FreakU
/
takahe
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
871 Commits 1 Branch 0 Tags 5.6 MiB
Commit Graph

10 Commits

Author SHA1 Message Date
Osma Ahvenlampi 1cc9c16b8c
Use 400 and 401 error codes as OAuth2 documents, accept 400 as webfinger error code (#597) 2023-07-10 10:19:20 -06:00
Andrew Godwin 5ea3d5d143 Implement a client_credentials process for read 2023-03-06 15:48:43 -07:00
Andrew Godwin 5d2ed9edfe
Hatchway API Rewrite (#499) 
Removes django-ninja and replaces it with a new API framework, "hatchway".

I plan to move hatchway into its own project very soon.
 2023-02-07 12:07:15 -07:00
Cosmin Stejerean efd5f481e9
OAuth2 Fixes (#338) 
This implements a few oauth2 fixes:

- passes along the state object
- enforces authorization code expiration (currently set to 1 minute, we could make this configurable)
- enforces redirect_uri
- properly checks for client_secret when granting a token
- handles pulling client authentication for token grant from basic auth
- implement token revocation
 2023-01-01 11:46:55 -07:00
Michael Manfre c969ffc0d6
Ensure OAuth views are provided expected inputs (#246) 
Thanks for the report Jochen!
 2022-12-23 21:17:13 -07:00
Andrew Godwin bbe60202e7 Add Out Of Band auth token support 
Fixes #216
 2022-12-21 16:42:44 +00:00
Andrew Godwin 5ab5684798 Support query params in redirect URIs 2022-12-19 22:06:40 +00:00
Michael Manfre 3404b155de FormOrJsonParser api.views.oauth 2022-12-13 20:47:27 -07:00
Andrew Godwin 3e062aed36 Timelines working 2022-12-12 11:56:49 -07:00
Andrew Godwin 1017c71ba1 Working start of an OAuth flow 2022-12-12 11:56:49 -07:00