Merge branch 'redirect_uri_query' of https://github.com/jerrykan/django-oidc-provider into jerrykan-redirect_uri_query
2016-10-05 12:33:05 -03:00
Wojciech Bartosiak
59312bf811
redirect URI clean up moved to utils module
2016-10-04 19:32:54 +02:00
Ignacio Fiorentino
c14d2f055a
Remove Params() object from endpoints classes.
2016-09-09 14:49:41 -03:00
Ignacio Fiorentino
8a63c83514
Refactoring create_id_token function.
2016-09-09 13:10:12 -03:00
Ignacio Fiorentino
5836774f6b
Add user email into id_token. Fix missing OIDC_TOKEN_EXPIRE setting.
2016-09-09 11:43:28 -03:00
Ignacio Fiorentino
f8dbfa5c04
Add Hybrid flow login in view and models.
2016-09-08 16:21:48 -03:00
Graham Ullrich
ba4faee6ef
Fix global imports
...
Global imports ("from X import *") are discouraged in Python.
2016-08-11 16:05:13 -06:00
Graham Ullrich
ffddb69f80
Add tests for at_hash
...
Ensure at_hash is present in id_token when warranted.
2016-08-08 11:24:07 -06:00
Brian Rosner
afc3a60ee7
Added at_hash when access token is present
...
This is required by response type "id_token token", but can be
used by other flows if they choose.
2016-08-05 14:00:00 -06:00
Ignacio Fiorentino
dc9ec1863e
Change setting OIDC_USERINFO.
2016-07-07 12:50:27 -03:00
Ignacio Fiorentino
4cc7474c19
Add verbose name and description for scopes.
2016-06-16 17:18:39 -03:00
Ignacio Fiorentino
5255719700
Add date_given to UserConsent model. Add verbose names in models.
2016-06-13 12:15:10 -03:00
Si Feng
be5656bcf4
Make SITE_URL
optional.
2016-05-25 14:58:58 -07:00
Ignacio Fiorentino
497f2f3a68
Bump version v0.3.3.
2016-05-03 12:17:22 -03:00
Ignacio Fiorentino
9f9df355a3
Merge branch 'v0.3.x' of https://github.com/juanifioren/django-oidc-provider into feature-jwtalg
2016-04-25 14:55:30 -03:00
Ignacio Fiorentino
61f0c209af
Refactoring prompt=none logic.
2016-04-13 17:19:37 -03:00
John Kristensen
2f54e53766
Ensure client redirect URIs with query strings work
...
In some cases a client will provide a redirect URI with a query string.
In these cases the client redirect URI should still still match a
registered redirect URI and not result in a failure.
2016-04-13 22:29:21 +10:00
Ignacio Fiorentino
b05894bf6d
Add prompt parameter to authorize view.
2016-04-12 18:19:16 -03:00
Ignacio Fiorentino
e97c32acd1
Fix encoding problem when using Py34.
2016-04-08 13:22:05 -03:00
Ignacio Fiorentino
e495d6c41d
Remplace AES encryption with database. For saving PKCE parameters.
2016-04-07 16:18:47 -03:00
Ignacio
b1b8247cb0
Add hidden inputs for PKCE. Fix bug with AES.
2016-04-07 11:45:35 -03:00
Ignacio Fiorentino
6e8af74f76
First intent to implement PKCE.
2016-04-06 18:03:30 -03:00
Ignacio Fiorentino
dff76cd1ea
Add HS256 support for JWS.
2016-03-22 16:17:56 -03:00
Nick Mohoric
f8dce31fa2
Changed logging from error to debug
2016-03-17 14:31:41 -04:00
Wojciech Bartosiak
08033bb9ad
Fix missing verification of response type for client
2016-03-08 13:21:55 +00:00
juanifioren
25a59c8344
Refactoring supporting OAuth2 flow.
2016-02-16 17:33:12 -03:00
juanifioren
8eb0877d89
Refactoring userinfo endpoint. Create decorator "oauth2.protected_resource_view".
2016-02-15 17:13:19 -03:00
juanifioren
c6534db693
Add nonce validation for Implicit Flow.
2016-01-19 16:05:34 -03:00
Maarten van Schaik
f4dfa7303f
Forget old token when a refresh token is used
2015-09-30 16:46:33 +02:00
Maarten van Schaik
8d672cc1ba
Add support for refresh_token to token endpoint
2015-09-30 14:55:48 +02:00
juanifioren
7658257d18
Refactoring in discovery.
2015-07-31 14:19:53 -03:00
juanifioren
6c4dad8c5c
Imports in alphabetical order.
2015-07-30 15:49:12 -03:00
juanifioren
870c605211
Add HTTP Basic client auth in token endpoint.
2015-07-30 15:47:50 -03:00
juanifioren
87b0deb357
Merge branch 'v0.1.x' of https://github.com/juanifioren/django-oidc-provider
2015-07-28 15:56:00 -03:00
juanifioren
253527aa52
Refactoring in authorize endpoint.
2015-07-28 15:55:30 -03:00
juanifioren
92b75ba1d9
Sending access_token as query string parameter in UserInfo.
2015-07-27 18:28:12 -03:00
Maarten van Schaik
76efb6fc68
Add logout view to enable minimal session mgmt
...
This implements a very small part of the OIDC session management as
described in
http://openid.net/specs/openid-connect-session-1_0-17.html#rfc.section.5 .
It does not implement the full session management (using iframes) and
does not implement the registration and verification of logout redirect
uri's.
2015-07-24 11:36:45 +02:00