summaryrefslogtreecommitdiffstats
path: root/src/DotNetOpenAuth.OAuth2.AuthorizationServer/OAuth2/ChannelElements
Commit message (Collapse)AuthorAgeFilesLines
* More warning fixes.Andrew Arnott2013-02-162-7/+7
|
* Lots of stylecop fixes.Andrew Arnott2013-02-161-1/+1
|
* More warning fixes.Andrew Arnott2013-02-101-1/+1
|
* C# compiler warning fixes.Andrew Arnott2013-02-104-6/+12
|
* OAuth2.AuthorizationServer now builds.Andrew Arnott2013-01-134-12/+23
|
* Removes more remnants of Code Contracts.Andrew Arnott2012-12-264-6/+0
|
* Replaces DNOA's internal Requires class with Validation NuGet package.Andrew Arnott2012-12-268-0/+8
|
* CreateAccessToken reveals username to hostAndrew Arnott2012-12-241-3/+3
| | | | | | | IAuthorizationServerHost.CreateAccessToken now has access to authoring usernames. Fixes #219
* Merge branch 'v4.1'Andrew Arnott2012-12-021-1/+7
|\ | | | | | | | | | | | | Conflicts: src/DotNetOpenAuth.OAuth2.ResourceServer/OAuth2/StandardAccessTokenAnalyzer.cs src/DotNetOpenAuth.Test/OAuth2/OAuth2TestBase.cs src/version.txt
| * Fixes HTTP Basic auth challenge to include realmAndrew Arnott2012-11-111-1/+7
| | | | | | | | Fixes #189
* | Authorization servers can override the granted scopes for all grant types.Andrew Arnott2012-10-301-5/+10
| | | | | | | | | | | | This change adds the ability for authorization servers to override the granted scopes of client credential and resource owner password grant types. Fixes #225
* | Merge remote-tracking branch 'aarnott/master'Andrew Arnott2012-10-291-2/+2
|\ \ | |/ |/|
| * Adds AuthorizationServer.DecodeRefreshTokenAndrew Arnott2012-07-201-2/+2
| | | | | | | | | | | | And a unit test. Fixes #182
* | Fix error message.Andrew Arnott2012-08-231-1/+1
| |
* | Replaces explicit crypto algorithm use with factories.Andrew Arnott2012-07-181-1/+1
|/ | | | Fixes #47 which requires that FIPS compliance be an option.
* Special handling for client credential grant typeAndrew Arnott2012-05-291-0/+13
| | | | | | | | Access token requests that carry client credential grants are now specially handled and signal to the authorization server that an authorization record should be created. More work toward #138
* Resource owner password grant method renameAndrew Arnott2012-05-291-36/+38
| | | | | | | | | | | | Renamed IAuthorizationServerHost.IsResourceOwnerCredentialValid to TryAuthorizeResourceOwnerCredentialGrant so that authorization servers are prepared to approve refresh tokens that may be issued as a result of a resource owner password grant. This also removes some of the "validation" that wasn't really doing anything useful for resource owner password grant types. Toward an eventual fix for #138
* Authorization Server hosts now instantiate their own AccessTokens rather ↵Andrew Arnott2012-04-251-6/+5
| | | | | | | than just parameters. AccessTokens are now serialized via a virtual method on that instance. Fixes #38, I think.
* Anonymous clients can now exchange resource owner credentials for refresh ↵Andrew Arnott2012-04-221-7/+15
| | | | | | | | and access tokens. (authenticated clients already could). Fixes #100
* Fixes access denial errors from OAuth 2 resource servers so they include the ↵Andrew Arnott2012-04-224-14/+22
| | | | | | required parameters in their WWW-Authenticate headers. Fixes #124
* Fixed HTTP Basic authentication for OAuth 2 clients so that it actually ↵Andrew Arnott2012-04-195-12/+49
| | | | works in the sample.
* Fixed up the configuration story for OAuth 2.Andrew Arnott2012-04-186-61/+40
|
* StyleCop cleanup, and reversal of some code changes that were no longer ↵Andrew Arnott2012-04-186-2/+74
| | | | necessary.
* We have HTTP Basic client authentication working now in OAuth 2.Andrew Arnott2012-04-186-7/+196
|
* Authorization server hosts may now provide canonical usernames for the ↵Andrew Arnott2012-04-161-1/+4
| | | | | | resource owner given correct resource owner credentials. Fixes #103
* Authorization servers now gain insight into the calling client when ↵Andrew Arnott2012-04-151-1/+1
| | | | | | validating resource owner credential grant type requests. Fixes #101
* Renamed IAuthorizationServer to IAuthorizationServerHost.Andrew Arnott2012-04-085-7/+7
| | | | To avoid confusion with the concrete class AuthorizationServer.
* Allows the authorization server to store merely the hashes of client secrets.Andrew Arnott2012-04-011-3/+2
| | | | Fixes #92
* Corrected old name of nonce store property.Andrew Arnott2012-04-011-1/+1
|
* Moved localizable strings into specific OAuth 2 assemblies.Andrew Arnott2012-03-311-2/+2
|
* Removed another auth server binding element.Andrew Arnott2012-03-312-95/+0
|
* Moved access token signing key to the parameters object.Andrew Arnott2012-03-311-1/+3
| | | | | | This also presumably solves the threading concerns of sharing one instance. Fixes #34
* Consolidated all code and token serializations to one binding element.Andrew Arnott2012-03-305-171/+179
|
* Fixed up an authorization server's token endpoint to generate more accurate ↵Andrew Arnott2012-03-302-14/+16
| | | | error messages.
* Added binding element comments.Andrew Arnott2012-03-302-0/+2
|
* Moved some message validation to another binding element.Andrew Arnott2012-03-293-14/+11
|
* Moved the code in AuthorizationCodeBindingElement into the ↵Andrew Arnott2012-03-293-89/+9
| | | | AuthorizationServer class.
* Beginning work of cleaning up the auth server binding elements.Andrew Arnott2012-03-265-43/+28
|
* All unit tests pass again.Andrew Arnott2012-03-181-13/+19
|
* Fixed failing unit test: ResourceOwnerPasswordCredentialGrant.Andrew Arnott2012-03-182-19/+12
|
* A little binding element cleanup.Andrew Arnott2012-03-182-15/+13
|
* Fixed build breaks in the solution.Andrew Arnott2012-03-171-2/+3
|
* Redistributed OAuth2 code into their more specific assemblies.Andrew Arnott2012-03-169-0/+860
generated by cgit v1.1 at 2025-05-26 02:43:40 +0000