oauth2
oauth2 copied to clipboard
go-oauth2
OAuth 2.0 server library for the Go programming language.
https://tools.ietf.org/html/rfc6749#section-4.1.1 States that the redirect_uri is __OPTIONAL__ The server returns an error when `redirect_uri` is omitted. https://github.com/go-oauth2/oauth2/blob/master/server/server.go#L152 ```go redirectURI := r.FormValue("redirect_uri") clientID := r.FormValue("client_id") if !(r.Method == "GET" || r.Method...
There are at least 2 distinct cases - when we did not configure the user authorization handler, and when we did. For the first case, if we use the server...
Gjson, a dependency of this package has a major security vulnerability which can be avoided if we update the version to anything above 1.6.5. In this pull request I have...
I noticed that you revoked the support for fasthttp. I'm curious what the reasoning behind that was and if there are any plans to include it in a future release?...
go-oauth2/oauth2/[email protected]/server/server.go:243:6: no new variables on left side of := assignment happened at 243 line also 215 line
Team: When calling refresh_Token does not use the following code: if cliPass, ok := cli.(oauth2.ClientPasswordVerifier); ok { if !cliPass.VerifyPassword(tgr.ClientSecret) { return nil, errors.ErrInvalidClient } }
Building from the latest master branch produces an error: ``` /go/src/github.com/go-oauth2/oauth2/server/server.go:243:6: no new variables on left side of := ``` The failing build command on the build pipeline: ``` go...
The https://tools.ietf.org/html/rfc6749#section-3.1 talks: > The authorization server MUST support the use of the HTTP "GET method [RFC2616] for the authorization endpoint and MAY support the use of the "POST" method...
I think this oauth2.0 server library cannot support multiple endpoints Is it right?. oauth2.v3/models/client.go // Client client model type Client struct { ID string Secret string Domain string UserID string...
I'm implementing 2 backends, one of them is for authentication and the other one contains business logic. A client is going to login with their username and pass to the...
