|
1 | 1 | Changelog |
2 | 2 | ========= |
3 | 3 |
|
4 | | -Unreleased |
| 4 | +3.0.0 (2019-01-01) |
5 | 5 | ------------------ |
6 | | - |
| 6 | +OAuth2.0 Provider - outstanding Features |
| 7 | + |
| 8 | +* OpenID Connect Core support |
| 9 | +* RFC7662 Introspect support |
| 10 | +* RFC8414 OAuth2.0 Authorization Server Metadata support (#605) |
| 11 | +* RFC7636 PKCE support (#617 #624) |
| 12 | + |
| 13 | +OAuth2.0 Provider - Bugfixes |
| 14 | + |
| 15 | +* Add "request" to confirm_redirect_uri #504 |
| 16 | +* confirm_redirect_uri/get_default_redirect_uri has a bit changed #445 |
| 17 | +* empty scopes no longer raise exceptions for implicit and authorization_code #475 / #406 |
| 18 | +* invalid_client is now a FatalError #606 |
| 19 | +* Changed errors status code from 401 to 400: |
| 20 | +- invalid_grant: #264 |
| 21 | +- invalid_scope: #620 |
| 22 | +- access_denied/unauthorized_client/consent_required/login_required #623 |
| 23 | +- 401 must have WWW-Authenticate HTTP Header set. #623 |
| 24 | + |
| 25 | +OAuth2.0 Client - Bugfixes / Changes: |
| 26 | + |
| 27 | +* expires_in in Implicit flow is now an integer #569 |
| 28 | +* expires is no longer overriding expires_in #506 |
| 29 | +* parse_request_uri_response is now required #499 |
| 30 | +* Unknown error=xxx raised by OAuth2 providers was not understood #431 |
7 | 31 | * OAuth2's `prepare_token_request` supports sending an empty string for `client_id` (#585) |
8 | 32 | * OAuth2's `WebApplicationClient.prepare_request_body` was refactored to better |
9 | 33 | support sending or omitting the `client_id` via a new `include_client_id` kwarg. |
10 | 34 | By default this is included. The method will also emit a DeprecationWarning if |
11 | 35 | a `client_id` parameter is submitted; the already configured `self.client_id` |
12 | 36 | is the preferred option. (#585) |
13 | 37 |
|
| 38 | +OAuth1.0 Client: |
| 39 | + |
| 40 | +* Support for HMAC-SHA256 #498 |
| 41 | + |
| 42 | +General fixes: |
| 43 | + |
| 44 | +* $ and ' are allowed to be unencoded in query strings #564 |
| 45 | +* Request attributes are no longer overriden by HTTP Headers #409 |
| 46 | +* Removed unnecessary code for handling python2.6 |
| 47 | +* Add support of python3.7 #621 |
| 48 | +* Several minors updates to setup.py and tox |
| 49 | +* Set pytest as the default unittest framework |
| 50 | + |
| 51 | + |
14 | 52 | 2.1.0 (2018-05-21) |
15 | 53 | ------------------ |
16 | 54 |
|
|
0 commit comments