Mattia Procopio

I would like to tackle this one

I agree, better to save the list within the db and dump it to redis on .save() We can have a setting with the list, the first call to aby...

@kencochrane is it right to say that there is no sense in having the blacklist and the whitelist active at the same time? I decided to go with the blacklist...

👍

I'm not able to reproduce this on python2, it would be nice to know which username had been passed around, I tried also to add a failing test but the...

related to #839

@abhinavsingh could you provide additional debugging info? 1) does the request reach the token view? 2) no views here are async ready, I'm wondering if that's the issue? Tho I...

@vinaynfo do you mind preparing a test case? that would be the best init to tackle this problem

Revoking seems to me like something very destructive and somethingvvery different from an expiration,like you don't want anybody else to use your app no matter what. I have to read...

The problem is here https://github.com/jazzband/django-oauth-toolkit/blob/master/oauth2_provider/models.py#L281 We do not delete the refresh token on cascade on revocation but we set the relation to Null, that's why end in that situation Il...