Skip to content

Instantly share code, notes, and snippets.

@lepture

lepture/CC.md Secret

Last active September 16, 2018 03:18
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save lepture/b333e6a128fe473a721d97159f5724be to your computer and use it in GitHub Desktop.
Save lepture/b333e6a128fe473a721d97159f5724be to your computer and use it in GitHub Desktop.
Download ZIP
Authlib v0.10 Changes
Raw
CC.md

CodeChallenge

authlib.specs.rfc7636.AuthorizationCodeGrant is deprecated, use CodeChallenge as an extension instead:

from authlib.specs.rfc7636 import CodeChallenge

authorization_server.register_grant(MyAuthorizationCodeGrant, [CodeChallenge(required=True)])
Raw
OC.md

OpenID Connect exists_nonce

OAuth 2.0 AuthorizationServer.register_hook is only used in OpenID Connect for exists_nonce. This method is depracted. Instead of using .register_hook, you should define exists_nonce method on each OpenID Connect grant:

from authlib.specs.oidc import grants

class OpenIDCodeGrant(grants.OpenIDCodeGrant):
    def exists_nonce(self, nonce, request):
        return validate_the_given(nonce, request)


class OpenIDImplicitGrant(grants.OpenIDImplicitGrant):
    def exists_nonce(self, nonce, request):
        return validate_the_given(nonce, request)


class OpenIDHybridGrant(grants.OpenIDHybridGrant):
    def exists_nonce(self, nonce, request):
        return validate_the_given(nonce, request)
@lepture
Copy link
Author

lepture commented Aug 26, 2018

https://git.io/fAmW1

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment