This repository has been archived by the owner on Nov 24, 2022. It is now read-only.
Upgrade to latest version #2
Open
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Keycloak 10 returns the error "invalid_scope" when a client tries to get an access token with no scopes. Fix it. Signed-off-by: Naoto Kobayashi <[email protected]>
correct check for duplicate email
using composer for the oauth lib dependency, autoloading for our own classes. Services are now their own action plugins to inherit from our Service class. All still untested and broken
somewhat works already
This manually applies daviddesberg/PHPoAuthLib#567 once it has been merged, a proper composer checkout should be used again
we want to force backend implementors to think about scopes
flag indicating that login is in progress was not cleared from session
…9092 Translation update (fr)
Add Keycloak scope to support Keycloak 10
The new OAuthManager is now the main flow manager and should make it easier to follow the flow. The Session class encapsulates all session and cookie accesses. A new guid paradigma should make invisible relogins possible when the session expired. Needs all major cleanup but a first login worked.
This is a new implementation of the group handling introduced in #125 The previous implementation failed to preserve provider groups properly. This also adds tests for the behaviour.
There is no need to update the local user on every login when nothing has changed. This should fix most instances of #132 - if the oAuth provider data has actually updated, the user would have to log into the farmer to update the data though.
The farmer lets us know when a user is protected and can't be written, so we can actually skip the update completely. fixes #132 for good
We do not really care for the password in the session and usually don't even have it when authenticating via oAuth. This fixes a warning on PHP 8+
…01571 Translation update (nl)
…09069 Translation update (pt-br)
This is to exclude unrelated files for installation
Setup .gitattributes file
…25378 Translation update (ru)
…42348 Translation update (pl)
Although http status code and http error message are helpful in error handling, TokenResponseException, throwed by oauth\HTTPClient if an error occured during the http request, does not have fields/methods which indicate them directly. Solve it by adding HttpTokenResponseException which has indicators of http status code and http error message, and throwing it instead of TokenResponseException. Signed-off-by: Naoto Kobayashi <[email protected]>
Add HttpTokenResponseException making error handling easy
Because response body is also helpful for error handler. Signed-off-by: Naoto Kobayashi <[email protected]>
Add http response body to HttpTokenResponseException
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.