idpy-oidc

idpy-oidc copied to clipboard

Response type handling

2

Updated to align with the official PAR RFC. Enforce that an access code can only be used once. Worked with handling client_id. Added upstream_get to UserInfo classes. Improved resilience. Entity...

rohe

Hi, is possible to have a static RP registration (client_id, secret)? I mean, if I build a secret key and a client_id, where must I specify them to the OP...

langworr

id_token_signing_alg_values_supported hard-coded to RS256

1

The verify code at: https://github.com/IdentityPython/idpy-oidc/blob/main/src/idpyoidc/message/oidc/__init__.py#L945 hardcodes checking that the OP supports `RS256` for id_token_signing. There doesn't seem to be any config option that would allow overriding this and thus OPs...

jinnatar

I'm set client_db config, but following error occurred: ``` File "[MY_PROJECT_PATH]/server.py", line 187, in oph self.init_handler() File "[MY_PROJECT_PATH]/server.py", line 181, in init_handler server = Server(config, cwd=cwd) ^^^^^^^^^^^^^^^^^^^^^^^ File "/opt/conda/envs/oidc/lib/python3.12/site-packages/idpyoidc/server/__init__.py", line...

ImuruKevol

Support multiple values for a key param

1

We need to change the implementation of `to_urlencoded` to support the `doseq` option of the `urllib.parse.urlencode` function. The documentation is here: https://docs.python.org/3/library/urllib.parse.html#urllib.parse.urlencode

lionick

Native Applications have to use ephemeral ports in the redirect_uri. This is something that is already addressed by the RFCs: [Draft-ietf-oauth-security-topics-27](https://datatracker.ietf.org/doc/html/draft-ietf-oauth-security-topics#name-countermeasures): This document therefore advises simplifying the required logic and...

lionick

This PR addresses an issue where the id_token lifetime was not properly handled on a per-client basis.

lionick

Missing release & tag for 5.0.0

5

Version 5.0.0 is published on pypi but has no corresponding release or tag in the repo.

jinnatar

The first example: `$ from idpyoidc.client import RPHandler` should be `$ from idpyoidc.client.rp_handler import RPHandler` The function get_access_token() is not present in RPHandler class. There is no info for which...

andreinl