Ecosyste.ms: OpenCollective

An open API service for software projects hosted on Open Collective.

github.com/ory/fosite

Extensible security first OAuth 2.0 and OpenID Connect SDK for Go.
https://github.com/ory/fosite

fix: all responses now contain headers to not cache them (#465)

2012cb7ec6feb504d1faa6e393fce8d25edafebb authored over 4 years ago
ci: ignore etcd CVEs

9354c963eab6417baafe3927f06383b6dd7e40e9 authored over 4 years ago
autogen(docs): regenerate and update changelog

373d2ad5829f3a0d08ac1d6f59a3e310c6ab23dd authored over 4 years ago
docs: better section reference for GetRedirectURIFromRequestValues (#463)

48a3daf45bd1885c4412eeb9b2bc3117b6075de9 authored over 4 years ago
autogen(docs): regenerate and update changelog

bdb416d7d5a3b0fb280460cd35e289744abe2317 authored over 4 years ago
ci: add github action for labels

2794e6df2e08def974a0cd8a8a1f854a9fcf7bc4 authored over 4 years ago
ci: no longer ignore package.json

Closes #459

902c22e82a8fc9fefbb6dca0b9b83a431aef2259 authored over 4 years ago
refactor: Copy all values when sanitizing (#455)

c80d0d42a34f8cf664d44c687d7cfea576a0b232 authored over 4 years ago
ci: shuffle jobs

1a05b7ba9aa3c9179e10de144f891a5e1cef21d1 authored over 4 years ago
docs: deprecate history.md

See https://github.com/ory/fosite/issues/414#issuecomment-662538622

b0d5feacfcbeedf609563fa8567bd0e031b179b5 authored over 4 years ago
chore: add package.json to gitignore

029e3663496aede08092845a86ab8bc6da6a0e4e authored over 4 years ago
ci: use unique hash key

d701ee8a984b50d6c0961f64e736c215d1ac11f3 authored over 4 years ago
autogen(docs): regenerate and update changelog

871869d8af8639ca22058e6252323b2ffde2c4f6 authored over 4 years ago
ci: bump cache version

69857d40beb7fc73833597d7653e5e22b7c0d2c5 authored over 4 years ago
chore: bump deps

a814316f6087f94623c63eb56a906be1b4190b33 authored over 4 years ago
ci: switch to circleci

Closes #414

e6149e6bd24fd84d7ba0b4cba5eab1b601352fa9 authored over 4 years ago
ci: use install

01e1408ca07ac0acb7726a665720330a04f378b7 authored over 4 years ago
chore: bump deps and resolve cve dep

1f0daa8bd776f557a250724d90bb2255fefe7dcc authored over 4 years ago
docs: add empty session example explanation (#450)

36d65cbc061ff6cae38e90b0a6954646c8daf5d7 authored over 4 years ago
feat: new compose strategies for ES256 (#446)

39053eedaa687fe1d8dbe8b928fb98cd5ce8c021 authored over 4 years ago
feat: new factory with default issuer for JWT tokens (#444)

901e206d03b615c189e12f94607d92c10d6909fa authored over 4 years ago
feat: makeRemoveEmpty public (#443)

17b075688f9a012b09e650e90d765de6d4d538cf authored over 4 years ago
fix: improved error messages in client authentication (#440)

closes: #436

c06e5608c7ae6a0243428252e6ec80bc37ae33ca authored over 4 years ago
feat: added support for ES256 token strategy and client authentication (#439)

I added to `DefaultOpenIDConnectClient` a field `TokenEndpointAuthSigningAlgorithm` to be able t...

36eb661cc8b609877d8e81c849c34631bbab245a authored over 4 years ago
docs: update repository templates

a840a62e401b4111f8304fa8b963006a866a20f8 authored over 4 years ago
fix: double-decoding of client credentials in request body (#434)

I noticed that client credentials are URL-decoded after being extracted from the POST body form,...

48c9b41ea2dc89ec2bf58ba918c45c8430bb0ccd authored over 4 years ago
fix(arguments): fixes a logic bug in MatchesExact and adds documentation (#433)

Signed-off-by: Matthew Hartstonge <[email protected]>
Co-authored-by: hackerman <3372410+aeneasr...

10fd67bf84118affc9269ca0c0dbc8da4b0bf2cd authored over 4 years ago
docs: update github templates (#432)

Signed-off-by: aeneasr <[email protected]>

b393832765e0c97661bb5495e3a3d51a8019afd7 authored over 4 years ago
feat(pkce): add EnforcePKCEForPublicClients config flag (#431)

Alternative proposal for the issue discussed in #389 and #391, where enforcement of PKCE is want...

9f53c843e4a72d0ff34acb084e5a920d7114278f authored over 4 years ago
fix: do not issue refresh tokens to clients who cannot use it (#430)

No prior discussion, but this is somewhat related to #370, which makes it possible for clients t...

792670d0e81ff83f2b345502ea7adadf99bcaa9b authored over 4 years ago
fix: introduce better linting pipeline and resolve Go issues (#428)

e02f731a41fb82ac8d6b62ea3f6fd8a915526090 authored almost 5 years ago
fix: return invalid_grant instead of invalid_request in refresh flow (#427)

Return invalid_grant instead of invalid_request when in authorization code flow when the user is...

f5a0e9696750e3f1d67bd919a6588b175e7cc2bb authored almost 5 years ago
docs: update github templates (#425)

Signed-off-by: aeneasr <[email protected]>

039987119ea78d69fe991bbb0edb6735b88b16cc authored almost 5 years ago
docs: update github templates (#424)

Signed-off-by: aeneasr <[email protected]>

d37fc4babe43b52c92eb081b9ea78c0fa9f51865 authored almost 5 years ago
docs: update SetSession comment (#423)

32951ab56fb3400ff6980519c2e6e20802292f2f authored almost 5 years ago
fix(storage): remove unused field (#422)

Related #417

d2eb3b9ff5f52810067ac59969a3c4272772bdb3 authored almost 5 years ago
docs: replace Discord with Slack (#412)

d8591bba33d16b61e6c611b7042d695166bd94e5 authored almost 5 years ago
fix: list all response types in example memory store (#413)

closes #304

Signed-off-by: Mitar <[email protected]>

427d40dcaadab6933a4e571def7d9729fd442581 authored almost 5 years ago
docs: fix various typos (#415)

Signed-off-by: Mitar <[email protected]>

719aaa0b695f02556167f02fc94133a380ccfa16 authored almost 5 years ago
fix(storage): remove unused methods (#417)

023bdcf1217b8f86de250f53391ad3b1e356949d authored almost 5 years ago
docs: Updates issue and pull request templates (#419)

Signed-off-by: aeneasr <[email protected]>

d804da1e3dfda46872d358d2987bd19462c03e98 authored almost 5 years ago
Merge pull request from GHSA-v3q9-2p3m-7g43

* u

* u

0c9e0f6d654913ad57c507dd9a36631e1858a3e9 authored almost 5 years ago
fix: handle serialization errors that can be thrown by call to 'Commit' (#403)

35a1558d8d845ac15bc6ec99fb4be062716b231a authored almost 5 years ago
docs: update forum and chat links

b1ba04e447d6dfdaf9f0c84336d3bacab41b2c8d authored almost 5 years ago
fix: handle concurrent transactional errors in the refresh token grant handler (#402)

This commit provides the functionality required to address https://github.com/ory/hydra/issues/1...

b17190b4964e911d6f94379873139cdfc3def5bd authored almost 5 years ago
fix: add ability to specify amr values natively in id_token payload (#401)

See ory/hydra#1756

f99bb8012a583b25fd591718a51308c208cb9a55 authored almost 5 years ago
fix: Support RFC8252#section-7.3 Loopback Interface Redirection (#400)

Closes #284

41041350c06853d490e94849b25d0fee87a95a32 authored almost 5 years ago
feat: Add ExactOne and MatchesExact to Arguments (#399)

Previously Arguments.Exact had vague semantic where
it coudln't distinguish between value with ...

cf23400930e63a6d5244262d284ddc79943775e6 authored almost 5 years ago
fix: Merge request ID as well (#398)

Closes #386

67c081cb5cb650e7095d7343a618484103cf8bb5 authored almost 5 years ago
docs: add undocumented ExactScopeStrategy (#395)

387cade4c6e96e0b83df274da5835691e54d07af authored almost 5 years ago
docs: Updates issue and pull request templates (#394)

Signed-off-by: aeneasr <[email protected]>

119e6ab6d83ab8dee3fd31085153f64ca008582a authored almost 5 years ago
docs: Updates issue and pull request templates (#393)

Signed-off-by: aeneasr <[email protected]>

cdefb3e99e73b69e62a449de489b0e806d5158af authored about 5 years ago
Return state parameter in authorization error conditions (#388)

Related to ory/hydra#1642

3ece795f3080db5de3529cea9bfa670e70704686 authored about 5 years ago
Revert incorrect license changes

40a49f743dff60d07b6314667933a47dbf2635aa authored about 5 years ago
pkce: Enforce verifier formatting (#383)

024667ac1905a4d0274294ab552f3566e2eb3b6a authored over 5 years ago
handler/pkce: Enable PKCE for private clients (#382)

e21830ec0c0c37ca6ca5544b1362c85abe38b80f authored over 5 years ago
Add RefreshTokenScopes Config (#371)

When set to true, this will return refresh tokens even if the user did
not ask for the offline ...

bcc78599eadbff38dc0efc9370e5ef64eadfefa9 authored over 5 years ago
handler/revoke: respecting ErrInvalidRequest code (#380)

This commit modifies the case for ErrInvalidRequest in
WriteRevocationResponse to respect the 4...

cc34bfb4f970d25f59948dcdcbc0eb587ae78d6d authored over 5 years ago
docs: Updates issue and pull request templates (#378)

Signed-off-by: aeneasr <[email protected]>

54426bbf3d3bb125753aaf7fda5a7ded5effdf4c authored over 5 years ago
docs: Updates issue and pull request templates (#377)

Signed-off-by: aeneasr <[email protected]>

40590cbaa45167dff2085483ccf5b4bddb37e422 authored over 5 years ago
docs: Updates issue and pull request templates (#376)

Signed-off-by: aeneasr <[email protected]>

165e93eeff7d187af682f7f958b39e2393d15821 authored over 5 years ago
pkce: Return error when PKCE is used with private clients (#375)

72193870c9914dc97c1117a566c68bede0bf5290 authored over 5 years ago
docs: Updates issue and pull request templates (#374)

Signed-off-by: aeneasr <[email protected]>

9f7cf409a643b72cfa25dd2f1340f1aa1c17c443 authored over 5 years ago
docs: Updates issue and pull request templates (#373)

Signed-off-by: aeneasr <[email protected]>

5962474c904f80517d1a9c2731e703ffda972d6a authored over 5 years ago
Create FUNDING.yml

1b7b479ca040f95f3ea4cff642c7f678df5cb0ab authored over 5 years ago
docs: Updates issue and pull request templates (#367)

Signed-off-by: aeneasr <[email protected]>

01cd955efe9a00c014a5ef7488774c3913e7218d authored over 5 years ago
docs: Updates issue and pull request templates (#366)

Signed-off-by: aeneasr <[email protected]>

27c64ec1b7d12ee1b1e1e0d35dc6b24f7ade92e0 authored over 5 years ago
docs: Updates issue and pull request templates (#365)

Signed-off-by: aeneasr <[email protected]>

90a3c509e718445b799821fac400aad28d9de928 authored over 5 years ago
docs: Fix method/struct documents (#360)

Signed-off-by: budougumi0617 <[email protected]>

ad06f2266b28b3d1844f36e97c1118822fd2a46c authored over 5 years ago
docs: Updates issue and pull request templates (#361)

Signed-off-by: aeneasr <[email protected]>

35157e2a5174f1a8ee9074452b77953e35c4161c authored over 5 years ago
openid: Allow promp=none for https/localhost (#359)

Signed-off-by: aeneasr <[email protected]>

27bbe0033273157ea449310c064675127e2550e6 authored over 5 years ago
core: Add debug log to invalid_client error(#358)

Signed-off-by: nerocrux <[email protected]>

dce3111ad0dac62911c19d9b6ea4cb776f087c4d authored over 5 years ago
Export IsLocalhost

Signed-off-by: aeneasr <[email protected]>

a95ea092ef682cd5fe3449c23245d211444f28cb authored almost 6 years ago
Improve IsRedirectURISecure check

Signed-off-by: aeneasr <[email protected]>

d6f8962de5336ce17128b1fd238cba13862c85a7 authored almost 6 years ago
Allow providing a custom redirect URI checker (#355)

Signed-off-by: aeneasr <[email protected]>

3d16e39a3b25cb5d77b8b10cb568c9bc2a835356 authored almost 6 years ago
token: Improve rotated secret error reporting in HMAC strategy (#354)

Signed-off-by: aeneasr <[email protected]>

f21d930291ada9e609ea5018693d6e4745815f03 authored almost 6 years ago
example: Propagate session data properly (#353)

This example is slightly inaccurate; the session data will need to come from the returned Access...

5ba0f0465039e7072593205b1252e630d340d6ab authored almost 6 years ago
errors: Remove useless details fn receiver (#349)

Signed-off-by: aeneasr <[email protected]>

af403c6fac913736a05ca0c44765b10baaf89295 authored almost 6 years ago
doc: Update HISTORY.md, README.md, CONTRIBUTING.md (#347)

* README: Breaks out `0.26.0` as was stuck inside a code block.
* README: Ensures the later ver...

de5e61e0eb445af57e692964057ea8e661f98618 authored almost 6 years ago
oauth2: add test coverage to exercise the transactional support in the AuthorizeExplicitGrantHandler's PopulateTokenEndpointResponse method.

Signed-off-by: Amir Aslaminejad <[email protected]>

2f58f9e0ea1a197c8b7eb62dc545d9467ed2ff10 authored about 6 years ago
storage: adds new interface `Transactional` which is to be implemented by storage providers that can support transactions.

Signed-off-by: Amir Aslaminejad <[email protected]>

c364b33eefe813da4da02fc78d9e72e1d5301234 authored about 6 years ago
oauth2: use transactions in the auth code token flow (if the storage implementation implements the `Transactional` interface) to address #309

Signed-off-by: Amir Aslaminejad <[email protected]>

e00c5675182eb5d90644160c0f3f1b10f0f287f4 authored about 6 years ago
oauth2: add test coverage to exercise the transactional support in the RefreshTokenGrantHandler's PopulateTokenEndpointResponse method.

Signed-off-by: Amir Aslaminejad <[email protected]>

b38d7c89b9a45b7576af379b2dc479ddb880195c authored about 6 years ago
internal: add mock for storage.Transactional + update generate-mocks.sh

Signed-off-by: Amir Aslaminejad <[email protected]>

03f7bc8e59f15d7b9c0df47c8c77c106f3fd4a0c authored about 6 years ago
oauth2: use transactions in the refresh token flow (if the storage implementation implements the `Transactional` interface) to address #309

Signed-off-by: Amir Aslaminejad <[email protected]>

07d1a3974ff6d53c239c4050703b09928f484e01 authored about 6 years ago
oauth2: Don't double encode URL fragments (#346)

Closes #345

Signed-off-by: Grigoriev, Nikolai <[email protected]>

1f419341886c8e37a10c68d7a5c8d576176e666a authored about 6 years ago
compose: Expose token entropy setting (#342)

Signed-off-by: nerocrux <[email protected]>

0761fcae7e6ecd0f7d16c51a3c7fa3891d85d85b authored about 6 years ago
Remove cryptopasta dependency (#339)

Signed-off-by: nerocrux <[email protected]>

b156e6b48383926974a560bb416a9ac7507347ec authored about 6 years ago
oauth2: Add ability to specify refresh token lifespan (#337)

Set it to `-1` to disable this feature. Defaults to 30 days.

Closes #319

Signed-off-by: ar...

fa654089e09900d842117827ec2f6258323ec436 authored about 6 years ago
docs: Fix quickstart (#335)

- replace NewMemoryStore with NewExampleStore
- fix length of signing key
- fix config type

...

25cc6c42e2befe3b200d79c9d8edac47cc6d3f86 authored about 6 years ago
introspect: Omit exp if ExpiresAt is zero value (#334)

Signed-off-by: nerocrux <[email protected]>

6d501761a17bc3a720e2a0b72ff5f218fa72660c authored about 6 years ago
oauth2: Set exp for authorize code issued by hybrid flow (#333)

Signed-off-by: nerocrux <[email protected]>

d275e84dc6f4bf4e71393672e0e16d54b401bc3c authored about 6 years ago
pkce: Allow hybrid flows (#328)

Signed-off-by: Adam Shannon <[email protected]>
Signed-off-by: Wenhao Ni <[email protected]>

cdfddc8b06d861708ebe3494a35d65da2d2fcef8 authored about 6 years ago
oauth2: Improve refresh security and reliability (#332)

This patch resolves several issues regarding the refresh flow. First,
an issue has been resolve...

4e4121bac5cda8efa7d3eb6aaf7720f3ff59c329 authored about 6 years ago
oauth2: Update jwt access token interface (#330)

The interface needed to change in order to natively handle the audience claim.

Signed-off-by:...

2da976477fcd41493103ea478541d68ca04083ae authored about 6 years ago
oauth2: Introduce audience capabilities (#327)

This patch allows clients to whitelist audiences and request that audiences are set for oauth2 a...

e2441d231a19cd1133b3316d3477b84d7b649522 authored about 6 years ago
hash: Raise bcrypt cost factor lower bound (#321)

Users of this library can easily create the following:

hasher := fosite.BCrypt{}
hasher.Hash...

799fc70a48b68b3403eb150084c28d4e78c035e4 authored about 6 years ago
compose: Fix doc typo (#322)

Signed-off-by: Adam Shannon <[email protected]>

239b1ed4b9b406287fa49e01f8316e5fc4eb7923 authored about 6 years ago
compose: fix Config.GetHashCost godoc comment (#320)

Signed-off-by: Adam Shannon <[email protected]>

4d2b119b7a302bf7e6a4d9b600697e08cf089b02 authored about 6 years ago
oauth2: Allow customization of JWT claims

Signed-off-by: aeneasr <[email protected]>

f97e45118fbf7a87129ee40c8a56e97efc30c8b9 authored about 6 years ago