juanifioren
3498940142
Encode id_toke with using RSA now.
2015-07-13 17:37:13 -03:00
juanifioren
f7e8fa460c
Create get_rsa_key function to obtain the key from filesystem.
2015-07-13 17:36:15 -03:00
Juan Ignacio Fiorentino
1faeb6d5ab
Merge pull request #31 from ByteInternet/nonce-in-id-token
...
Add nonce in id_token when included in auth request
2015-07-10 10:29:55 -03:00
Maarten van Schaik
a4fcf956c2
Add nonce in id_token when included in auth request
...
http://openid.net/specs/openid-connect-core-1_0.html#IDToken
If present in the Authentication Request, Authorization Servers MUST
include a nonce Claim in the ID Token with the Claim Value being the
nonce value sent in the Authentication Request.
This patch adds the nonce to the id_token.
2015-07-10 14:44:26 +02:00
Maarten van Schaik
7632054aad
Add support for redirect_uris with query params
...
Some clients might add extra parameters to the redirect_uri, for
instance as extra verification if proper state parameter handling is not
supported.
This patch adds proper handling of redirect_uris with query parameters.
2015-07-10 12:22:25 +02:00
juanifioren
27110b65e4
Use decode with utf-8 encoding.
2015-07-01 17:20:16 -03:00
juanifioren
447d026a41
Add urllib and change iteritems() with items().
2015-07-01 16:43:35 -03:00
juanifioren
197818566d
Rename setting.
2015-06-24 12:40:00 -03:00
juanifioren
503324ae66
Add user consent logic to authorize endpoint.
2015-06-22 18:42:42 -03:00
juanifioren
68b4847219
Refactoring error logging.
2015-06-19 17:46:00 -03:00
juanifioren
bcb144dcdb
Now OIDC_EXTRA_SCOPE_CLAIMS must be a string (lazy imported).
2015-06-19 15:19:46 -03:00
juanifioren
48fcb1da93
Move validate_params function to views (on POST authorize).
2015-06-15 17:34:36 -03:00
juanifioren
124c7366fa
Move allow logic to authorize view.
2015-06-15 16:04:44 -03:00
niccolasmendoza@gmail.com
521708f718
adding logger for tests
2015-06-08 16:36:49 -03:00
niccolasmendoza@gmail.com
cfbfbfc74a
removing unnecesary imports
2015-06-08 12:32:55 -03:00
juanifioren
800bb55f43
Fix string indentation.
2015-05-14 12:44:08 -03:00
juanifioren
6a696453fc
Clean error messages.
2015-05-13 18:36:04 -03:00
juanifioren
7a82c352fd
Add scope validation in userinfo endpoint.
2015-05-07 16:12:45 -03:00
juanifioren
4b3039ceae
Refactoring for create_id_token function.
2015-04-29 18:55:48 -03:00
juanifioren
180e0183c5
Validate expiration of access_token in UserInfo.
2015-04-21 17:14:26 -03:00
juanifioren
9b321fef9a
Fix conditional for code expiration.
2015-04-21 14:28:59 -03:00
Francois Gaudin
4c16097f40
Fixed id_token dict in implicit flow
2015-04-17 15:41:04 -07:00
juanifioren
a1df576d1c
Important fix in recursive function.
2015-03-31 15:31:17 -03:00
juanifioren
7e690f4e68
Move Grant Code creation logic into a functon.
2015-03-12 12:40:36 -03:00
juanifioren
e3b5af5490
Add setup to extra scope claims.
2015-03-06 12:54:27 -03:00
juanifioren
3ad316cdca
Add Provider Configuration Information endpoint.
2015-03-04 16:24:41 -03:00
juanifioren
964d649d3d
Remove client from sub generator.
2015-03-03 13:39:32 -03:00
juanifioren
3190599967
Add custom SUB generator for ID TOKEN.
2015-03-02 17:37:54 -03:00
juanifioren
94ccfc54cf
Change "DOP" with "OIDC" in settings.
2015-02-26 16:14:36 -03:00
juanifioren
2bac30361e
Change name of the package.
2015-02-18 15:07:22 -03:00