clauth
clauth copied to clipboard
pelle
Authentication library for Clojure and Ring based on OAuth2
Commonly in Dockerland we want to run redis in a separate container without requiring auth.
The readme refers to a function called `register-app`... ``` (register-app name url) ``` ... however this function does not appear in the source code.
In the function `req->token` the single arity signature seems to be recursively calling itself https://github.com/pelle/clauth/blob/master/src/clauth/middleware.clj#L38. I think this is supposed to be calling into the 2 arity version. eg: ```...
jBCrypt-0.4 fixes an integer overflow which occurs with very large log_rounds values. In order to incorporate that fix, I had to switch to a different Maven artifact which tracks more...
At present when arriving at the authorisation endpoint, if the user doesn't yet have a session then they are redirected to `/login` (this value is hardcoded). I've made a modification...
It seems to me that `client_secret` should not be required with `grant_type=password`, right? As explained here (http://aaronparecki.com/articles/2012/07/29/1/oauth2-simplified#others): > Note, the client secret is not included here under the assumption that...
This seems like the simplest way to allow clauth users to implement OpenID connect.
wrap-keyword-params converts redirect_uri to a keyword, so that's how it should be accessed.
This is based on http://aaronparecki.com/articles/2012/07/29/1/oauth2-simplified and discussed in #12. @pelle, let me know what you think of this. I'm happy to tweak the interface if there's anything about it that...
This could be as simple as that unless I have misunderstood your intent.
