This repository was archived by the owner on Nov 24, 2022. It is now read-only.
Upgrade to latest version #2
Open
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Keycloak 10 returns the error "invalid_scope" when a client tries to get an access token with no scopes. Fix it. Signed-off-by: Naoto Kobayashi <[email protected]>
correct check for duplicate email
using composer for the oauth lib dependency, autoloading for our own classes. Services are now their own action plugins to inherit from our Service class. All still untested and broken
somewhat works already
This manually applies daviddesberg/PHPoAuthLib#567 once it has been merged, a proper composer checkout should be used again
we want to force backend implementors to think about scopes
flag indicating that login is in progress was not cleared from session
…9092 Translation update (fr)
Add Keycloak scope to support Keycloak 10
The new OAuthManager is now the main flow manager and should make it easier to follow the flow. The Session class encapsulates all session and cookie accesses. A new guid paradigma should make invisible relogins possible when the session expired. Needs all major cleanup but a first login worked.
…09069 Translation update (pt-br)
This is to exclude unrelated files for installation
Setup .gitattributes file
…25378 Translation update (ru)
…42348 Translation update (pl)
Although http status code and http error message are helpful in error handling, TokenResponseException, throwed by oauth\HTTPClient if an error occured during the http request, does not have fields/methods which indicate them directly. Solve it by adding HttpTokenResponseException which has indicators of http status code and http error message, and throwing it instead of TokenResponseException. Signed-off-by: Naoto Kobayashi <[email protected]>
Add HttpTokenResponseException making error handling easy
Because response body is also helpful for error handler. Signed-off-by: Naoto Kobayashi <[email protected]>
Add http response body to HttpTokenResponseException
logoff is called a lot when a user is not authenticated yet. This can interfere with the oauth login process when calls are made while the user is at the IdP, for example triggered by AJAX beacons like created by the statistics plugin. There is no real reason to delete the temporary session data. We can simply keep it until it is used or replaced by new data.
…813937 Translation update (pt-br)
…424189 Translation update (pl)
…381810 Translation update (fr)
The login cookie might not be set by oauth. That's fine but we need to avoid the warnings.
…852257 Translation update (zh)
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
13 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.